Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6lASZmaKBiQQBCLXWMAAkyOFxUY.roa
File: 6lASZmaKBiQQBCLXWMAAkyOFxUY.roa (raw, json)
Hash identifier: PFYjkWZHlJ125aDVPrc0C/imfpVYSbWdvo9yYvfdxMw=
Subject key identifier: EA:50:12:66:66:8A:06:24:10:04:22:D7:58:C0:00:93:23:85:C5:46
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 0192D2C324071F56FC82D49DBEFE9521C778
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6lASZmaKBiQQBCLXWMAAkyOFxUY.roa
Signing time: Mon 28 Oct 2024 10:54:16 +0000
ROA not before: Mon 28 Oct 2024 10:54:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215597
IP address blocks: 82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 07:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d2:c3:24:07:1f:56:fc:82:d4:9d:be:fe:95:21:c7:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Oct 28 10:54:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea501266668a0624100422d758c000932385c546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:50:23:63:ed:4b:51:49:c2:cc:c7:8e:f2:a3:
c5:82:d4:e4:1d:90:34:9b:2f:e9:2b:33:cd:7a:24:
ad:6d:6d:d8:28:ef:5e:8d:01:47:eb:9e:25:1c:10:
2d:cc:a9:a4:b5:da:32:21:79:e3:cc:a2:49:b4:57:
64:e1:1a:44:ea:c7:ab:df:41:c1:01:a9:b2:1f:a4:
a2:fc:70:67:7a:bf:af:68:65:bd:9f:ee:0f:f5:30:
a2:ec:9b:fb:14:65:d0:22:5b:d4:ae:a7:4f:57:dc:
8d:53:6e:19:5f:d0:ea:75:d7:b2:0f:3e:6e:8b:28:
64:84:5b:c8:7b:5f:15:dc:0e:80:49:70:3d:d4:64:
b6:ee:b4:43:62:d0:0d:f1:c5:88:21:a8:7c:b9:cb:
49:36:b1:d6:4a:c5:62:08:5a:bf:d2:99:df:85:a8:
ee:d9:9d:fe:7d:04:ea:63:d5:07:aa:81:47:ad:03:
dd:85:3b:79:e6:1b:20:1e:1f:a5:8b:05:cd:fd:a6:
3e:6d:ea:59:ea:2d:e8:78:e4:6e:ef:59:d2:d6:af:
b9:37:4a:5d:ff:8a:55:61:3b:a0:3a:4d:0c:7c:4b:
2e:73:33:33:bd:31:0b:e1:6a:bd:c8:7b:a1:f2:06:
38:da:4e:36:ec:e8:81:c6:af:af:e8:64:7d:73:97:
15:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:50:12:66:66:8A:06:24:10:04:22:D7:58:C0:00:93:23:85:C5:46
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6lASZmaKBiQQBCLXWMAAkyOFxUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.199.222.0/23
91.213.191.0/24
91.217.185.0/24
185.95.206.0/23
212.95.142.0/24
212.95.148.0/24
Signature Algorithm: sha256WithRSAEncryption
23:c1:aa:4f:34:1b:3f:29:e2:1b:01:5d:a7:2e:f6:e1:f1:b7:
92:87:76:69:f0:bd:c1:de:0a:02:45:ce:4f:18:00:84:c1:ae:
b7:1e:66:aa:6e:db:70:58:db:63:0f:80:ee:96:d7:af:07:ec:
7a:34:3c:bc:e1:b6:cd:cd:e8:e2:29:2d:62:b6:f9:fd:49:80:
fa:dd:f2:29:3c:21:94:ad:76:13:9d:6d:e6:6f:cd:7d:12:47:
8e:82:cc:64:d9:d6:41:9c:7e:45:eb:6e:13:88:13:4e:03:1d:
18:0a:1e:a3:dc:7a:4e:70:0a:f5:ef:b4:e2:48:ff:2e:f3:aa:
2c:ce:d9:56:6a:3a:de:b9:a1:b0:b4:6e:3d:09:20:e0:5d:4f:
f1:b5:c9:46:7c:44:33:3f:46:36:a0:7e:ca:48:5f:65:9a:b5:
fa:1b:da:72:e3:65:f0:dd:cf:3b:70:1f:65:46:39:60:ab:29:
5e:c0:10:89:4d:31:de:fd:9d:f1:89:e9:1d:dd:37:05:5e:5f:
38:83:8c:6a:0d:cb:85:af:27:ea:f7:63:03:a1:b2:35:98:fe:
77:0d:50:53:64:97:80:e2:96:68:55:67:d4:c9:70:c1:d3:6b:
9b:e9:bc:1c:d6:bb:94:5d:85:58:ce:17:9c:19:28:54:46:5c:
69:a6:a3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:32 2025 by rpki-client