Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/R2MErFsFyCRSWNVu1yFS59DgON8.roa
File: R2MErFsFyCRSWNVu1yFS59DgON8.roa (raw, json)
Hash identifier: nbzbovqsppMQzCUjqLL+KyILEVmErKe3m+Z3nv+PURM=
Subject key identifier: 47:63:04:AC:5B:05:C8:24:52:58:D5:6E:D7:21:52:E7:D0:E0:38:DF
Certificate issuer: /CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Certificate serial: 0185723A0E7D3634335DC210C967F0448305
Authority key identifier: B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/R2MErFsFyCRSWNVu1yFS59DgON8.roa
Signing time: Mon 02 Jan 2023 11:24:45 +0000
ROA not before: Mon 02 Jan 2023 11:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61275
IP address blocks: 188.93.184.0/21 maxlen: 21
185.24.188.0/22 maxlen: 22
85.93.224.0/19 maxlen: 19
178.248.96.0/21 maxlen: 21
91.135.48.0/21 maxlen: 21
91.135.58.0/24 maxlen: 24
5.100.176.0/21 maxlen: 21
91.135.56.0/23 maxlen: 23
77.223.164.0/22 maxlen: 22
77.223.161.0/24 maxlen: 24
185.3.0.0/22 maxlen: 22
77.223.162.0/23 maxlen: 23
77.223.172.0/22 maxlen: 22
5.100.184.0/22 maxlen: 22
91.135.60.0/22 maxlen: 22
77.223.168.0/22 maxlen: 22
91.135.59.0/24 maxlen: 24
77.223.176.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 06 Jan 2023 13:41:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:0e:7d:36:34:33:5d:c2:10:c9:67:f0:44:83:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Validity
Not Before: Jan 2 11:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=476304ac5b05c8245258d56ed72152e7d0e038df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:cc:7f:fd:cd:c1:ae:df:a7:9e:f7:2b:32:
59:ee:a5:49:f8:06:76:1e:ac:af:95:af:ba:2c:3d:
ca:83:43:09:49:71:2d:2f:fa:81:96:f5:e0:24:ed:
ae:53:49:35:82:df:4c:9e:ae:aa:4c:86:4b:10:38:
08:70:b4:f6:71:b8:de:0c:ef:a5:20:50:34:81:c2:
05:87:d3:68:fa:a6:ce:7d:12:db:14:91:57:7c:0b:
43:25:7b:d1:ae:58:c6:e5:99:c8:9f:52:d2:9d:4b:
d8:84:eb:bb:f6:59:16:f8:99:30:b5:c7:d5:7b:db:
ae:26:34:64:a6:4a:c9:8e:c8:e0:fc:07:48:5b:a9:
38:01:c9:55:0f:d6:3a:aa:e6:cd:a4:19:11:2f:c9:
ed:ee:ae:ad:43:90:01:b5:97:3c:e5:bc:4d:56:43:
53:92:ad:59:b7:43:9c:15:f2:ca:ab:8d:f1:87:67:
fe:eb:14:38:c9:52:57:8b:8f:c2:1e:cb:ef:e7:5f:
cb:2c:71:06:1d:65:a4:fd:0e:01:bf:0f:6f:d4:bc:
cd:d1:a7:d2:70:4a:a4:52:df:f4:ec:cb:65:2e:da:
b0:a0:d7:12:ea:10:cb:8f:24:73:2d:90:b0:48:02:
1b:ec:49:94:96:4d:e3:a5:39:bc:fd:2f:1a:31:be:
57:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:63:04:AC:5B:05:C8:24:52:58:D5:6E:D7:21:52:E7:D0:E0:38:DF
X509v3 Authority Key Identifier:
keyid:B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/R2MErFsFyCRSWNVu1yFS59DgON8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.176.0-5.100.187.255
77.223.161.0-77.223.191.255
85.93.224.0/19
91.135.48.0/20
178.248.96.0/21
185.3.0.0/22
185.24.188.0/22
188.93.184.0/21
Signature Algorithm: sha256WithRSAEncryption
90:4c:9e:56:38:00:64:fa:ce:1b:36:5a:a6:c7:2d:da:a0:c2:
bd:47:e1:36:ed:21:d9:d3:72:16:31:d1:ce:39:24:ed:ab:0c:
77:5c:ac:39:d0:da:90:fb:36:c6:b3:cd:ca:b1:d6:69:e5:fc:
9c:57:5e:15:7d:3b:5c:f5:1e:73:1a:3a:d6:ea:9c:18:d2:8d:
ce:cd:92:b5:b0:ae:27:1a:05:74:1a:a6:50:35:e6:97:91:ff:
79:1c:44:78:c0:25:a3:53:f5:85:db:1c:65:95:17:9a:cf:10:
72:6f:23:05:d6:66:57:23:1f:90:3f:0e:a1:40:18:0e:77:14:
75:60:19:3b:a8:38:ee:ef:5c:9e:7d:33:ef:d7:76:93:4d:8b:
a5:43:2f:2d:84:14:bb:bd:a7:a4:80:80:34:14:3d:0e:2a:91:
93:57:49:87:d5:7f:75:09:57:a9:54:12:1d:87:84:04:d4:fd:
df:4c:5d:a6:9c:e0:cb:91:42:f3:20:d7:f8:15:5f:59:93:fc:
ed:e4:03:85:92:2d:75:2a:1b:0e:3d:bc:73:5e:49:2c:84:b6:
9f:6d:35:b4:2f:64:05:3b:f8:e1:93:33:83:7b:f9:20:1e:b4:
2a:f1:a6:74:d5:90:a7:4c:96:30:d0:53:ee:a5:c3:19:3b:f8:
89:51:6b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:57 2024 by rpki-client on console-fra.rpki-client.org