Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6h039Sx2HkCil8SLpFakLpNWEbM.roa
File: 6h039Sx2HkCil8SLpFakLpNWEbM.roa (raw, json)
Hash identifier: E9PRwGbe0V3w1+cgxsa1nwHEAgUaJtiuS6OIWyySWGs=
Subject key identifier: EA:1D:37:F5:2C:76:1E:40:A2:97:C4:8B:A4:56:A4:2E:93:56:11:B3
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 018582B77EC20BCCE1398DA4077A5AC94E9D
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6h039Sx2HkCil8SLpFakLpNWEbM.roa
Signing time: Thu 05 Jan 2023 16:15:41 +0000
ROA not before: Thu 05 Jan 2023 16:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 45.67.4.0/22 maxlen: 32
137.59.4.0/22 maxlen: 32
92.119.168.0/22 maxlen: 32
185.72.240.0/22 maxlen: 32
2.58.76.0/22 maxlen: 32
213.173.60.0/22 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Aug 2023 06:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:b7:7e:c2:0b:cc:e1:39:8d:a4:07:7a:5a:c9:4e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Jan 5 16:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea1d37f52c761e40a297c48ba456a42e935611b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:18:2c:0f:11:f5:b0:02:61:4d:12:2f:02:77:
8c:46:af:97:cb:a4:3c:c2:db:db:c6:3a:9a:e1:8f:
e0:d2:d4:94:2e:ad:38:52:2f:93:db:8c:75:fa:67:
15:cc:ec:d9:60:3f:2d:57:4e:4b:49:51:b7:e0:ce:
82:9a:3b:09:68:6d:e1:93:d0:63:1c:19:72:bd:eb:
95:da:06:7a:58:fe:12:7b:22:77:8b:04:83:c7:b4:
00:93:83:52:34:d1:98:c1:c5:85:1d:5a:99:21:3f:
3c:a4:52:b1:d2:a7:12:8f:71:c5:96:d7:97:01:5b:
ff:fc:24:f2:1e:5e:d5:82:13:00:66:41:1d:4e:07:
10:16:8d:02:6e:bf:8e:0b:71:18:67:a2:7f:f1:28:
30:cf:76:c4:d1:68:11:0c:d1:1c:06:03:7a:4a:ec:
9c:bb:da:a6:81:0d:c6:96:90:a0:c6:17:16:b2:e7:
25:24:33:46:1e:bc:2b:cb:9d:0f:8b:c1:f2:b4:15:
61:d4:80:b8:91:10:5c:79:46:da:4c:ca:c7:45:c9:
ef:c2:76:9a:61:07:83:4b:86:f6:c5:7d:54:48:34:
8f:ee:4e:39:6a:31:1b:a4:e6:bd:d4:b1:a4:df:cc:
43:3d:b8:b7:4d:0a:a6:ae:07:38:ae:2e:6a:68:8e:
80:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1D:37:F5:2C:76:1E:40:A2:97:C4:8B:A4:56:A4:2E:93:56:11:B3
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6h039Sx2HkCil8SLpFakLpNWEbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.76.0/22
45.67.4.0/22
92.119.168.0/22
137.59.4.0/22
185.72.240.0/22
213.173.60.0/22
Signature Algorithm: sha256WithRSAEncryption
68:50:54:2c:64:d3:d0:cd:44:1e:af:b9:3c:c7:1c:9a:96:d6:
9e:07:a4:29:72:d3:64:c2:ed:11:b7:5e:b2:32:77:d3:09:6c:
ef:dd:51:c5:27:30:4b:d2:2a:43:ba:5a:5e:08:2b:c2:a0:a3:
a8:6c:aa:32:34:64:94:e7:bb:5e:35:bb:d6:69:11:47:46:51:
a3:54:51:e1:98:5a:56:30:f6:76:18:6e:ba:43:2b:b3:2d:0b:
e4:44:02:b1:e2:98:db:13:8c:19:8b:01:68:fd:cb:5f:7b:1b:
6a:c2:db:4b:f1:20:9e:b5:10:39:91:29:62:f6:be:63:e4:7f:
05:70:1e:e6:38:53:75:32:31:1a:2b:4a:29:10:98:8a:59:01:
29:82:b0:41:e8:97:32:cf:b2:e6:c2:4e:ad:e5:44:8e:ca:d5:
25:83:51:46:ee:bb:b1:16:6a:36:25:82:63:fa:0c:cb:20:6e:
ea:77:5c:ca:22:5e:6b:49:9a:5a:b3:a1:ac:55:c9:82:4c:96:
6c:b7:07:1b:11:cd:a5:79:49:69:44:bf:66:89:e4:30:67:ed:
5b:00:e4:0f:e0:78:e0:7f:f4:7b:93:2d:77:72:d2:24:99:dc:
ef:a4:4b:16:23:33:b1:4e:4b:84:ff:a4:c6:55:77:e9:5c:3a:
2a:ac:e1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org