Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/Vg8kTw28K-ycs4Qs9h6vKfN4yKI.roa
File: Vg8kTw28K-ycs4Qs9h6vKfN4yKI.roa (raw, json)
Hash identifier: js3ubd0xbSExeqKfuQ55TkuWP3GNN2RplOD1ouMV0dI=
Subject key identifier: 56:0F:24:4F:0D:BC:2B:EC:9C:B3:84:2C:F6:1E:AF:29:F3:78:C8:A2
Certificate issuer: /CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Certificate serial: 0188596CE80C85925AC8914BB82338617062
Authority key identifier: 30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/Vg8kTw28K-ycs4Qs9h6vKfN4yKI.roa
Signing time: Fri 26 May 2023 18:58:09 +0000
ROA not before: Fri 26 May 2023 18:58:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57395
IP address blocks: 176.98.165.0/24 maxlen: 24
176.98.166.0/24 maxlen: 24
176.98.160.0/24 maxlen: 24
176.98.161.0/24 maxlen: 24
176.98.162.0/24 maxlen: 24
176.98.163.0/24 maxlen: 24
176.98.164.0/24 maxlen: 24
176.98.167.0/24 maxlen: 24
185.254.0.0/24 maxlen: 24
185.181.170.0/24 maxlen: 24
185.181.171.0/24 maxlen: 24
185.181.168.0/24 maxlen: 24
193.150.64.0/24 maxlen: 24
2a0b:33c0:114::/48 maxlen: 48
2a0b:33c0:118::/48 maxlen: 48
2a0b:33c0:113::/48 maxlen: 48
2a0b:33c0:51::/48 maxlen: 48
2a0b:33c0:107::/48 maxlen: 48
2a0b:33c0:2::/48 maxlen: 48
2a0b:33c0:50::/48 maxlen: 48
2a0b:33c0:10::/48 maxlen: 48
2a0b:33c0:6::/48 maxlen: 48
2a0b:33c0:3::/48 maxlen: 48
2a0b:33c0:1::/48 maxlen: 48
2a0b:33c0:117::/48 maxlen: 48
2a0b:33c0:112::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 May 2023 07:28:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:59:6c:e8:0c:85:92:5a:c8:91:4b:b8:23:38:61:70:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Validity
Not Before: May 26 18:58:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=560f244f0dbc2bec9cb3842cf61eaf29f378c8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:19:f2:85:25:d4:8a:ef:d4:5f:97:5f:90:
8f:98:c0:41:78:26:6a:b3:23:cf:74:bf:dc:38:c2:
d1:71:f5:3e:01:c2:de:13:c2:21:2f:5a:ba:d9:ab:
e7:ff:72:19:db:0f:69:8f:23:df:8c:24:4b:00:44:
5d:b9:6d:0f:42:b7:17:5e:f5:b5:57:79:98:f9:87:
a6:93:33:31:0f:11:99:90:84:35:95:15:b3:7b:5f:
33:f8:f4:e6:1c:11:cb:91:a4:10:66:3f:f1:93:fd:
92:fb:26:92:9f:29:6d:c1:c9:59:dd:aa:5c:28:cb:
3a:66:c1:23:62:8a:06:ec:3d:b0:ad:7a:ba:dd:ae:
04:da:ba:5a:5c:1d:d9:99:16:48:b7:d1:b2:3e:7a:
19:56:86:39:c7:09:d5:1b:ac:98:69:1d:5b:2e:62:
2e:cb:5b:4a:c1:0d:eb:31:c6:69:1c:da:40:65:cd:
6d:3a:45:a4:78:06:68:fc:cc:eb:ce:5c:8d:c4:31:
91:7a:e4:ac:c2:a4:6a:9b:fb:39:39:31:b0:a1:f5:
67:16:b1:76:3e:3d:5d:03:c2:4c:a2:e9:c5:6b:e3:
fe:39:1d:e6:32:ef:65:74:36:92:21:11:8c:5e:42:
be:40:c3:bb:a3:1b:9b:91:ed:70:27:cd:dc:21:6b:
bf:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0F:24:4F:0D:BC:2B:EC:9C:B3:84:2C:F6:1E:AF:29:F3:78:C8:A2
X509v3 Authority Key Identifier:
keyid:30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/Vg8kTw28K-ycs4Qs9h6vKfN4yKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/MBpkhyXuJqRgy5scvNnJyDLESa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.160.0/21
185.181.168.0/24
185.181.170.0/23
185.254.0.0/24
193.150.64.0/24
IPv6:
2a0b:33c0:1::-2a0b:33c0:3:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:6::/48
2a0b:33c0:10::/48
2a0b:33c0:50::/47
2a0b:33c0:107::/48
2a0b:33c0:112::-2a0b:33c0:114:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:117::-2a0b:33c0:118:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
13:d8:d1:6e:eb:f4:81:35:c8:4c:98:a2:86:df:7f:7e:4f:ae:
9a:00:ed:11:46:64:73:29:f0:d6:da:72:d2:90:1b:d2:c3:fa:
51:7b:e2:3b:9c:9d:fa:bb:8a:a7:03:08:b6:38:0c:45:ee:af:
78:d0:a5:50:3a:2e:56:d2:75:72:ce:fe:df:de:3e:ca:f7:aa:
ed:58:4d:e4:71:76:16:1f:55:57:d9:13:5c:69:16:3e:f9:6f:
e8:80:a1:b1:b2:b8:f2:9d:14:be:56:ee:5e:83:1d:30:51:4e:
82:b0:7b:e4:9a:75:29:53:55:02:91:37:1f:5f:b2:99:84:a0:
13:98:2c:c9:2f:ee:11:33:e7:5d:1e:ff:50:f9:61:75:b1:73:
3c:81:35:c2:25:99:1a:c1:6b:01:d1:e0:45:b5:12:34:5e:39:
de:e0:c0:b0:fc:9d:bb:ec:8b:4a:87:7b:af:9c:1c:49:29:34:
fd:44:d1:80:9c:10:da:50:f1:98:0a:01:d2:3e:e2:ca:43:a4:
1e:83:d7:ea:f5:1e:2f:0b:22:aa:17:07:c2:75:22:f6:79:2e:
44:c1:97:a8:2c:27:a5:7e:78:b4:40:58:f2:c9:0e:d8:1f:2a:
9b:a7:30:fd:5f:d9:5f:2f:9f:36:e8:72:d4:3f:4d:b7:16:2f:
e6:e3:ea:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:08 2024 by rpki-client on console-ams.rpki-client.org