Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/nXqJaPNu_2xv2YTJ6Dr65R4HvIQ.roa
File: nXqJaPNu_2xv2YTJ6Dr65R4HvIQ.roa (raw, json)
Hash identifier: qe9O/hwnyV9KshjvUWC5n+y/FbD0uq6gTJLvBzrOA50=
Subject key identifier: 9D:7A:89:68:F3:6E:FF:6C:6F:D9:84:C9:E8:3A:FA:E5:1E:07:BC:84
Certificate issuer: /CN=6bba6d0f0f9b19f7f43ceb43e7359a3d84e99d99
Certificate serial: 018B18D44223B67588A5B12F4A94A6A435D5
Authority key identifier: 6B:BA:6D:0F:0F:9B:19:F7:F4:3C:EB:43:E7:35:9A:3D:84:E9:9D:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7ptDw-bGff0POtD5zWaPYTpnZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/nXqJaPNu_2xv2YTJ6Dr65R4HvIQ.roa
Signing time: Tue 10 Oct 2023 09:04:05 +0000
ROA not before: Tue 10 Oct 2023 09:04:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201502
IP address blocks: 185.25.139.0/24 maxlen: 24
185.25.138.0/24 maxlen: 24
185.25.137.0/24 maxlen: 24
185.25.136.0/24 maxlen: 24
185.13.220.0/22 maxlen: 24
188.208.19.0/24 maxlen: 24
185.253.80.0/22 maxlen: 24
185.203.172.0/24 maxlen: 24
185.203.175.0/24 maxlen: 24
185.203.174.0/24 maxlen: 24
185.203.173.0/24 maxlen: 24
46.255.240.0/24 maxlen: 24
46.255.246.0/24 maxlen: 24
46.255.245.0/24 maxlen: 24
46.255.244.0/24 maxlen: 24
46.255.243.0/24 maxlen: 24
46.255.242.0/24 maxlen: 24
46.255.241.0/24 maxlen: 24
46.255.247.0/24 maxlen: 24
188.214.82.0/24 maxlen: 24
188.214.83.0/24 maxlen: 24
185.220.80.0/24 maxlen: 24
2a03:a6c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Dec 2023 11:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:d4:42:23:b6:75:88:a5:b1:2f:4a:94:a6:a4:35:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bba6d0f0f9b19f7f43ceb43e7359a3d84e99d99
Validity
Not Before: Oct 10 09:04:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d7a8968f36eff6c6fd984c9e83afae51e07bc84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7d:b5:e4:c3:3d:63:16:48:6e:ed:df:44:1d:
b4:8c:5f:9a:de:3d:d5:3c:b8:f6:d8:89:c8:15:48:
69:a6:e2:37:d8:e1:f6:f7:e8:36:e7:83:99:08:4b:
c2:71:27:bd:b1:36:c5:a3:e9:1e:2c:2b:99:2f:27:
38:4d:f6:4a:67:e4:6b:93:3a:14:83:28:47:19:ab:
d2:d2:69:0b:90:16:12:bf:46:d0:96:0c:da:f4:9c:
53:45:0b:cb:d2:a6:b5:29:cf:e8:6e:f1:fe:c1:82:
64:18:0d:69:29:d1:43:a1:25:de:1b:b4:4e:fa:6e:
34:d5:24:a8:42:e3:1d:6c:12:4b:fe:88:2f:2c:a6:
1c:f4:00:4d:e8:0b:3d:d0:46:bb:ff:12:8a:11:8c:
1f:db:44:a4:35:3a:9a:d4:81:7e:93:61:4b:1c:b4:
f4:3b:74:79:d8:42:7c:60:32:e7:b0:6b:b2:2a:ac:
6e:1a:ae:99:7a:b4:fc:05:da:c6:36:cc:b0:50:f2:
8e:cb:82:99:48:6a:65:81:82:dc:90:25:4f:81:49:
ad:a5:c5:1d:e6:87:4c:84:f7:9f:e4:d6:17:c1:b8:
be:6e:88:65:10:fc:e8:a4:b2:53:11:c7:5d:72:51:
74:f6:00:42:1c:7b:f1:ab:f0:26:f0:27:e7:79:11:
a9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7A:89:68:F3:6E:FF:6C:6F:D9:84:C9:E8:3A:FA:E5:1E:07:BC:84
X509v3 Authority Key Identifier:
keyid:6B:BA:6D:0F:0F:9B:19:F7:F4:3C:EB:43:E7:35:9A:3D:84:E9:9D:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7ptDw-bGff0POtD5zWaPYTpnZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/nXqJaPNu_2xv2YTJ6Dr65R4HvIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/a7ptDw-bGff0POtD5zWaPYTpnZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.240.0/21
185.13.220.0/22
185.25.136.0/22
185.203.172.0/22
185.220.80.0/24
185.253.80.0/22
188.208.19.0/24
188.214.82.0/23
IPv6:
2a03:a6c0::/32
Signature Algorithm: sha256WithRSAEncryption
75:ee:3a:6e:47:aa:48:d4:ee:59:bc:ae:32:c5:88:9b:7a:a7:
8f:6a:e5:cb:4f:a2:b7:ef:4f:19:7a:f3:89:81:35:54:ca:30:
8c:55:94:7d:fb:14:c3:0f:80:09:07:f0:b6:5c:93:ea:80:f5:
f8:bf:c9:11:25:22:25:85:cb:f3:a3:ea:30:b3:fc:00:c9:85:
90:4b:b1:01:bb:52:e3:15:55:b2:b6:e6:b8:6e:40:5a:3d:ad:
ff:69:00:03:ba:c2:a2:fd:84:27:45:35:10:6c:b2:89:25:80:
b1:ba:6f:50:f6:aa:e2:45:58:0c:40:dd:1f:d2:6c:4e:9c:58:
a8:ee:11:2e:9d:ec:61:0b:0b:43:03:1a:00:52:41:a3:6c:d3:
8c:56:f1:bc:c0:d9:22:a2:48:1d:cb:23:34:76:d1:11:80:92:
b4:67:6a:f6:0f:c0:8c:62:1f:2f:c9:d0:c6:0f:07:9e:61:20:
90:62:38:34:92:58:51:8b:fa:79:66:4d:20:6f:95:81:05:7e:
08:ac:cd:8b:7b:b6:61:f1:c4:71:66:cb:01:a2:cb:c7:97:99:
67:e3:dd:a6:32:fb:07:e5:6f:7f:4e:d6:24:46:36:b7:21:44:
8b:37:7f:4b:24:b9:85:63:47:a3:35:68:76:9f:76:78:95:e8:
44:70:cd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:50 2024 by rpki-client on console-fra.rpki-client.org