Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6tAkuXgEQj-5PLK3QzTXMiSt_RY.roa
File: 6tAkuXgEQj-5PLK3QzTXMiSt_RY.roa (raw, json)
Hash identifier: E/DKW2cai1UB+5YhCA9u6HgeCkGrAY0zJAN34AaiPrk=
Subject key identifier: EA:D0:24:B9:78:04:42:3F:B9:3C:B2:B7:43:34:D7:32:24:AD:FD:16
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AD90E49318C8E22E711DF23F5B3DB
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6tAkuXgEQj-5PLK3QzTXMiSt_RY.roa
Signing time: Mon 01 Jan 2024 18:30:43 +0000
ROA not before: Mon 01 Jan 2024 18:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8751
IP address blocks: 193.226.85.0/24 maxlen: 32
81.180.224.0/24 maxlen: 32
193.231.133.0/24 maxlen: 24
193.231.169.0/24 maxlen: 32
81.181.146.0/24 maxlen: 32
80.96.28.0/24 maxlen: 32
85.120.250.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jul 2024 11:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:d9:0e:49:31:8c:8e:22:e7:11:df:23:f5:b3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ead024b97804423fb93cb2b74334d73224adfd16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1e:06:fc:af:f4:e8:a9:a9:48:ce:6f:64:b2:
61:54:c7:d1:64:87:97:30:e8:d2:4e:65:c0:7e:08:
f6:41:25:97:0e:73:97:94:c7:40:10:9d:6b:80:6e:
75:86:20:93:9d:00:6e:33:7c:b4:f3:5b:09:5e:94:
a2:5e:13:1b:15:57:c5:86:7e:af:45:fc:ea:3c:be:
0d:ab:ce:6d:a3:72:c7:14:c5:b7:08:5a:82:e3:7d:
ac:4d:82:2d:4f:bf:fb:2d:98:a9:96:17:5f:90:41:
46:e6:ec:75:b1:5c:9e:38:81:98:62:4e:a1:0e:69:
6c:0d:ba:88:9d:76:68:dc:e4:67:73:95:02:56:85:
35:5a:e6:d7:3b:d6:d7:27:61:54:f4:53:c7:d0:a6:
fc:67:7f:ed:b4:4b:c1:2e:68:8a:2d:65:1f:97:ef:
70:29:54:ff:6b:d7:64:47:25:46:7f:8c:01:43:86:
b6:a9:84:95:ef:e0:7b:71:25:05:47:71:3b:34:82:
ee:b5:0d:9c:71:20:51:60:3e:f2:bc:60:6f:13:3a:
c8:4d:89:89:f7:65:a9:91:2c:7d:ef:38:d6:4a:19:
8b:8d:1b:20:12:c6:9f:29:b1:20:39:58:ff:d5:47:
b4:5b:35:48:14:dd:82:19:a8:f0:ca:00:f2:9b:4b:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D0:24:B9:78:04:42:3F:B9:3C:B2:B7:43:34:D7:32:24:AD:FD:16
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6tAkuXgEQj-5PLK3QzTXMiSt_RY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.28.0/24
81.180.224.0/24
81.181.146.0/24
85.120.250.0/24
193.226.85.0/24
193.231.133.0/24
193.231.169.0/24
Signature Algorithm: sha256WithRSAEncryption
15:b4:3a:6a:cf:5c:22:09:80:97:78:43:b9:8b:dc:53:64:e5:
1f:dd:b4:ee:04:91:90:6f:dd:eb:8c:0c:85:6f:b0:49:80:8f:
72:4f:95:d1:de:8e:54:89:a9:4b:c1:52:57:67:ab:7f:3e:17:
1f:23:ab:50:0b:0c:b4:15:70:7c:5c:4c:e2:68:d5:b4:1c:d7:
03:20:c2:fe:bc:54:a8:ff:08:da:c8:95:06:1b:16:91:4d:36:
b1:bc:b4:f3:11:18:1b:96:49:c1:44:b4:ba:dd:9e:c3:4e:66:
aa:0f:dd:97:15:59:33:be:a1:78:48:7a:d9:2d:53:e2:f5:45:
07:b9:cc:1e:c4:77:fd:39:9a:67:47:c7:ef:73:e7:23:72:e3:
ef:66:81:bf:4f:07:2c:d3:ba:2c:0a:04:83:38:95:4f:7a:56:
8a:1c:9b:a9:5d:8b:8e:38:1d:07:3a:aa:1d:b9:5c:6c:55:aa:
2f:80:0f:b9:ba:f8:41:62:1b:eb:3c:b6:e9:6b:06:c5:64:7a:
ba:62:72:42:8d:ed:a7:de:31:1d:70:79:86:3d:67:1b:8b:64:
a1:7a:b7:3f:9a:57:15:be:ba:c6:bd:5f:71:a1:80:f4:95:73:
f2:df:22:30:a6:06:ad:b5:fe:58:03:a9:be:d8:57:db:74:bd:
ec:b1:a8:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:21:11 2024 by rpki-client on console-ams.rpki-client.org