Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CcQpeoUeLPol20_f6SYQjiE0ENA.roa
File: CcQpeoUeLPol20_f6SYQjiE0ENA.roa (raw, json)
Hash identifier: w50a2R/mLpmwgc0CLxEvj4JgMT9+aAPz+q+k4mN7ITE=
Subject key identifier: 09:C4:29:7A:85:1E:2C:FA:25:DB:4F:DF:E9:26:10:8E:21:34:10:D0
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AD793EBF0BD0C81FCB9C1DFCD0734
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CcQpeoUeLPol20_f6SYQjiE0ENA.roa
Signing time: Mon 01 Jan 2024 18:30:42 +0000
ROA not before: Mon 01 Jan 2024 18:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6663
IP address blocks: 81.181.88.0/21 maxlen: 21
193.230.176.0/24 maxlen: 24
193.230.178.0/24 maxlen: 24
193.230.183.0/24 maxlen: 24
193.230.181.0/24 maxlen: 24
193.230.200.0/24 maxlen: 24
193.230.201.0/24 maxlen: 24
194.153.246.0/24 maxlen: 24
193.226.114.0/24 maxlen: 24
193.226.117.0/24 maxlen: 24
193.226.113.0/24 maxlen: 24
193.231.137.0/24 maxlen: 24
193.226.122.0/24 maxlen: 24
193.226.124.0/24 maxlen: 24
193.226.119.0/24 maxlen: 24
193.226.126.0/24 maxlen: 24
193.231.65.0/24 maxlen: 24
193.231.68.0/24 maxlen: 24
193.226.61.0/24 maxlen: 24
193.231.73.0/24 maxlen: 24
193.231.76.0/24 maxlen: 24
193.231.78.0/24 maxlen: 24
81.180.201.0/24 maxlen: 24
193.231.80.0/24 maxlen: 24
81.180.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jan 2024 12:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:d7:93:eb:f0:bd:0c:81:fc:b9:c1:df:cd:07:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09c4297a851e2cfa25db4fdfe926108e213410d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e4:c1:72:a0:77:32:87:0c:4a:97:51:3d:71:
50:41:78:5e:85:ec:e6:8f:6e:9a:86:70:00:93:1a:
33:92:2d:90:69:55:88:ba:b0:56:52:63:07:34:15:
7c:42:b0:be:0b:6b:21:77:6e:a1:d4:52:71:d5:df:
2a:c7:0a:53:25:ca:dd:f0:e2:09:da:92:ff:30:f1:
ca:c2:9e:77:40:6e:ef:32:0b:e8:21:98:53:1a:60:
88:86:79:c7:67:8e:a6:a4:32:30:1b:5d:b0:4f:9e:
b3:d3:71:fc:c7:94:f0:c0:0b:b1:34:40:27:b7:fd:
4f:c0:87:ac:ff:5a:26:73:35:e5:c9:a9:6e:54:32:
ef:30:69:9a:42:5b:83:f1:d4:9b:ee:85:0a:ac:b9:
89:91:f6:6c:18:5e:2e:09:58:91:9c:b7:b2:34:a0:
bb:35:3d:95:1d:ac:57:cd:30:56:87:d3:86:59:29:
24:7a:54:3d:50:76:9a:f5:37:d0:bd:90:23:72:95:
f6:58:9b:c2:b8:85:cf:d9:a9:55:00:b3:70:99:30:
f4:84:96:fb:c6:2b:c4:9e:75:07:d4:11:9e:4b:d5:
15:f9:cd:2c:f8:bf:16:58:c2:f3:86:93:9f:58:b3:
70:69:48:38:4e:48:2e:ff:c2:8d:08:7c:61:ea:bd:
db:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C4:29:7A:85:1E:2C:FA:25:DB:4F:DF:E9:26:10:8E:21:34:10:D0
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CcQpeoUeLPol20_f6SYQjiE0ENA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.180.201.0/24
81.180.206.0/24
81.181.88.0/21
193.226.61.0/24
193.226.113.0-193.226.114.255
193.226.117.0/24
193.226.119.0/24
193.226.122.0/24
193.226.124.0/24
193.226.126.0/24
193.230.176.0/24
193.230.178.0/24
193.230.181.0/24
193.230.183.0/24
193.230.200.0/23
193.231.65.0/24
193.231.68.0/24
193.231.73.0/24
193.231.76.0/24
193.231.78.0/24
193.231.80.0/24
193.231.137.0/24
194.153.246.0/24
Signature Algorithm: sha256WithRSAEncryption
74:41:ef:d4:6d:aa:23:7c:f4:c3:8a:24:66:37:32:96:74:d5:
ef:da:75:8f:a8:7e:6d:2e:80:3b:66:e0:e5:6b:5a:90:6d:3e:
9e:b5:db:8b:ea:00:6d:e8:43:36:4f:2c:21:f9:c4:51:22:49:
99:6e:fb:73:36:3f:9e:24:4f:f8:ab:e2:b0:0e:e1:c4:89:64:
a9:67:87:9f:9e:8c:ff:c0:cc:b1:9d:14:a0:0f:94:a9:17:7f:
6d:32:db:f1:b9:5f:83:ef:93:d6:ca:4d:af:e0:13:bd:95:49:
16:58:c9:64:cb:bd:ba:46:8f:b2:07:87:fb:84:44:45:9e:71:
40:6e:27:8e:50:aa:db:00:57:4d:11:b7:6d:28:b9:0b:be:82:
18:60:a3:c8:83:cc:79:42:ee:7a:fd:be:78:48:35:8a:17:d9:
d1:ce:14:25:60:d2:7d:3e:3b:20:08:96:6b:c7:43:0b:39:17:
cf:41:63:9a:e8:30:dc:6d:86:57:50:e0:38:44:eb:6b:8d:c5:
d7:7c:37:58:29:96:60:fb:b8:dc:78:9e:59:f7:4d:f5:ec:29:
57:44:5b:27:68:c1:18:9b:70:d6:b3:cf:b3:fc:d8:8a:30:3c:
c8:3f:d3:3f:15:68:e9:57:3d:7c:ca:5c:68:7e:a3:8e:56:4f:
a5:df:35:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 16:52:05 2024 by rpki-client on console-ams.rpki-client.org