Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RGtogshbq3iwhk65XoO25KY0jHU.roa
File: RGtogshbq3iwhk65XoO25KY0jHU.roa (raw, json)
Hash identifier: ytUlP3jd6kAM/P/8Otc0eLzTFxNiq+6DPQVp7siY4pQ=
Subject key identifier: 44:6B:68:82:C8:5B:AB:78:B0:86:4E:B9:5E:83:B6:E4:A6:34:8C:75
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01865EB22178E35572C7CAF8B974B69DEA89
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RGtogshbq3iwhk65XoO25KY0jHU.roa
Signing time: Fri 17 Feb 2023 09:26:17 +0000
ROA not before: Fri 17 Feb 2023 09:26:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5606
IP address blocks: 217.156.46.0/24 maxlen: 24
217.156.47.0/24 maxlen: 24
85.120.17.0/24 maxlen: 24
85.120.16.0/24 maxlen: 24
85.120.19.0/24 maxlen: 24
85.120.18.0/24 maxlen: 24
193.226.71.0/24 maxlen: 24
193.226.69.0/24 maxlen: 24
193.226.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 12:35:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:b2:21:78:e3:55:72:c7:ca:f8:b9:74:b6:9d:ea:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 17 09:26:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=446b6882c85bab78b0864eb95e83b6e4a6348c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8c:bc:cf:11:4f:1a:25:83:55:be:ef:ba:36:
1b:71:69:1a:98:52:cd:b3:a1:ae:9f:8d:05:b4:f0:
77:06:65:b1:30:56:eb:8c:04:0d:1c:cc:9b:bc:0d:
53:ae:68:c0:a9:33:de:21:44:49:6e:ef:93:fc:ff:
c7:1c:98:3c:a6:4b:d4:cc:09:9c:4c:e2:35:cc:12:
55:93:31:4e:4d:81:9c:29:34:e5:35:7a:e4:c5:bc:
a4:df:d8:19:58:66:00:0e:a3:c0:6f:63:b1:ec:ce:
30:16:0f:e6:f2:50:71:37:f2:3a:e7:6c:c1:20:83:
38:c0:13:b4:dd:c9:fc:9e:cd:37:d3:c5:5c:5f:18:
39:28:5d:4e:5d:94:93:8f:f7:2b:ce:54:8b:bd:ad:
f3:59:48:4a:91:05:55:4b:b6:4c:4b:62:2a:73:a3:
b3:d5:1b:7d:33:92:fa:95:b3:d9:4f:86:b9:26:50:
be:89:38:94:87:1e:07:4f:e8:e2:58:f5:f6:60:8b:
63:d0:fd:90:bd:46:c6:e5:ef:99:3d:1b:aa:41:8b:
ef:24:c8:e3:ec:e4:ca:9b:2a:4c:8c:f8:53:71:67:
cd:16:02:8b:fc:8c:bf:bc:bb:46:24:85:16:54:43:
8c:80:cf:32:e5:b3:24:2b:f6:ec:cb:f8:50:80:bd:
b8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:6B:68:82:C8:5B:AB:78:B0:86:4E:B9:5E:83:B6:E4:A6:34:8C:75
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RGtogshbq3iwhk65XoO25KY0jHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.16.0/22
193.226.69.0-193.226.71.255
217.156.46.0/23
Signature Algorithm: sha256WithRSAEncryption
00:de:9e:43:e5:3d:3c:af:e7:fc:85:ee:cf:c1:5c:c7:ff:4a:
b1:eb:df:9e:d8:6e:f5:5e:cd:fb:28:09:48:45:f7:d0:e2:8d:
19:79:d9:d4:94:8f:3b:a9:42:c3:c3:4b:64:d7:36:7d:88:fb:
4a:d7:53:89:e2:1a:53:63:6a:fc:2a:b1:ec:a1:39:8a:07:fb:
9c:23:44:79:70:29:89:a2:82:8d:b3:81:8a:9d:7e:97:39:4e:
b2:b1:a5:d5:f1:b3:22:65:db:9a:38:30:3f:b6:67:1d:cd:c2:
82:14:59:fd:a0:70:db:89:6f:fd:39:55:99:d7:13:fc:0d:f0:
29:a7:1d:0b:c3:37:f8:c2:28:62:80:8f:17:f1:3b:4c:76:91:
a4:0f:49:bc:2a:e0:8d:8c:55:ab:0f:88:66:2f:9d:b8:ea:ee:
79:09:c4:d6:7f:9a:08:aa:20:e8:36:cc:76:6f:09:e3:61:57:
18:4d:72:37:3c:5b:a3:8e:0d:23:04:28:46:92:0a:df:24:36:
81:cf:09:62:4b:c3:b9:d0:40:41:19:2b:ed:5c:e8:ea:5e:ae:
06:8c:89:1c:79:b6:b5:9a:90:c7:41:52:2a:fd:e5:b5:e0:0c:
a9:62:6b:43:9c:18:8a:f3:bc:e3:4c:c5:16:65:fe:f7:19:42:
ec:23:ac:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org