Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OGpXJJnAfW4Vj-Jdc95F7VhGgnk.roa
File: OGpXJJnAfW4Vj-Jdc95F7VhGgnk.roa (raw, json)
Hash identifier: k2T3EVjX2t8IQqXJsYpPWy9xTKG4twbdn5D5yXqqBMA=
Subject key identifier: 38:6A:57:24:99:C0:7D:6E:15:8F:E2:5D:73:DE:45:ED:58:46:82:79
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 0187E09E99BA188A8CFBC684E24E9BC11148
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OGpXJJnAfW4Vj-Jdc95F7VhGgnk.roa
Signing time: Wed 03 May 2023 07:58:23 +0000
ROA not before: Wed 03 May 2023 07:58:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41164
IP address blocks: 78.156.0.0/19 maxlen: 24
185.71.208.0/22 maxlen: 22
46.212.0.0/17 maxlen: 17
62.97.160.0/19 maxlen: 19
62.97.172.0/23 maxlen: 23
62.97.168.0/22 maxlen: 22
178.232.0.0/16 maxlen: 16
185.46.224.0/22 maxlen: 22
46.212.128.0/17 maxlen: 17
62.141.128.0/19 maxlen: 19
185.138.32.0/22 maxlen: 22
46.249.230.0/23 maxlen: 23
46.249.233.0/24 maxlen: 24
46.249.238.0/24 maxlen: 24
46.249.236.0/23 maxlen: 23
46.249.234.0/23 maxlen: 23
46.249.252.0/22 maxlen: 22
178.17.144.0/20 maxlen: 20
176.74.208.0/21 maxlen: 21
188.126.192.0/19 maxlen: 19
188.126.214.0/24 maxlen: 24
46.249.224.0/22 maxlen: 22
46.249.224.0/19 maxlen: 19
2a02:fe0::/29 maxlen: 40
2a02:fe0:dd05::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 May 2023 08:25:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:9e:99:ba:18:8a:8c:fb:c6:84:e2:4e:9b:c1:11:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: May 3 07:58:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=386a572499c07d6e158fe25d73de45ed58468279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b6:91:ed:a9:cb:2f:1a:bf:de:a9:a8:1a:af:
df:9c:eb:ad:8f:1f:f6:2e:cf:a0:6a:f7:ad:23:f1:
54:5d:dc:95:8a:70:6a:1c:ae:f3:ae:d9:6e:43:65:
51:ea:16:ea:5b:51:cb:74:92:5b:91:d3:6b:df:12:
d2:09:bf:e5:3f:14:77:29:24:95:99:dd:23:4a:78:
69:1f:36:1c:fb:6c:ba:a3:67:2c:47:79:e0:a8:37:
c9:62:fe:60:65:67:b3:63:7e:8f:af:74:91:2f:e7:
73:b3:63:cc:0a:3a:63:33:d1:25:77:3b:af:42:a2:
12:24:df:b3:cb:87:00:2f:f1:0f:61:61:ed:de:99:
d6:ab:16:6d:01:0b:ca:da:09:94:f1:42:9c:be:a5:
0d:f4:a3:ee:00:34:77:77:95:17:aa:55:9f:5a:d2:
8d:d6:7d:2b:56:4b:57:7b:87:a4:72:e4:ad:44:a6:
71:c3:24:f6:ca:ac:ea:9d:f8:b5:ae:99:11:60:36:
af:b1:76:05:c3:fa:c2:b8:79:6b:2f:04:43:cf:46:
e0:4a:c8:4a:be:5e:53:e9:c8:24:1d:45:5a:5f:20:
e5:ff:33:df:be:e8:ee:3e:be:04:91:dc:76:b8:6b:
e2:a2:de:85:99:d9:c7:cf:c7:fd:ae:84:ed:6d:71:
81:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6A:57:24:99:C0:7D:6E:15:8F:E2:5D:73:DE:45:ED:58:46:82:79
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OGpXJJnAfW4Vj-Jdc95F7VhGgnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.212.0.0/16
46.249.224.0/19
62.97.160.0/19
62.141.128.0/19
78.156.0.0/19
176.74.208.0/21
178.17.144.0/20
178.232.0.0/16
185.46.224.0/22
185.71.208.0/22
185.138.32.0/22
188.126.192.0/19
IPv6:
2a02:fe0::/29
Signature Algorithm: sha256WithRSAEncryption
67:b7:dd:ce:5a:42:5c:bf:95:7d:f7:1f:c4:c5:24:f9:44:03:
01:ca:eb:7b:d4:47:da:cf:90:14:64:a9:7c:48:f7:58:aa:42:
d7:ef:ea:a8:18:d7:8d:22:39:ef:75:fd:2e:fa:6b:4a:06:b5:
4e:e1:08:49:d1:d6:50:d1:62:25:b9:3d:ca:4e:50:69:e2:ac:
ee:61:a0:30:39:14:3d:43:3d:c0:e2:6d:30:5c:32:1a:75:de:
49:96:04:66:42:4b:e2:b2:0e:8a:22:77:6a:ac:c0:74:4f:31:
17:47:8c:1d:1c:f9:6f:08:7c:64:49:85:0d:c0:57:70:52:d8:
3f:15:f1:4b:32:45:87:95:91:e3:18:c3:be:47:99:46:d8:e9:
0e:e3:58:aa:e7:4e:d8:55:76:b2:2d:ba:34:b5:cb:e2:44:92:
d9:dd:35:68:c5:a8:04:05:74:ee:c2:bc:aa:de:89:09:15:46:
2c:db:c1:e3:a9:9d:1e:19:84:5a:ba:f8:36:09:92:66:ef:e9:
20:3b:80:f9:ac:2b:33:a5:bc:a6:72:d7:a0:49:af:6b:9d:f2:
ec:28:29:85:77:15:9e:84:20:fc:bb:b5:f3:74:b1:6d:d9:6e:
fb:16:8d:c9:e6:c7:82:fa:38:e7:78:96:99:6b:f9:70:8b:92:
ee:5c:e1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org