Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/R6_SIHz430O8QykiSLSUUG-7p4A.roa
File: R6_SIHz430O8QykiSLSUUG-7p4A.roa (raw, json)
Hash identifier: IFwr1pMthBVyDyQ0vVgXPE/IS2orXsQeWpiHgxMTwJM=
Subject key identifier: 47:AF:D2:20:7C:F8:DF:43:BC:43:29:22:48:B4:94:50:6F:BB:A7:80
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 018CC56E17152BD8529AD7B79A539504527E
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/R6_SIHz430O8QykiSLSUUG-7p4A.roa
Signing time: Mon 01 Jan 2024 14:29:35 +0000
ROA not before: Mon 01 Jan 2024 14:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59625
IP address blocks: 185.240.17.0/24 maxlen: 24
185.240.16.0/24 maxlen: 24
185.240.18.0/24 maxlen: 24
185.240.19.0/24 maxlen: 24
204.154.202.0/24 maxlen: 24
204.154.200.0/24 maxlen: 24
204.154.201.0/24 maxlen: 24
204.154.205.0/24 maxlen: 24
204.154.206.0/24 maxlen: 24
204.154.203.0/24 maxlen: 24
204.154.204.0/24 maxlen: 24
204.154.207.0/24 maxlen: 24
185.84.69.0/24 maxlen: 24
185.84.68.0/24 maxlen: 24
185.84.70.0/24 maxlen: 24
185.84.71.0/24 maxlen: 24
185.244.178.0/24 maxlen: 24
185.244.179.0/24 maxlen: 24
185.244.176.0/24 maxlen: 24
2a03:7020:1::/48 maxlen: 48
2a03:7020:10::/48 maxlen: 48
2a03:7020:8::/48 maxlen: 48
2a03:7020:1200::/40 maxlen: 40
2a03:7020::/40 maxlen: 40
2a03:7020:800::/40 maxlen: 40
2a03:7020:1300::/40 maxlen: 40
2a03:7020::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 Jan 2024 14:57:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:17:15:2b:d8:52:9a:d7:b7:9a:53:95:04:52:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Jan 1 14:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47afd2207cf8df43bc43292248b494506fbba780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3c:39:28:1b:dd:c1:8e:c7:f7:76:7a:f2:59:
11:ee:bc:7e:f3:0d:5d:a8:4d:7d:a2:ed:88:ef:b2:
9d:0b:3c:3a:5e:c7:bd:f8:dd:72:9b:42:67:c1:1d:
82:7c:20:29:85:84:f8:c9:d7:5e:a1:ac:52:58:b9:
af:69:95:c1:1f:f3:8b:f9:20:e9:c0:4e:b1:48:99:
ef:bb:75:a1:3c:04:d9:93:65:28:8a:ee:7a:ec:63:
89:35:91:e6:a3:ee:19:7e:67:e0:53:83:56:4e:20:
75:a0:6b:f0:e5:54:36:e7:89:3a:53:f5:f5:9f:02:
90:42:2b:c8:b6:04:c5:d6:e3:ca:3d:37:66:6b:38:
82:68:c5:8f:47:c8:d4:e5:46:5f:9f:d1:3e:3c:a3:
39:a7:f0:8a:a3:4b:50:92:0e:2f:c1:b0:da:b3:af:
6a:af:f5:16:17:b9:91:f6:8d:58:03:27:ac:ca:83:
d1:e1:b1:0e:c1:f8:b2:05:fe:5e:bd:91:ba:2c:68:
0a:62:16:53:5b:f3:bb:e2:1b:1f:bd:5b:7c:4b:87:
b9:be:20:5b:64:ab:60:32:b0:4c:78:6d:2e:9d:2b:
01:fb:87:61:62:d9:80:88:01:07:f9:94:71:36:a2:
ee:ce:ba:72:0a:1b:47:fa:bd:d8:bf:ec:ef:4a:f8:
75:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AF:D2:20:7C:F8:DF:43:BC:43:29:22:48:B4:94:50:6F:BB:A7:80
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/R6_SIHz430O8QykiSLSUUG-7p4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.68.0/22
185.240.16.0/22
185.244.176.0/24
185.244.178.0/23
204.154.200.0/21
IPv6:
2a03:7020::/40
2a03:7020:800::/40
2a03:7020:1200::/39
Signature Algorithm: sha256WithRSAEncryption
b7:ce:8b:d1:11:ae:85:76:a5:e2:0a:d0:f0:21:3a:90:1a:e4:
32:1d:f0:1d:4c:61:d1:43:70:77:5b:0a:16:1b:b9:df:af:ee:
d8:56:25:20:8a:4e:4e:17:f8:96:92:65:f8:dc:ae:18:38:3a:
7e:d3:56:6f:54:88:b0:c6:81:d0:ff:38:65:ab:e5:ab:ca:76:
b7:0e:31:a0:67:c5:b7:c8:ab:98:b1:ba:c6:35:f9:11:1a:e7:
f8:0b:c4:c6:2c:22:c4:c8:d9:b0:2d:28:8c:d6:98:e9:20:fd:
29:97:26:ac:24:21:f6:2e:01:03:16:24:e9:da:39:12:47:0d:
62:86:24:a2:1e:77:c0:ce:b1:2f:c2:ac:99:8f:f4:ff:55:19:
39:3a:79:65:5f:1a:1e:d3:e5:5a:f5:f4:cc:1b:9c:fd:aa:10:
b4:99:36:78:94:8c:d2:8f:7c:ea:e4:83:01:2a:61:20:58:b2:
b2:80:bd:8e:18:6d:3e:94:5d:24:27:ac:c6:f4:96:a7:55:19:
a6:b1:51:96:5d:f5:53:67:56:a3:a7:28:4f:31:83:bd:26:6a:
bd:58:8a:a0:7d:1a:19:ad:8a:45:ec:a0:f9:aa:10:1b:83:a8:
7b:98:71:9f:26:d3:f3:4c:67:f0:54:a0:fc:85:0e:e9:cf:43:
50:cb:8a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 18:10:22 2024 by rpki-client on console-fra.rpki-client.org