Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/7vgbl6NpY9qYmRE2BRkMEWZ8QkI.roa
File: 7vgbl6NpY9qYmRE2BRkMEWZ8QkI.roa (raw, json)
Hash identifier: yfrsbL6ZKXGGVNHRxyzSrt/pQf5iz0tHYLdJQjxLLtI=
Subject key identifier: EE:F8:1B:97:A3:69:63:DA:98:99:11:36:05:19:0C:11:66:7C:42:42
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 0187B20CE2F98B184B6C4622DB5C44787EF4
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/7vgbl6NpY9qYmRE2BRkMEWZ8QkI.roa
Signing time: Mon 24 Apr 2023 06:56:41 +0000
ROA not before: Mon 24 Apr 2023 06:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 5.182.245.0/24 maxlen: 24
5.182.246.0/24 maxlen: 24
185.195.255.0/24 maxlen: 24
185.195.254.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
185.233.247.0/24 maxlen: 24
89.200.217.0/24 maxlen: 24
185.107.132.0/24 maxlen: 24
185.93.53.0/24 maxlen: 24
185.93.52.0/24 maxlen: 24
185.93.54.0/24 maxlen: 24
185.93.55.0/24 maxlen: 24
185.195.253.0/24 maxlen: 24
2a0a:61c0::/29 maxlen: 29
2a05:f740::/29 maxlen: 29
2a0c:f700::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 20 May 2023 10:23:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:0c:e2:f9:8b:18:4b:6c:46:22:db:5c:44:78:7e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Apr 24 06:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eef81b97a36963da9899113605190c11667c4242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a5:b1:5e:a1:12:96:6c:93:78:67:f6:fc:c8:
74:0f:a8:a8:c6:18:1d:2b:0c:1b:ae:a4:24:76:e4:
ae:b5:bb:c6:af:15:47:e0:99:04:e8:f8:e5:ee:5f:
52:71:75:1e:41:a1:2f:07:46:26:e3:11:b2:50:13:
3d:8f:7e:9d:17:38:a1:9a:a1:ee:01:14:00:6b:5d:
a8:97:c7:f8:1b:b2:ef:3f:19:8b:fc:ed:db:7b:8a:
92:d5:0f:28:f8:a6:4b:58:1a:1c:5f:12:03:66:04:
0a:aa:8d:3b:a1:bc:42:8f:7f:67:22:d9:26:37:37:
79:d7:c9:46:7e:e8:7e:6c:a0:74:d4:83:4c:59:f1:
5d:69:92:63:cf:d3:45:5b:25:a1:73:28:77:3e:ff:
ea:b1:e1:bb:0e:6b:58:73:f7:09:3e:f5:f1:df:a1:
24:03:3c:ce:b4:08:7e:d2:0f:1d:c5:6f:25:4d:22:
b5:3a:d0:04:0a:dd:21:0a:23:6c:52:54:d0:cb:3f:
5b:40:6f:90:c6:28:b3:2e:b0:dc:95:7b:cb:8e:87:
af:ba:27:2d:b9:7c:7d:48:62:99:b1:cd:a6:df:3e:
50:5a:05:64:6e:32:48:d4:d4:fc:d4:7c:5d:44:05:
12:9a:39:85:50:15:5b:63:4c:5c:48:38:45:9e:51:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F8:1B:97:A3:69:63:DA:98:99:11:36:05:19:0C:11:66:7C:42:42
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/7vgbl6NpY9qYmRE2BRkMEWZ8QkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.245.0-5.182.246.255
89.200.217.0/24
185.93.52.0/22
185.107.132.0/24
185.195.253.0-185.195.255.255
185.233.246.0/23
IPv6:
2a05:f740::/29
2a0a:61c0::/29
2a0c:f700::/29
Signature Algorithm: sha256WithRSAEncryption
0b:ab:8d:f7:6c:8a:9b:6b:69:fd:dc:9a:67:e9:e8:74:cd:0f:
36:1f:f7:7e:2d:09:f9:15:e0:a8:9b:09:8f:67:e9:65:20:c4:
70:c3:74:05:2d:8e:68:86:c8:07:ae:5f:b6:00:1a:19:3c:47:
c5:61:73:6c:bd:40:1b:da:9e:a7:88:70:a9:22:7e:0d:6d:db:
ba:80:9e:ea:f1:5c:e1:74:b7:93:75:39:e3:81:1e:4d:2a:c4:
07:d9:43:c6:69:31:d4:00:c4:af:59:80:f3:c2:d5:3b:a6:6a:
73:93:6b:8f:b9:c6:bb:54:22:3d:55:bf:f6:06:88:3f:e0:64:
ae:66:6b:fb:dc:95:a5:56:60:b7:91:38:98:f4:21:3c:52:1a:
c3:30:b6:de:5b:54:2a:6e:0c:52:c3:99:27:67:5a:d3:dd:4a:
0f:e5:ed:9f:16:2e:6a:3c:8f:70:60:da:db:8f:90:6f:2c:96:
a2:98:36:87:09:78:b8:cb:d2:54:ce:b4:23:46:e0:63:e5:de:
27:1b:4b:2e:0a:8f:fe:9b:7a:91:22:1b:9e:ec:0b:5f:5d:7e:
67:67:04:0f:8b:fc:8a:51:0f:fd:ab:65:90:36:ef:18:f0:10:
40:41:24:18:df:50:39:07:1c:ff:20:0c:c0:36:0d:65:52:5f:
84:ad:af:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org