Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/bJo4ep06pH-6-eAH15xdNJHJC6U.roa
File: bJo4ep06pH-6-eAH15xdNJHJC6U.roa (raw, json)
Hash identifier: 7KRCHK+SrTbJD0AyQvoLptKTEzo29TmHpdiWP+NEG04=
Subject key identifier: 6C:9A:38:7A:9D:3A:A4:7F:BA:F9:E0:07:D7:9C:5D:34:91:C9:0B:A5
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018BF60F05B99F0E509D255B4C6B75852D14
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/bJo4ep06pH-6-eAH15xdNJHJC6U.roa
Signing time: Wed 22 Nov 2023 08:04:21 +0000
ROA not before: Wed 22 Nov 2023 08:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 5.182.245.0/24 maxlen: 24
5.182.244.0/24 maxlen: 24
5.182.246.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
185.195.255.0/24 maxlen: 24
185.195.254.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
185.233.247.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
89.200.217.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
185.107.132.0/24 maxlen: 24
185.93.53.0/24 maxlen: 24
185.93.52.0/24 maxlen: 24
185.93.54.0/24 maxlen: 24
185.93.55.0/24 maxlen: 24
185.195.253.0/24 maxlen: 24
2a0a:61c0::/29 maxlen: 29
2a05:f740::/29 maxlen: 29
2a06:af40::/29 maxlen: 29
2a0c:f700::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:0f:05:b9:9f:0e:50:9d:25:5b:4c:6b:75:85:2d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Nov 22 08:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c9a387a9d3aa47fbaf9e007d79c5d3491c90ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:ac:dc:02:e3:e0:bf:95:31:9e:27:8c:cf:
b8:73:1d:ad:00:a7:67:e8:ca:77:40:6d:1d:d4:bb:
c7:07:fa:f5:8c:69:8a:c5:0c:77:55:0f:d0:e7:2e:
73:24:24:1b:d9:04:bd:45:8e:3e:58:a2:94:8f:69:
e0:64:35:6a:a7:1b:c5:dd:74:d7:4c:fe:5b:e0:42:
8b:5e:ab:82:c5:77:4a:38:d7:43:1c:55:bb:de:a9:
60:0c:7d:b7:47:5e:2a:e5:8b:6b:b7:ee:c0:89:0a:
33:c5:5d:63:dd:1a:73:b9:1d:36:6c:ed:5d:98:95:
76:31:32:e9:ef:b3:52:cb:f1:d2:54:7f:98:83:96:
3c:16:be:2f:fe:f8:98:24:2d:35:ab:3d:41:b3:6c:
3d:35:2c:60:04:06:cf:6d:cb:55:9b:02:36:2e:2c:
d2:01:45:81:41:f9:10:f0:8b:d2:c6:81:73:af:d6:
ea:12:13:d1:01:a6:40:ec:98:2a:c5:12:6f:d2:b3:
e4:e2:a5:5e:70:2f:89:a3:a6:50:28:c9:ef:af:6c:
bf:09:4b:55:42:bc:0c:f2:d2:b4:36:67:98:a8:7d:
8c:35:8e:bb:f7:e5:49:5e:78:0e:12:d9:68:19:28:
a2:c1:df:e2:7c:e5:29:0b:6f:9e:fa:9a:7b:df:bb:
9d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:9A:38:7A:9D:3A:A4:7F:BA:F9:E0:07:D7:9C:5D:34:91:C9:0B:A5
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/bJo4ep06pH-6-eAH15xdNJHJC6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0-5.182.246.255
89.200.216.0-89.200.218.255
93.157.189.0/24
93.157.191.0/24
185.93.52.0/22
185.107.132.0/24
185.195.253.0-185.195.255.255
185.233.246.0/23
IPv6:
2a05:f740::/29
2a06:af40::/29
2a0a:61c0::/29
2a0c:f700::/29
Signature Algorithm: sha256WithRSAEncryption
ae:7d:7f:0e:10:06:27:09:44:0c:be:55:93:fb:f0:11:03:7e:
ff:2f:53:c0:f4:17:08:28:89:f4:db:fd:30:e3:7f:dd:1e:ca:
1e:9a:6f:10:09:5f:50:85:de:a4:01:f8:5a:26:9a:02:4a:f1:
82:74:cf:82:f0:38:e2:44:92:d4:c8:1c:c6:f8:3f:68:4b:b8:
f7:91:c2:5d:13:99:25:f1:21:f4:a0:33:dc:b6:a4:b8:e3:98:
35:75:d9:45:cc:eb:4b:2b:60:6b:9d:f6:f0:8e:0e:9d:5a:e3:
3d:9c:74:ee:04:e8:b8:a1:d3:75:62:93:7e:91:d5:06:22:63:
d2:42:0f:b7:a2:8f:37:86:35:c5:fd:04:3a:ec:30:ff:41:50:
13:1c:3f:6a:1f:5e:0c:65:3c:0c:6d:72:0d:bf:a5:85:37:c1:
fb:ea:2b:fc:95:3c:e7:fe:fe:b2:31:bf:f4:20:02:8a:52:61:
21:51:8d:34:c1:f6:78:e6:50:23:7d:ea:b7:54:67:ee:6f:6b:
fd:2c:13:43:dd:19:44:18:d5:5e:e6:c8:98:fc:67:46:a9:5f:
e6:b6:7d:e1:9b:6f:45:41:4e:08:3b:ab:4e:90:63:0c:97:07:
a7:e9:86:46:bb:28:35:8b:a0:89:6a:64:03:2d:1b:c5:ec:17:
7b:95:64:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org