Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/qJABY2P0DCiQt2RjL_TsC_wuHcI.roa
File: qJABY2P0DCiQt2RjL_TsC_wuHcI.roa (raw, json)
Hash identifier: B6kQmL+xz8Xc8Wdm+6d0Z8jJl5swn0zy/h9iSzcmbnQ=
Subject key identifier: A8:90:01:63:63:F4:0C:28:90:B7:64:63:2F:F4:EC:0B:FC:2E:1D:C2
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018AEAC5192B69E9BD5FA3DB25D2F0105457
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/qJABY2P0DCiQt2RjL_TsC_wuHcI.roa
Signing time: Sun 01 Oct 2023 10:25:00 +0000
ROA not before: Sun 01 Oct 2023 10:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 5.182.245.0/24 maxlen: 24
5.182.244.0/24 maxlen: 24
5.182.246.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
185.195.255.0/24 maxlen: 24
185.195.254.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
185.233.247.0/24 maxlen: 24
89.200.217.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
185.107.132.0/24 maxlen: 24
185.93.53.0/24 maxlen: 24
185.93.52.0/24 maxlen: 24
185.93.54.0/24 maxlen: 24
185.93.55.0/24 maxlen: 24
185.195.253.0/24 maxlen: 24
2a0a:61c0::/29 maxlen: 29
2a05:f740::/29 maxlen: 29
2a06:af40::/29 maxlen: 29
2a0c:f700::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 22 Nov 2023 08:04:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ea:c5:19:2b:69:e9:bd:5f:a3:db:25:d2:f0:10:54:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Oct 1 10:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a890016363f40c2890b764632ff4ec0bfc2e1dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:85:84:90:43:8e:9d:09:8b:d5:98:cc:07:
ce:d8:fe:61:a1:ed:e6:94:39:c4:e1:90:25:31:dc:
05:78:5a:a9:c0:96:31:9e:1a:23:9a:6b:2b:f6:93:
b9:13:ce:36:f0:d2:10:84:b8:15:b9:93:71:df:d4:
33:d4:f1:21:ea:bc:85:c3:69:88:de:8e:27:dd:4e:
9b:61:9c:17:85:cc:d8:c0:d7:ae:43:39:0d:e8:0e:
50:d6:4d:82:9e:de:2c:d9:e6:b7:da:de:dd:81:0a:
40:cf:65:f7:f1:37:a7:3d:73:e0:59:99:7a:01:5d:
1b:1b:cc:8b:7e:65:dd:7b:58:fd:f4:09:c2:42:34:
8b:ea:c5:21:22:94:8b:2d:28:d7:6e:35:7e:7c:e4:
1a:bc:6a:88:15:a3:43:ae:ce:ff:eb:15:83:b7:ba:
fb:b7:8e:80:63:62:37:75:69:70:b0:a5:0f:08:48:
f7:c7:4f:19:b7:5b:e9:65:5d:b0:69:f1:c9:1e:93:
48:f4:f5:5c:a0:44:f4:fc:2d:b4:61:0c:02:ca:d6:
a7:0c:5f:d2:f4:21:27:80:94:8a:63:1f:04:09:35:
10:0b:09:20:f7:fb:f7:44:69:4a:f4:5e:8c:7f:22:
9a:72:61:f1:0b:d5:d9:55:3a:0d:e4:96:35:50:c5:
b2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:90:01:63:63:F4:0C:28:90:B7:64:63:2F:F4:EC:0B:FC:2E:1D:C2
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/qJABY2P0DCiQt2RjL_TsC_wuHcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0-5.182.246.255
89.200.216.0/23
93.157.189.0/24
185.93.52.0/22
185.107.132.0/24
185.195.253.0-185.195.255.255
185.233.246.0/23
IPv6:
2a05:f740::/29
2a06:af40::/29
2a0a:61c0::/29
2a0c:f700::/29
Signature Algorithm: sha256WithRSAEncryption
a5:60:3e:b3:75:e9:16:f6:7b:2c:56:38:4a:5e:b7:42:e4:36:
17:7c:ae:a0:73:0e:7a:5e:fc:83:95:ed:04:aa:3e:0d:07:e7:
4a:3b:7c:60:7a:5e:94:43:dd:93:85:76:1a:d4:ab:b6:54:e1:
b2:ba:87:e2:31:8a:df:59:06:ec:34:89:4f:7e:2f:92:5d:4c:
d3:29:4a:ba:8a:c7:3c:f3:f4:9f:c8:0c:6b:b7:a6:d4:a0:0e:
c2:66:29:22:c9:35:4b:4b:ad:cb:b6:d8:a8:f4:20:07:3c:50:
2e:45:7c:18:ec:48:dd:51:ff:d0:ab:e2:3a:c9:47:e2:91:0d:
a1:7d:5c:e7:31:41:0b:39:8f:05:ce:c5:f4:9a:2f:33:d5:08:
79:e7:63:11:27:91:e2:9f:a1:51:2f:62:eb:ac:c7:f1:a0:b3:
18:11:e2:35:f2:38:d0:47:c1:9a:1b:9c:fd:c4:94:cd:3a:07:
bd:1c:97:60:0d:28:15:91:a7:62:6b:f3:ae:df:ab:03:e0:33:
9f:7e:42:ac:57:ce:04:41:db:51:14:d6:c5:7f:2d:7b:4e:33:
b7:a2:2f:ca:8a:a6:16:18:aa:b5:2e:fc:95:5a:db:fc:04:a7:
2d:0a:25:c6:1a:a8:4c:9e:13:5c:e7:e8:76:0a:9b:c2:47:d4:
e2:cb:80:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org