Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/EGcE56ndIN1pgv50DoKG5lJoZbU.roa
File: EGcE56ndIN1pgv50DoKG5lJoZbU.roa (raw, json)
Hash identifier: rug2uzrxp9k7O7jNuL6EF1/PXmXieXLD7h0nhqTxeKg=
Subject key identifier: 10:67:04:E7:A9:DD:20:DD:69:82:FE:74:0E:82:86:E6:52:68:65:B5
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 0187458EBC60BE739F85B58C95E22577B424
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/EGcE56ndIN1pgv50DoKG5lJoZbU.roa
Signing time: Mon 03 Apr 2023 05:19:54 +0000
ROA not before: Mon 03 Apr 2023 05:19:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15694
IP address blocks: 194.145.228.0/24 maxlen: 24
195.167.150.0/24 maxlen: 24
195.167.158.0/24 maxlen: 24
195.167.155.0/24 maxlen: 24
206.252.224.0/19 maxlen: 19
217.17.32.0/20 maxlen: 20
206.252.250.0/24 maxlen: 24
212.91.4.0/22 maxlen: 22
217.149.240.0/20 maxlen: 20
212.91.10.0/24 maxlen: 24
212.91.11.0/24 maxlen: 24
212.91.16.0/20 maxlen: 20
212.91.14.0/24 maxlen: 24
212.91.13.0/24 maxlen: 24
212.91.12.0/24 maxlen: 24
77.79.210.0/24 maxlen: 24
77.79.215.0/24 maxlen: 24
77.79.221.0/24 maxlen: 24
195.167.144.0/20 maxlen: 20
85.232.224.0/19 maxlen: 19
46.229.144.0/20 maxlen: 20
213.189.32.0/19 maxlen: 19
213.189.32.0/24 maxlen: 24
213.189.42.0/24 maxlen: 24
213.189.50.0/24 maxlen: 24
85.232.254.0/24 maxlen: 24
77.79.192.0/18 maxlen: 18
2001:1a68:2e::/48 maxlen: 48
2001:1a68:18::/48 maxlen: 48
2001:1a68:0:13::/64 maxlen: 64
2001:1a68::/32 maxlen: 32
2001:1a68:0:1d::/64 maxlen: 64
2001:1a68:0:21::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:8e:bc:60:be:73:9f:85:b5:8c:95:e2:25:77:b4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Apr 3 05:19:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=106704e7a9dd20dd6982fe740e8286e6526865b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:62:68:a3:41:28:43:73:d6:22:6c:43:f8:9c:
38:83:ec:ef:d7:58:aa:41:f8:74:e5:37:fa:8b:4d:
83:29:52:69:03:2e:ec:e9:72:eb:8e:c1:c6:38:db:
1e:dc:23:ac:4e:d9:87:9b:b9:eb:75:47:0f:0b:3b:
79:2c:0b:1d:ee:8d:6a:10:b6:d3:60:7d:97:2f:49:
c7:4b:e6:87:df:e3:0e:9e:9d:a1:af:2a:9f:eb:43:
c2:d7:a6:89:9e:7a:a0:21:12:26:4c:9f:5f:d3:a1:
0f:eb:7c:41:54:e0:ad:43:a7:65:03:af:48:14:b2:
45:13:fc:a3:8c:50:55:c9:77:db:e9:a4:23:da:8f:
4c:62:db:de:56:eb:51:d9:19:d0:a2:be:40:27:d3:
97:35:38:01:e4:00:f4:0d:49:87:a3:2a:9e:05:02:
a0:5e:36:de:c1:4e:45:6e:da:f4:d6:a4:5e:45:e1:
5a:94:9d:24:10:9b:12:0f:2c:dc:9e:81:61:fe:f3:
a4:9f:a1:d7:c6:64:f2:2f:92:b2:c8:3c:17:23:fe:
ca:ed:be:9c:d2:93:61:2e:30:c5:08:93:2e:77:49:
94:c1:e8:95:ec:3b:2d:ca:87:32:ff:5b:ac:05:df:
59:18:8b:0f:ba:79:7f:91:e5:80:09:9a:30:05:b9:
6b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:67:04:E7:A9:DD:20:DD:69:82:FE:74:0E:82:86:E6:52:68:65:B5
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/EGcE56ndIN1pgv50DoKG5lJoZbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.144.0/20
77.79.192.0/18
85.232.224.0/19
194.145.228.0/24
195.167.144.0/20
206.252.224.0/19
212.91.4.0/22
212.91.10.0-212.91.14.255
212.91.16.0/20
213.189.32.0/19
217.17.32.0/20
217.149.240.0/20
IPv6:
2001:1a68::/32
Signature Algorithm: sha256WithRSAEncryption
1f:c9:0f:26:c0:e3:f5:e9:0b:b1:3f:d3:e8:41:89:89:3e:c6:
5b:4e:ba:eb:cf:0d:f1:67:c9:06:a2:f0:2b:7d:9f:59:90:d2:
0b:8b:1e:e8:f5:5f:a7:0a:79:88:db:de:d0:fc:28:b8:2e:21:
5c:1a:a2:3f:da:ba:45:d4:80:45:73:72:f9:18:19:65:a7:2d:
af:60:a2:78:7c:10:81:cb:aa:dc:56:e8:ba:75:ba:26:d4:ab:
9d:7f:4d:df:8d:e3:dc:4b:21:37:2e:68:af:6f:e1:f8:9b:e3:
53:d3:09:c2:c2:e9:e4:70:f8:42:95:79:ba:65:e1:a2:24:ae:
2f:0b:f8:50:4b:57:76:c8:23:af:b1:77:21:ae:47:01:56:cf:
94:20:7b:e8:0d:48:c1:b4:8d:98:bc:02:d0:a4:15:d8:4d:13:
28:51:96:38:96:d0:8c:3a:5c:79:ed:db:29:54:66:43:1e:f5:
c4:b4:63:01:eb:37:d7:50:b7:db:c3:85:a7:8d:ae:40:54:10:
96:2d:59:e3:61:e7:ec:b4:8a:ad:a1:14:fb:9d:87:d8:30:e9:
b3:11:c1:c9:f7:71:80:8e:4e:a1:94:ee:bd:81:75:6a:85:50:
25:be:c2:15:ad:f3:80:71:3c:db:ce:f8:bf:23:84:a7:f5:c6:
49:88:f4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org