Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Y8OCH6EP6u6HDAziS0pym3JAuzM.roa
File: Y8OCH6EP6u6HDAziS0pym3JAuzM.roa (raw, json)
Hash identifier: CaahmMALev9+csjygusCmoLI0U8ee0NPMDQfCA71UvY=
Subject key identifier: 63:C3:82:1F:A1:0F:EA:EE:87:0C:0C:E2:4B:4A:72:9B:72:40:BB:33
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018CCA2BB3993B467C3319F4E888274059A4
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Y8OCH6EP6u6HDAziS0pym3JAuzM.roa
Signing time: Tue 02 Jan 2024 12:35:10 +0000
ROA not before: Tue 02 Jan 2024 12:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15694
IP address blocks: 194.145.228.0/24 maxlen: 24
195.167.150.0/24 maxlen: 24
195.167.158.0/24 maxlen: 24
195.167.155.0/24 maxlen: 24
206.252.224.0/19 maxlen: 19
217.17.32.0/20 maxlen: 20
206.252.250.0/24 maxlen: 24
212.91.4.0/22 maxlen: 22
217.149.240.0/20 maxlen: 20
212.91.10.0/24 maxlen: 24
212.91.11.0/24 maxlen: 24
212.91.16.0/20 maxlen: 20
212.91.14.0/24 maxlen: 24
212.91.13.0/24 maxlen: 24
212.91.12.0/24 maxlen: 24
77.79.210.0/24 maxlen: 24
77.79.215.0/24 maxlen: 24
77.79.221.0/24 maxlen: 24
195.167.144.0/20 maxlen: 20
85.232.224.0/19 maxlen: 19
46.229.144.0/20 maxlen: 20
213.189.32.0/19 maxlen: 19
213.189.32.0/24 maxlen: 24
213.189.42.0/24 maxlen: 24
213.189.50.0/24 maxlen: 24
85.232.254.0/24 maxlen: 24
77.79.192.0/18 maxlen: 18
2001:1a68:2e::/48 maxlen: 48
2001:1a68:18::/48 maxlen: 48
2001:1a68:0:13::/64 maxlen: 64
2001:1a68::/32 maxlen: 32
2001:1a68:0:1d::/64 maxlen: 64
2001:1a68:0:21::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 19 Feb 2024 15:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:b3:99:3b:46:7c:33:19:f4:e8:88:27:40:59:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 12:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63c3821fa10feaee870c0ce24b4a729b7240bb33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:89:0f:ab:9b:12:b3:87:f5:2d:36:00:f3:28:
21:0c:71:e4:8d:a9:d9:55:7f:6f:73:31:7f:ee:f2:
43:3f:05:26:4d:ab:48:5b:68:6b:8f:6a:bf:2c:79:
d6:46:4e:a2:dc:ff:c9:0d:c7:8a:c0:e0:77:78:6a:
98:b0:03:95:74:e6:fa:e7:dd:eb:b8:dd:e3:b4:c4:
93:23:1d:0a:d9:ac:9b:28:a6:b8:f6:b4:82:bc:b4:
65:eb:dd:bb:48:d1:af:72:c1:4c:e7:63:eb:73:4c:
c5:3c:22:a6:0b:be:b9:c3:9b:cb:ba:35:28:cc:5a:
6b:0e:f6:2f:9b:7e:3a:5c:0e:da:04:b5:c2:11:64:
52:f1:03:87:67:b8:11:62:19:69:3e:46:4c:09:bc:
85:5a:a2:e6:14:2b:c8:75:c5:af:8e:e8:4e:f4:f2:
da:36:45:9d:9e:79:5f:c3:65:22:90:cc:0b:9b:7d:
55:9f:bb:5e:5e:39:ba:fd:ce:76:3f:b0:85:90:f5:
c3:d0:d3:32:ce:d0:fb:e5:6b:04:c8:30:68:f2:1a:
1c:41:4a:e7:dc:97:86:c6:03:f2:06:d6:4c:39:44:
3c:88:c9:fe:00:ea:95:5e:da:a5:ad:9c:59:c7:65:
13:2b:83:10:8c:62:6b:12:ee:af:35:c2:ae:ff:11:
c2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C3:82:1F:A1:0F:EA:EE:87:0C:0C:E2:4B:4A:72:9B:72:40:BB:33
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Y8OCH6EP6u6HDAziS0pym3JAuzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.144.0/20
77.79.192.0/18
85.232.224.0/19
194.145.228.0/24
195.167.144.0/20
206.252.224.0/19
212.91.4.0/22
212.91.10.0-212.91.14.255
212.91.16.0/20
213.189.32.0/19
217.17.32.0/20
217.149.240.0/20
IPv6:
2001:1a68::/32
Signature Algorithm: sha256WithRSAEncryption
58:57:d4:56:bc:b9:36:9b:23:4d:6b:48:51:c3:53:44:82:f4:
2a:ae:18:3b:bc:36:67:c3:86:03:ca:e9:8e:57:9a:f8:b9:70:
43:3e:f5:81:b2:29:d3:56:e9:2b:33:e0:e3:13:43:ae:02:db:
63:ff:9e:4b:82:76:e7:25:a1:81:c3:69:4b:99:02:df:23:bb:
f4:56:a8:4b:d0:3b:91:74:4c:8c:73:4c:a4:3e:64:cb:bf:91:
11:04:88:66:82:cd:96:b9:11:76:a0:e8:43:b8:45:f7:0b:e4:
dd:a1:32:6b:07:24:50:b3:cd:5d:20:7c:ed:44:d4:3f:cb:1a:
0e:75:a6:7d:a3:0f:58:d9:db:4d:4a:15:26:da:67:85:2c:5e:
44:5a:a3:c4:07:0d:eb:f7:01:36:0c:b9:bc:f6:27:7a:60:4d:
f0:cd:19:bf:eb:eb:73:2e:bc:b6:d9:28:7e:bc:6d:9d:91:92:
02:9d:ad:f4:5e:a7:81:1a:b2:c2:c3:73:36:28:29:f8:39:06:
e8:db:98:2d:88:05:f6:2e:62:98:be:3f:1c:b0:d9:86:48:c3:
9a:5d:0c:b4:8d:b4:51:35:4a:b1:b2:a8:f1:58:6c:67:ae:e1:
15:9c:5a:20:8e:ba:b1:bd:49:f5:75:38:46:4c:11:51:6e:c4:
f6:24:4a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org