Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Zize8LuShg0xy3lsKT2wGNstQAU.roa
File: Zize8LuShg0xy3lsKT2wGNstQAU.roa (raw, json)
Hash identifier: 1vzACWOuVdI42e9KRm1byE0PduS+smK4GpHyPAXLvE4=
Subject key identifier: 66:2C:DE:F0:BB:92:86:0D:31:CB:79:6C:29:3D:B0:18:DB:2D:40:05
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 0186A715107D5A5F509F778FDCA84EEEF67C
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Zize8LuShg0xy3lsKT2wGNstQAU.roa
Signing time: Fri 03 Mar 2023 10:47:00 +0000
ROA not before: Fri 03 Mar 2023 10:47:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15694
IP address blocks: 194.145.228.0/24 maxlen: 24
195.167.150.0/24 maxlen: 24
195.167.158.0/24 maxlen: 24
195.167.155.0/24 maxlen: 24
206.252.224.0/19 maxlen: 19
217.17.32.0/20 maxlen: 20
206.252.250.0/24 maxlen: 24
212.91.4.0/22 maxlen: 22
217.149.240.0/20 maxlen: 20
212.91.10.0/24 maxlen: 24
212.91.11.0/24 maxlen: 24
212.91.16.0/20 maxlen: 20
212.91.14.0/24 maxlen: 24
212.91.13.0/24 maxlen: 24
212.91.12.0/24 maxlen: 24
77.79.210.0/24 maxlen: 24
77.79.221.0/24 maxlen: 24
195.167.144.0/20 maxlen: 20
85.232.224.0/19 maxlen: 19
46.229.144.0/20 maxlen: 20
213.189.32.0/19 maxlen: 19
213.189.32.0/24 maxlen: 24
213.189.42.0/24 maxlen: 24
213.189.50.0/24 maxlen: 24
85.232.254.0/24 maxlen: 24
77.79.192.0/18 maxlen: 18
2001:1a68:2e::/48 maxlen: 48
2001:1a68:18::/48 maxlen: 48
2001:1a68:0:13::/64 maxlen: 64
2001:1a68::/32 maxlen: 32
2001:1a68:0:1d::/64 maxlen: 64
2001:1a68:0:21::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 03 Apr 2023 05:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:15:10:7d:5a:5f:50:9f:77:8f:dc:a8:4e:ee:f6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Mar 3 10:47:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=662cdef0bb92860d31cb796c293db018db2d4005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:48:89:c2:79:0d:80:15:15:d0:b9:d9:fd:3b:
3c:09:a4:24:22:4d:90:85:12:fd:4e:41:3e:fa:a4:
7f:96:be:a7:49:4a:7a:77:7b:6e:24:03:8d:ba:14:
85:dd:ca:a0:88:be:7f:cd:ad:15:92:e1:97:d0:33:
f4:8e:31:a3:0d:8d:95:ce:a6:9f:1a:8c:60:d8:bc:
7b:43:91:59:ce:2c:38:57:4e:62:b7:fb:a6:15:57:
ef:97:b5:6b:6a:ce:c8:50:6a:c6:a9:77:c8:4f:23:
df:90:0e:3e:c3:2c:69:29:1b:8a:4e:e5:0d:25:fd:
d9:7d:db:00:11:38:16:51:ca:0e:ba:7d:7d:34:46:
a2:bd:e9:3a:65:f2:13:d6:1a:a5:97:dc:30:61:12:
35:dd:dc:e3:5b:27:f1:20:d7:34:3a:50:a1:c0:04:
d5:f6:d7:de:79:c6:d6:05:f9:f8:62:c9:d7:ae:2d:
2c:bf:ca:24:24:ae:12:b7:5d:65:09:cd:fb:9a:1a:
d6:b7:d9:65:c5:30:17:f4:aa:81:fe:76:13:e2:44:
77:f4:5c:6b:f6:b5:a1:42:eb:5e:b8:c9:52:f7:42:
2e:ee:d7:a8:02:2d:64:a9:a2:ff:7c:21:df:ab:b5:
e7:b0:1e:09:a7:d3:b1:16:a5:ab:0c:3c:06:2d:fb:
7a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2C:DE:F0:BB:92:86:0D:31:CB:79:6C:29:3D:B0:18:DB:2D:40:05
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Zize8LuShg0xy3lsKT2wGNstQAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.144.0/20
77.79.192.0/18
85.232.224.0/19
194.145.228.0/24
195.167.144.0/20
206.252.224.0/19
212.91.4.0/22
212.91.10.0-212.91.14.255
212.91.16.0/20
213.189.32.0/19
217.17.32.0/20
217.149.240.0/20
IPv6:
2001:1a68::/32
Signature Algorithm: sha256WithRSAEncryption
13:87:7b:09:f5:8f:a8:39:99:9d:a3:9f:bd:a5:a4:53:77:b6:
61:9e:6b:fb:81:9b:d1:8a:b6:ae:20:35:40:a9:82:60:03:03:
a0:39:a9:ca:6c:4e:04:75:38:bf:fa:47:a0:6c:ee:57:a3:03:
35:0f:e9:96:f4:29:9a:c6:07:b3:45:6b:06:53:c2:eb:3c:5b:
24:56:52:0c:1f:f7:45:30:5a:bc:0a:a8:dc:dc:e2:b1:b9:f3:
e1:fd:cd:8a:86:c9:42:35:22:ef:ab:6a:8c:4d:cf:57:35:27:
5f:d8:06:9f:db:e9:ca:f8:28:a0:ce:ce:ba:98:97:ce:7c:b9:
fa:e3:cf:8a:30:34:3d:18:99:5a:08:28:28:11:46:c0:2e:01:
76:9e:c8:3e:57:cb:56:55:95:a6:87:ed:47:df:b0:dc:83:d0:
3a:17:97:7a:ea:b6:c9:42:21:d6:61:ef:35:d0:cd:fa:fb:b2:
7f:1d:74:f0:42:ba:64:6d:fc:d5:d5:58:f3:e0:76:c0:b7:7a:
87:5b:24:e4:97:92:fd:ae:23:33:ad:b3:14:57:7c:8d:77:43:
61:1b:d7:36:2c:d8:a6:18:11:ce:fa:02:9a:3b:bb:51:be:a2:
26:28:b9:f4:2b:27:99:3c:bc:eb:79:3d:e5:2a:90:3a:65:b7:
96:1c:b2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org