Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d8e096-4310-42b9-bd20-b5602d3da8a6/1/XXo5ro0gPXo8PU1NMbUSq7K6Xbg.roa
File: XXo5ro0gPXo8PU1NMbUSq7K6Xbg.roa (raw, json)
Hash identifier: TLEru4fvIaJ2LXRq1Q6IQHJyJlT+s8JZBulZsQ6qTfs=
Subject key identifier: 5D:7A:39:AE:8D:20:3D:7A:3C:3D:4D:4D:31:B5:12:AB:B2:BA:5D:B8
Certificate issuer: /CN=6e60883aae491e5fb773a9264019ff4f888d5ca5
Certificate serial: 018996D151C430709BAAE162DAC3D9F8FAA6
Authority key identifier: 6E:60:88:3A:AE:49:1E:5F:B7:73:A9:26:40:19:FF:4F:88:8D:5C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bmCIOq5JHl-3c6kmQBn_T4iNXKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d8e096-4310-42b9-bd20-b5602d3da8a6/1/XXo5ro0gPXo8PU1NMbUSq7K6Xbg.roa
Signing time: Thu 27 Jul 2023 10:07:27 +0000
ROA not before: Thu 27 Jul 2023 10:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44143
IP address blocks: 188.120.112.0/22 maxlen: 22
37.19.104.0/21 maxlen: 21
188.120.118.0/24 maxlen: 24
188.120.117.0/24 maxlen: 24
37.19.104.0/22 maxlen: 22
188.120.116.0/22 maxlen: 22
188.120.116.0/24 maxlen: 24
188.120.113.0/24 maxlen: 24
188.120.112.0/21 maxlen: 21
37.19.110.0/24 maxlen: 24
37.19.108.0/23 maxlen: 23
37.19.107.0/24 maxlen: 24
188.120.119.0/24 maxlen: 24
95.86.48.0/21 maxlen: 21
185.37.24.0/24 maxlen: 24
185.37.24.0/22 maxlen: 22
185.37.27.0/24 maxlen: 24
185.37.26.0/24 maxlen: 24
185.37.25.0/24 maxlen: 24
188.120.96.0/24 maxlen: 24
188.120.96.0/20 maxlen: 20
188.120.96.0/21 maxlen: 21
188.120.98.0/24 maxlen: 24
188.120.97.0/24 maxlen: 24
188.120.104.0/21 maxlen: 21
188.120.103.0/24 maxlen: 24
188.120.102.0/24 maxlen: 24
188.120.101.0/24 maxlen: 24
188.120.100.0/24 maxlen: 24
188.120.99.0/24 maxlen: 24
77.243.16.0/21 maxlen: 21
77.243.16.0/24 maxlen: 24
77.243.16.0/20 maxlen: 20
77.243.24.0/22 maxlen: 22
77.243.23.0/24 maxlen: 24
77.243.22.0/24 maxlen: 24
77.243.20.0/23 maxlen: 23
77.243.20.0/22 maxlen: 22
77.243.20.0/24 maxlen: 24
77.243.19.0/24 maxlen: 24
77.243.31.0/24 maxlen: 24
77.243.30.0/24 maxlen: 24
77.243.29.0/24 maxlen: 24
77.243.28.0/22 maxlen: 22
77.243.28.0/24 maxlen: 24
2a00:61c0::/32 maxlen: 32
2a00:61c0::/29 maxlen: 29
2a00:61c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:d1:51:c4:30:70:9b:aa:e1:62:da:c3:d9:f8:fa:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e60883aae491e5fb773a9264019ff4f888d5ca5
Validity
Not Before: Jul 27 10:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d7a39ae8d203d7a3c3d4d4d31b512abb2ba5db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:9f:35:37:a8:d8:37:1c:b7:d7:13:eb:e5:
48:55:7c:7d:65:26:2b:65:dd:24:2f:9e:32:cb:0a:
f4:28:78:d8:01:93:51:2b:bb:70:70:ac:86:d9:78:
40:e9:85:3c:94:7e:de:82:7a:b8:8e:d8:94:42:b4:
fd:c2:b2:35:5e:c0:af:3e:f9:7d:e7:db:7c:a5:d5:
9a:a3:6d:74:bd:92:45:4c:2c:52:f9:9b:81:bb:12:
81:e8:0f:d1:09:37:34:d3:34:c6:ed:cd:5f:93:77:
fc:4a:ea:ee:ed:f1:0c:98:6e:fd:17:f3:4c:86:3c:
d7:ab:02:6a:0b:b1:ce:a2:23:88:a8:9d:9c:ba:b4:
ad:c1:8d:af:e9:aa:f1:ae:30:4e:09:2c:a1:90:6b:
85:59:ba:ac:66:0d:03:45:aa:03:ee:72:8c:49:bb:
54:21:df:58:ad:e7:78:3a:13:09:6e:74:90:d5:e1:
b9:00:72:1a:54:11:be:94:c5:b7:9b:54:1a:b2:82:
06:fd:06:ce:7d:fc:f3:57:85:b6:c8:7c:c1:91:8a:
8d:16:e5:58:d8:5b:be:f3:92:15:6b:7b:23:77:a1:
17:ca:ea:ce:84:b2:ee:97:98:76:b6:dd:9b:af:79:
a9:f9:9e:65:33:26:ed:01:97:ba:d2:49:d3:3c:2c:
ee:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7A:39:AE:8D:20:3D:7A:3C:3D:4D:4D:31:B5:12:AB:B2:BA:5D:B8
X509v3 Authority Key Identifier:
keyid:6E:60:88:3A:AE:49:1E:5F:B7:73:A9:26:40:19:FF:4F:88:8D:5C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmCIOq5JHl-3c6kmQBn_T4iNXKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d8e096-4310-42b9-bd20-b5602d3da8a6/1/XXo5ro0gPXo8PU1NMbUSq7K6Xbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d8e096-4310-42b9-bd20-b5602d3da8a6/1/bmCIOq5JHl-3c6kmQBn_T4iNXKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.104.0/21
77.243.16.0/20
95.86.48.0/21
185.37.24.0/22
188.120.96.0-188.120.119.255
IPv6:
2a00:61c0::/29
Signature Algorithm: sha256WithRSAEncryption
35:df:ac:32:73:cc:82:cf:8e:da:6a:42:21:38:95:a7:f6:12:
b1:20:46:8e:e2:f3:45:b6:a8:87:05:8e:3b:bf:39:33:5e:2d:
0d:39:1e:8d:55:47:5a:7f:17:7a:5f:72:af:b7:ae:d7:f1:59:
d7:35:4f:c2:32:a2:e7:03:25:c2:b6:28:dd:eb:cc:25:28:75:
39:79:c2:b7:84:30:0b:22:1b:01:df:ff:1d:53:31:b1:f1:01:
b2:0f:f5:76:d3:89:c0:4b:b3:c8:b4:0a:95:9f:93:98:9a:0a:
61:2e:40:69:6b:2d:a0:f5:20:c6:17:ae:c7:2f:b5:50:2c:fc:
34:c5:d8:60:30:b1:ef:23:be:61:e5:42:d1:16:ec:65:f9:41:
5d:1c:42:f8:e1:7b:fb:5c:aa:00:ec:35:10:ad:bd:bf:2d:e4:
5c:b2:38:95:1d:2e:a1:e3:4f:ed:36:48:17:7e:d3:df:9c:ec:
3e:4a:0e:d4:52:ca:45:95:63:f0:07:73:49:fe:b6:68:c6:ab:
0e:82:cb:7b:de:ad:b4:90:33:a0:72:39:77:f5:00:fa:01:c2:
5e:ce:0c:84:60:8f:f1:4e:f9:1f:2d:4a:21:4d:fc:06:eb:7f:
cc:34:0a:7b:99:ce:59:f1:e2:12:ee:58:00:7d:5b:15:3a:67:
0e:c7:2d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:52 2024 by rpki-client on console-ams.rpki-client.org