Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/EqZ6N2lUAXq3ekOA6KVdVAUh6No.roa
File: EqZ6N2lUAXq3ekOA6KVdVAUh6No.roa (raw, json)
Hash identifier: P1T7WwjSPiJ1EnKH7KOmqDP9rPqan15St72h86BuTYo=
Subject key identifier: 12:A6:7A:37:69:54:01:7A:B7:7A:43:80:E8:A5:5D:54:05:21:E8:DA
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 018E37E9605DF5C75A1829444DC64264755B
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/EqZ6N2lUAXq3ekOA6KVdVAUh6No.roa
Signing time: Wed 13 Mar 2024 13:03:45 +0000
ROA not before: Wed 13 Mar 2024 13:03:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203
IP address blocks: 5.159.208.0/21 maxlen: 24
31.192.96.0/21 maxlen: 24
45.8.100.0/22 maxlen: 24
45.132.108.0/22 maxlen: 24
80.74.240.0/21 maxlen: 24
80.74.248.0/21 maxlen: 24
85.95.96.0/19 maxlen: 24
92.42.120.0/21 maxlen: 24
95.129.64.0/21 maxlen: 24
185.79.184.0/22 maxlen: 24
185.94.204.0/22 maxlen: 24
185.99.76.0/22 maxlen: 24
185.145.88.0/22 maxlen: 24
185.178.216.0/22 maxlen: 24
185.204.212.0/22 maxlen: 24
188.94.16.0/21 maxlen: 24
193.24.3.0/24 maxlen: 24
193.24.6.0/24 maxlen: 24
193.24.13.0/24 maxlen: 24
193.24.31.0/24 maxlen: 24
195.26.32.0/19 maxlen: 24
195.88.8.0/23 maxlen: 24
212.11.68.0/22 maxlen: 24
212.11.72.0/22 maxlen: 24
2a00:f1c0::/32 maxlen: 32
2a04:e9c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:23:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:e9:60:5d:f5:c7:5a:18:29:44:4d:c6:42:64:75:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Mar 13 13:03:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12a67a376954017ab77a4380e8a55d540521e8da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:69:b9:82:e1:15:21:0e:7f:2e:43:d5:a6:
a5:1d:2e:51:af:69:c8:76:d1:92:8f:75:be:e2:87:
67:d3:3d:f6:7f:37:95:f9:6c:bc:70:50:ba:72:bf:
9b:19:42:2d:fd:b4:be:af:ec:47:54:47:93:4c:55:
a7:21:d3:47:18:78:41:cf:a1:4d:f4:e4:d8:48:b1:
fc:ea:76:89:96:8f:31:5a:58:f7:ae:24:72:2d:8a:
9e:fa:52:18:8b:48:e3:b9:c2:9d:0b:64:a6:e3:05:
a1:84:7a:2b:3e:22:04:8d:c2:e8:ca:4b:5e:83:1e:
8a:90:02:31:b3:04:4d:33:f0:6c:47:ca:cb:91:5e:
72:9b:a4:ef:63:74:0f:ea:cd:dd:4b:b5:47:85:eb:
c8:59:d5:08:80:27:0d:dd:f1:07:a9:7c:93:a6:e0:
e8:7a:c8:75:28:de:14:2a:7f:22:c5:01:fd:00:92:
8c:f0:2b:f8:e3:5d:70:21:e2:87:0d:7b:1c:91:c4:
9b:7e:ee:db:23:fd:69:be:c8:5f:f6:ac:4c:0c:a0:
c9:3d:c0:86:65:65:e2:79:f4:43:2c:92:4a:10:7d:
77:63:ab:c8:d9:e1:db:cc:12:c5:34:fd:db:7f:0d:
a7:53:a2:45:84:46:b6:61:fb:23:87:16:04:3d:45:
2a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A6:7A:37:69:54:01:7A:B7:7A:43:80:E8:A5:5D:54:05:21:E8:DA
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/EqZ6N2lUAXq3ekOA6KVdVAUh6No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.208.0/21
31.192.96.0/21
45.8.100.0/22
45.132.108.0/22
80.74.240.0/20
85.95.96.0/19
92.42.120.0/21
95.129.64.0/21
185.79.184.0/22
185.94.204.0/22
185.99.76.0/22
185.145.88.0/22
185.178.216.0/22
185.204.212.0/22
188.94.16.0/21
193.24.3.0/24
193.24.6.0/24
193.24.13.0/24
193.24.31.0/24
195.26.32.0/19
195.88.8.0/23
212.11.68.0-212.11.75.255
IPv6:
2a00:f1c0::/32
2a04:e9c0::/29
Signature Algorithm: sha256WithRSAEncryption
49:fb:71:b1:ab:28:a2:c0:c7:f1:8d:83:b0:95:07:f7:78:bd:
10:d6:1f:5a:47:64:58:f6:86:c3:0b:f7:2c:ab:ae:c8:5a:d4:
9d:cb:49:bd:f4:87:17:45:11:d3:fc:8e:4a:33:04:c0:35:c9:
8c:60:d4:d3:08:20:a7:36:f6:09:07:9e:c7:74:a7:ec:e8:bb:
37:82:d4:1f:ac:63:6a:ac:54:9b:6d:db:6c:93:fe:59:1d:37:
32:d2:76:5f:96:82:31:e6:7e:a2:84:0c:54:d9:1a:88:d2:56:
07:ad:80:eb:4b:55:f7:1e:d9:bb:cc:85:cd:85:5b:87:c4:f5:
35:2d:3b:2d:e9:ec:04:34:43:8c:e4:bf:4f:47:b3:6c:2f:a1:
ed:cf:7b:09:e1:4c:f7:81:9c:51:f3:61:ba:85:58:a9:93:08:
61:e3:54:2e:64:bc:a4:d2:01:d0:76:36:0e:c3:fb:1e:b5:77:
c1:be:c3:e6:04:8a:50:0e:6c:65:67:3e:da:0f:bd:9c:20:a4:
33:f0:18:3d:51:8c:0c:4b:fb:8d:51:1d:1d:c0:58:64:92:99:
d2:b4:d8:52:97:7b:3e:c1:3c:ce:6e:71:45:70:86:e2:bf:b9:
1d:76:db:4d:8c:3c:91:2e:a5:2d:c4:b6:84:da:4e:92:78:d6:
e2:50:28:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 20:00:22 2024 by rpki-client on console-fra.rpki-client.org