Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/viFO1Kmh8fmqfwEF7CLKFuWA_yc.roa
File: viFO1Kmh8fmqfwEF7CLKFuWA_yc.roa (raw, json)
Hash identifier: 943j8IIgM2n08m/oP1fIsKiwyVzA53lI0p7mqnlUqDg=
Subject key identifier: BE:21:4E:D4:A9:A1:F1:F9:AA:7F:01:05:EC:22:CA:16:E5:80:FF:27
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 018E37E960EB42E76A88AB9FE85A88C77020
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/viFO1Kmh8fmqfwEF7CLKFuWA_yc.roa
Signing time: Wed 13 Mar 2024 13:03:45 +0000
ROA not before: Wed 13 Mar 2024 13:03:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21267
IP address blocks: 5.159.208.0/21 maxlen: 24
31.192.96.0/21 maxlen: 24
45.8.100.0/22 maxlen: 24
45.132.108.0/22 maxlen: 24
80.74.240.0/21 maxlen: 24
80.74.248.0/21 maxlen: 24
85.95.96.0/19 maxlen: 24
92.42.120.0/21 maxlen: 24
95.129.64.0/21 maxlen: 24
185.79.184.0/22 maxlen: 24
185.94.204.0/22 maxlen: 24
185.99.76.0/22 maxlen: 24
185.145.88.0/22 maxlen: 24
185.178.216.0/22 maxlen: 24
185.204.212.0/22 maxlen: 24
188.94.16.0/21 maxlen: 24
193.24.3.0/24 maxlen: 24
193.24.6.0/24 maxlen: 24
193.24.13.0/24 maxlen: 24
193.24.31.0/24 maxlen: 24
195.26.32.0/19 maxlen: 24
195.88.8.0/23 maxlen: 24
212.11.68.0/22 maxlen: 24
212.11.72.0/22 maxlen: 24
2a00:f1c0::/32 maxlen: 32
2a04:e9c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:23:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:e9:60:eb:42:e7:6a:88:ab:9f:e8:5a:88:c7:70:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Mar 13 13:03:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be214ed4a9a1f1f9aa7f0105ec22ca16e580ff27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:62:55:b7:55:7b:13:f4:bd:d0:de:29:06:19:
f2:3f:d6:48:47:a4:a2:eb:b4:b3:5f:04:d9:34:98:
16:85:ad:b4:41:45:82:40:5b:2d:f6:76:73:78:f7:
b0:20:12:cc:bf:7e:5e:36:28:f0:75:06:8b:c9:7d:
37:af:56:43:b7:61:08:7e:8b:85:62:66:e5:a4:67:
7f:1a:46:fb:f6:fd:eb:01:f4:d0:88:99:df:e5:bb:
90:ca:8e:75:1a:59:22:66:4f:0d:a3:8a:e3:c5:ac:
07:f2:79:48:ea:6f:25:65:5f:64:12:75:e2:6a:74:
10:5e:f2:cf:10:92:1b:34:50:67:21:83:db:74:6b:
10:64:21:71:27:72:9b:28:0c:67:91:15:6c:fe:25:
50:3c:cb:9a:4e:d0:bb:b1:c1:68:ca:ea:d8:71:f8:
9a:27:a1:3f:23:97:a5:a6:af:4b:c4:ae:e6:60:fe:
53:41:4e:c6:f3:49:6c:24:60:d6:ee:7c:70:ac:f3:
92:0a:36:0c:47:fd:f6:47:32:fd:18:88:02:fd:3a:
73:b5:6a:c2:62:18:69:8f:9a:f1:31:f7:7f:c7:25:
d4:12:c6:f1:e2:9f:ab:23:d5:f6:ba:71:1a:28:f9:
d9:62:b8:8e:7d:70:f0:4c:bb:1b:fa:a3:c0:a8:61:
f2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:21:4E:D4:A9:A1:F1:F9:AA:7F:01:05:EC:22:CA:16:E5:80:FF:27
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/viFO1Kmh8fmqfwEF7CLKFuWA_yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.208.0/21
31.192.96.0/21
45.8.100.0/22
45.132.108.0/22
80.74.240.0/20
85.95.96.0/19
92.42.120.0/21
95.129.64.0/21
185.79.184.0/22
185.94.204.0/22
185.99.76.0/22
185.145.88.0/22
185.178.216.0/22
185.204.212.0/22
188.94.16.0/21
193.24.3.0/24
193.24.6.0/24
193.24.13.0/24
193.24.31.0/24
195.26.32.0/19
195.88.8.0/23
212.11.68.0-212.11.75.255
IPv6:
2a00:f1c0::/32
2a04:e9c0::/29
Signature Algorithm: sha256WithRSAEncryption
39:14:e6:a6:b6:db:ab:39:fd:22:de:94:3b:88:70:ef:c1:df:
7b:3d:b2:f9:a2:06:0b:8c:8c:61:0d:a5:6f:ef:95:8b:57:47:
e6:6e:6c:43:43:11:a1:2e:b6:12:c6:56:dc:4a:6f:f6:ed:1e:
eb:66:94:39:10:1b:aa:c4:40:c9:40:b6:57:c7:3d:e1:27:6b:
05:28:67:66:98:2f:f7:bc:90:13:83:9e:ec:e1:00:ae:55:56:
94:72:a0:9b:31:e8:4c:2f:9b:25:40:3d:eb:1e:9b:2a:e3:38:
72:3c:8e:0b:11:04:91:19:ff:f2:fd:42:dc:ea:8f:c2:8f:51:
1e:a5:71:9c:d5:a7:76:8d:27:89:6c:8f:ac:1c:0c:69:e4:05:
64:43:d6:a3:bc:48:3c:af:5e:a8:5f:8c:97:f1:a2:50:7f:cf:
5a:a2:cf:f0:76:5e:85:86:29:af:8d:68:0c:ef:c5:73:0a:80:
fc:37:d8:1a:b7:27:f0:9d:b7:42:45:ec:c1:64:81:e5:b8:cf:
56:8a:b9:ff:fe:44:2c:63:81:b6:88:94:79:ff:21:2a:5f:7b:
0c:d2:d1:47:fe:66:a1:66:db:dc:bd:26:d0:ad:97:d7:d3:6e:
1f:d2:f9:49:0b:60:07:e6:c5:38:9c:e3:e3:61:e6:68:9e:a0:
6e:f6:b8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:55 2024 by rpki-client on console-ams.rpki-client.org