Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/XF_eVHUSw5C2uGeaKgIRpOgL2pc.roa
File: XF_eVHUSw5C2uGeaKgIRpOgL2pc.roa (raw, json)
Hash identifier: VojzbKnhGyPv8guDSzJ13/bHTqdbPFmtrMPr5AS6w08=
Subject key identifier: 5C:5F:DE:54:75:12:C3:90:B6:B8:67:9A:2A:02:11:A4:E8:0B:DA:97
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018C5A277BC60EED38928FEB35CADB5E5417
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/XF_eVHUSw5C2uGeaKgIRpOgL2pc.roa
Signing time: Mon 11 Dec 2023 18:33:06 +0000
ROA not before: Mon 11 Dec 2023 18:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 193.163.151.0/24 maxlen: 24
188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
146.19.95.0/24 maxlen: 24
193.107.13.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
212.52.23.0/24 maxlen: 24
146.19.249.0/24 maxlen: 24
2a10:ee40::/29 maxlen: 29
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0f:d300::/29 maxlen: 48
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5a:27:7b:c6:0e:ed:38:92:8f:eb:35:ca:db:5e:54:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Dec 11 18:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c5fde547512c390b6b8679a2a0211a4e80bda97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ff:51:0b:b2:64:33:6b:7b:bc:5b:2c:85:85:
19:81:dc:4e:8a:f1:54:e2:98:c5:c1:8b:39:d6:b0:
53:d0:66:77:ef:b0:8c:3f:a5:27:92:6b:4c:da:76:
24:d4:fb:74:d1:ee:3c:52:c7:1e:91:d3:1b:39:10:
9b:66:7c:e5:33:be:dd:15:f3:99:8a:f2:69:92:8d:
fb:96:f4:e6:cd:b2:7f:16:ff:94:fc:2f:9b:f1:76:
5a:5b:4d:c5:93:42:4c:a5:0f:19:0f:a4:5c:18:42:
5f:4c:14:31:3d:49:d3:18:14:04:0f:2e:d9:de:81:
09:6f:3a:96:70:ef:39:02:2c:1a:c6:44:3f:ac:6a:
7d:89:6f:6e:eb:5e:89:36:bb:5c:9e:31:f4:c8:6d:
7e:38:9d:a8:0c:80:dd:3f:c7:1f:09:9a:92:ba:12:
88:df:85:0f:47:46:13:db:db:c6:c0:d2:74:ef:5a:
06:93:49:44:77:90:a0:94:ad:42:8d:a6:c4:64:86:
8b:85:d0:ec:87:78:67:c5:4a:92:f1:af:91:65:d7:
fc:8d:b5:4b:c8:9f:55:63:07:29:c1:29:49:41:5c:
37:8d:56:94:2f:37:74:f4:75:f5:13:9c:c2:2a:46:
15:8a:cb:9d:65:25:20:26:a1:64:7e:1a:f3:b2:57:
57:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5F:DE:54:75:12:C3:90:B6:B8:67:9A:2A:02:11:A4:E8:0B:DA:97
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/XF_eVHUSw5C2uGeaKgIRpOgL2pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.95.0/24
146.19.249.0/24
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
193.107.13.0/24
193.163.151.0/24
212.52.23.0/24
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a0f:d300::/29
2a10:ee40::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
65:59:74:9d:a5:e9:69:49:57:e4:f0:43:ae:59:cf:15:22:f7:
2a:aa:73:75:6e:70:47:51:0b:02:90:1e:21:c1:23:8f:68:d4:
73:f4:36:30:9d:5e:08:a4:ab:45:a0:39:d1:e2:51:73:2f:78:
02:57:5f:54:97:57:6e:c5:92:ce:0c:33:49:fb:c3:92:1d:3f:
f6:d7:a0:12:61:5d:d7:03:d4:ce:65:f9:4a:c1:5f:c2:5b:bc:
ba:ca:97:14:79:2b:e2:c2:5a:0d:92:f6:8d:51:4a:a7:a7:8d:
8d:d1:9d:74:1d:eb:12:79:7b:2a:2e:65:38:d0:c5:fb:ea:85:
83:b8:8b:46:4a:a8:13:8e:ae:6a:07:5f:4c:b0:49:f1:1f:28:
0c:2f:48:77:b7:99:ee:ff:29:69:34:b1:86:f8:72:26:ba:80:
c9:55:1d:46:8f:9d:04:0c:06:75:12:02:34:c7:7b:fe:6f:f9:
98:f8:03:5e:73:08:7a:15:bd:6b:4a:87:3c:0c:a6:10:c4:96:
07:af:53:4e:d5:f9:e1:cd:5a:72:b3:16:a6:ca:20:e3:77:53:
18:9a:00:1c:73:ee:51:e2:c1:37:08:86:6a:da:26:bb:22:1f:
ed:66:a2:36:df:a9:b6:e7:a8:7c:8e:29:8c:b0:5f:b7:1d:ab:
37:fc:0f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org