Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/baTBFmM8JzVXhaYJHIlmbXgNWMk.roa
File: baTBFmM8JzVXhaYJHIlmbXgNWMk.roa (raw, json)
Hash identifier: ar/RX2d58fFRjLRZ1GVx5VIMuIEMCRmynF/wsFsV014=
Subject key identifier: 6D:A4:C1:16:63:3C:27:35:57:85:A6:09:1C:89:66:6D:78:0D:58:C9
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018F14162CB35931D0936F1C6D05A200E607
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/baTBFmM8JzVXhaYJHIlmbXgNWMk.roa
Signing time: Thu 25 Apr 2024 07:09:08 +0000
ROA not before: Thu 25 Apr 2024 07:09:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30962
IP address blocks: 45.129.240.0/22 maxlen: 22
45.129.241.0/24 maxlen: 24
62.108.32.0/20 maxlen: 20
62.108.32.0/24 maxlen: 24
62.108.48.0/20 maxlen: 20
84.19.0.0/19 maxlen: 19
89.107.64.0/21 maxlen: 21
91.190.144.0/21 maxlen: 21
91.230.27.0/24 maxlen: 24
91.230.47.0/24 maxlen: 24
93.190.88.0/21 maxlen: 21
93.190.95.0/24 maxlen: 24
185.147.216.0/22 maxlen: 22
185.148.68.0/23 maxlen: 24
185.148.70.0/23 maxlen: 24
194.113.216.0/23 maxlen: 23
195.62.20.0/23 maxlen: 23
195.191.114.0/23 maxlen: 23
195.225.240.0/22 maxlen: 22
2a00:f70::/32 maxlen: 32
2a03:f200::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 25 Apr 2024 09:28:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:16:2c:b3:59:31:d0:93:6f:1c:6d:05:a2:00:e6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Apr 25 07:09:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6da4c116633c27355785a6091c89666d780d58c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:17:af:85:9b:ab:54:b3:62:37:45:3c:64:6a:
a0:a8:63:9a:03:08:6e:8c:38:eb:ab:2c:79:89:e1:
f5:da:17:b2:f8:49:f7:de:1f:1f:a3:4e:68:cd:99:
05:b1:04:40:d4:ab:6d:b0:fd:3f:9f:9d:04:f4:77:
35:6f:e9:17:b8:1f:23:55:4c:49:06:34:a7:59:66:
fc:1f:f2:c1:7a:a1:f9:61:ec:62:75:b1:ab:0d:0f:
dc:5f:bb:89:92:33:31:da:ed:d3:c5:a9:92:2a:d1:
8c:fd:ac:1e:f1:47:dc:ff:93:91:6e:6a:3b:88:f7:
cd:88:7c:e4:58:a8:f0:3c:8f:13:0f:d9:f9:a2:8a:
f0:9a:fc:9c:c2:60:d1:e5:6d:df:01:db:9b:8d:7d:
bc:0b:51:0d:c2:89:b8:18:9c:68:20:05:9a:66:de:
9b:96:af:89:8b:b3:c7:57:7e:fe:91:91:a1:75:36:
9e:5c:97:35:5b:0a:23:ce:06:43:37:4b:93:14:78:
28:ec:64:f3:27:89:fb:89:76:d3:e1:40:4b:60:19:
f1:62:13:f4:f1:19:45:13:96:3b:4d:d4:b0:ed:93:
a6:27:f1:8f:4f:05:35:68:07:bc:d9:f1:5c:9c:c8:
b3:46:c7:f7:e5:50:20:16:70:39:a0:34:78:8f:49:
d8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A4:C1:16:63:3C:27:35:57:85:A6:09:1C:89:66:6D:78:0D:58:C9
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/baTBFmM8JzVXhaYJHIlmbXgNWMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.240.0/22
62.108.32.0/19
84.19.0.0/19
89.107.64.0/21
91.190.144.0/21
91.230.27.0/24
91.230.47.0/24
93.190.88.0/21
185.147.216.0/22
185.148.68.0/22
194.113.216.0/23
195.62.20.0/23
195.191.114.0/23
195.225.240.0/22
IPv6:
2a00:f70::/32
2a03:f200::/32
Signature Algorithm: sha256WithRSAEncryption
0e:d9:01:12:db:cc:9f:63:ce:c8:6d:1e:d1:d4:4d:ea:d7:7b:
3c:81:74:1d:f6:59:86:5d:82:67:10:4b:a1:54:6f:48:b5:b1:
65:be:6b:99:ca:c4:cb:6d:97:5f:6d:2b:6f:6e:d3:17:68:64:
85:23:01:dd:46:ae:e2:21:91:64:39:0e:92:01:91:3a:ee:9a:
56:db:db:bd:c9:d9:17:a1:c7:47:ac:f6:03:12:ed:f0:d5:18:
61:e4:14:50:08:8e:8f:e7:7b:43:35:05:82:a3:a7:c6:f1:60:
c5:ca:07:a8:77:b5:87:f0:bd:68:79:7f:71:bf:08:43:85:42:
2d:a9:ec:a0:5f:48:80:cd:7f:ad:b2:73:60:0d:12:43:af:86:
38:13:1a:f1:9b:15:d0:61:f0:05:87:b3:44:88:5e:a0:3d:79:
92:01:6d:73:86:b6:3f:54:44:33:35:6d:9c:e4:4c:5a:49:3f:
fe:11:e2:6b:21:05:ef:e0:f4:85:5b:d0:37:3f:c8:7c:98:8b:
65:60:a7:fd:b5:3d:a9:9b:3c:9f:33:92:67:9c:c6:22:f2:65:
28:bb:a0:38:98:28:dc:94:67:89:05:01:56:91:70:86:f7:ef:
5c:52:ba:15:65:fd:2c:44:77:e3:f2:9d:5d:2a:ad:aa:42:97:
98:51:0f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:29 2024 by rpki-client on console-ams.rpki-client.org