Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/0G1DyJXvmBCAIPwXRHHcKtV6w6I.roa
File: 0G1DyJXvmBCAIPwXRHHcKtV6w6I.roa (raw, json)
Hash identifier: YuuxzwnUkoDWpjAvLI1GJu92LHPa/J4SnLhMHLVHMvI=
Subject key identifier: D0:6D:43:C8:95:EF:98:10:80:20:FC:17:44:71:DC:2A:D5:7A:C3:A2
Certificate issuer: /CN=63444210ea08ac529878d51917e3b30054d620d1
Certificate serial: 0188577943A709C5B58426AFF70259302E10
Authority key identifier: 63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/0G1DyJXvmBCAIPwXRHHcKtV6w6I.roa
Signing time: Fri 26 May 2023 09:52:24 +0000
ROA not before: Fri 26 May 2023 09:52:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30722
IP address blocks: 109.119.0.0/16 maxlen: 16
2.34.0.0/15 maxlen: 20
109.114.0.0/15 maxlen: 19
176.242.0.0/15 maxlen: 15
109.115.192.0/19 maxlen: 19
109.115.96.0/19 maxlen: 19
2.32.0.0/16 maxlen: 20
109.112.0.0/15 maxlen: 15
188.152.128.0/17 maxlen: 20
109.118.0.0/16 maxlen: 16
109.116.0.0/15 maxlen: 20
176.244.0.0/14 maxlen: 14
2.36.0.0/14 maxlen: 18
188.218.0.0/15 maxlen: 18
188.152.0.0/17 maxlen: 20
2.40.0.0/16 maxlen: 20
188.216.0.0/15 maxlen: 17
109.115.224.0/19 maxlen: 19
130.0.128.0/18 maxlen: 21
188.153.0.0/16 maxlen: 20
130.25.0.0/16 maxlen: 18
Validation: Failed, certificate revoked on Fri 26 May 2023 10:22:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:79:43:a7:09:c5:b5:84:26:af:f7:02:59:30:2e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63444210ea08ac529878d51917e3b30054d620d1
Validity
Not Before: May 26 09:52:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d06d43c895ef98108020fc174471dc2ad57ac3a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6b:f5:e3:22:b5:62:e2:28:e9:40:d1:b4:28:
2c:35:dc:5e:d5:3e:14:6e:9c:12:91:ef:89:95:21:
6e:08:10:d8:de:1e:9f:88:70:d6:25:d4:2e:8a:0f:
e1:d5:9f:8e:cf:5b:c8:0b:51:b0:d9:44:29:76:92:
72:31:d9:f5:29:f6:3e:df:8f:2b:67:34:a9:1e:1c:
8e:3c:75:d2:78:9c:1d:d4:d7:90:95:b0:25:b7:61:
3b:2a:0a:11:62:20:be:e2:35:85:d5:9f:dc:8a:84:
e5:1e:a5:14:3f:1b:31:32:fd:a5:6e:1a:0b:d9:1b:
1d:95:77:f9:2b:0f:c9:af:e2:a3:c3:34:15:2a:64:
19:6c:6b:a6:fd:aa:51:72:ab:2a:ad:a4:c8:5f:be:
85:8e:11:69:19:3e:c3:94:95:87:a3:c8:c5:ab:f5:
9c:25:bb:61:b6:30:95:48:d3:bd:f0:24:f5:a6:98:
70:6c:72:86:5d:1c:d8:61:a0:6a:21:14:0e:90:21:
8e:0a:e2:09:f5:ed:08:82:9e:0f:61:75:2e:af:f4:
d5:19:e6:cb:08:18:a1:3c:86:80:a4:5b:90:37:99:
3f:e2:e8:64:1a:4c:f2:b3:98:98:c9:b8:a4:67:a2:
aa:f2:38:45:fd:15:00:c9:7d:68:45:95:af:e2:ab:
9e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:6D:43:C8:95:EF:98:10:80:20:FC:17:44:71:DC:2A:D5:7A:C3:A2
X509v3 Authority Key Identifier:
keyid:63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/0G1DyJXvmBCAIPwXRHHcKtV6w6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.32.0.0/16
2.34.0.0-2.40.255.255
109.112.0.0/13
130.0.128.0/18
130.25.0.0/16
176.242.0.0-176.247.255.255
188.152.0.0/15
188.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
10:f3:b8:a5:b0:2e:1f:01:de:4f:73:5a:ef:ec:74:e0:6b:5b:
21:09:1c:19:c0:d9:67:f3:34:1c:11:9c:53:ce:54:14:78:08:
5b:ab:69:12:e1:5f:4f:f9:43:bc:a2:06:a3:a3:5d:8a:13:82:
5b:a5:a5:c7:9c:84:ca:56:0a:2e:03:78:05:34:13:16:a2:37:
18:d6:c1:e8:1c:cd:51:d6:0b:71:db:61:3a:08:17:1f:53:7a:
98:06:91:64:77:ce:01:28:fc:da:23:75:82:20:a4:3f:45:55:
77:2f:75:53:61:d2:6d:d5:b2:d5:6f:d2:4d:ab:fd:63:5e:0b:
83:61:81:21:8b:84:2a:3a:c3:f5:c7:04:f7:78:fa:9f:cb:82:
0c:55:83:74:87:c3:fd:05:02:02:5b:75:7c:56:56:64:b3:eb:
24:29:11:fa:08:86:56:33:85:28:8e:6f:e6:15:f1:e6:00:67:
15:cb:e8:b9:4a:58:1b:4c:e4:01:00:9d:6e:41:c2:b6:08:16:
44:cf:23:dc:bd:05:e5:79:1c:72:48:80:22:21:29:47:ad:39:
a1:6c:db:70:5c:34:57:3a:b8:bc:8a:cb:9a:81:52:16:b5:bf:
96:16:3f:1e:5d:c3:4b:e3:d2:26:1d:3e:4b:8f:96:af:ca:1b:
5f:40:c6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org