Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/6m20JR-d81r01oYr9nZlew5A_aY.roa
File: 6m20JR-d81r01oYr9nZlew5A_aY.roa (raw, json)
Hash identifier: tFKSWO2jVFgqzOYcVlF6sYXdBJIB249rWs48+gzVUZ0=
Subject key identifier: EA:6D:B4:25:1F:9D:F3:5A:F4:D6:86:2B:F6:76:65:7B:0E:40:FD:A6
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018CC6B8C711C40ECE8633984988A4D4164F
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/6m20JR-d81r01oYr9nZlew5A_aY.roa
Signing time: Mon 01 Jan 2024 20:30:47 +0000
ROA not before: Mon 01 Jan 2024 20:30:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29262
IP address blocks: 62.182.35.0/24 maxlen: 24
62.182.34.0/24 maxlen: 24
62.182.33.0/24 maxlen: 24
62.182.32.0/24 maxlen: 24
193.38.44.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
194.56.186.0/23 maxlen: 23
85.235.74.0/23 maxlen: 23
85.235.72.0/23 maxlen: 23
139.28.35.0/24 maxlen: 24
139.28.34.0/24 maxlen: 24
139.28.33.0/24 maxlen: 24
139.28.32.0/24 maxlen: 24
194.169.94.0/23 maxlen: 23
194.169.92.0/23 maxlen: 23
185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
141.98.51.0/24 maxlen: 24
141.98.50.0/24 maxlen: 24
141.98.49.0/24 maxlen: 24
141.98.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 17:59:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:c7:11:c4:0e:ce:86:33:98:49:88:a4:d4:16:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 1 20:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea6db4251f9df35af4d6862bf676657b0e40fda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e2:9d:c7:39:82:52:1f:5f:5d:9f:6c:db:d8:
88:09:9b:df:8a:87:c5:eb:82:5b:14:a9:74:5d:c1:
91:b9:c5:48:8a:3c:9f:c7:47:52:f8:2f:34:9c:13:
de:8b:b6:1b:07:8c:39:cc:45:97:f9:00:0e:85:20:
b0:7b:1e:07:59:70:1a:32:e3:15:f2:d6:cb:51:64:
0d:93:8b:6e:bf:25:e8:18:8f:be:15:c3:5c:7e:43:
7d:2a:c0:52:9b:52:4a:29:5f:65:3d:49:36:fd:1c:
9d:a6:ed:ad:89:a3:09:ec:5c:bd:35:5c:cb:0e:e9:
1f:f5:9e:98:24:9b:49:db:7b:cc:50:54:c4:cb:f8:
ce:a8:e8:23:38:4b:24:e8:0d:90:dd:bd:af:c2:bb:
b9:f0:fd:ed:01:f6:bd:a3:ec:02:22:a8:6c:a0:ff:
81:e5:a8:d4:53:ce:ca:8d:eb:63:d8:78:4e:57:4f:
45:71:ac:bb:aa:a4:17:34:43:37:6b:a2:34:31:1f:
c3:6c:6d:ec:18:21:a4:43:1b:cb:3d:f4:d1:52:e4:
cf:f2:b6:af:f0:22:3f:3b:ff:e2:58:be:97:5b:9c:
88:7e:66:13:f2:f9:c7:07:8f:dc:7f:df:49:36:c4:
bc:cb:49:ae:3a:89:0d:d2:1b:cc:01:b8:4f:cc:89:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6D:B4:25:1F:9D:F3:5A:F4:D6:86:2B:F6:76:65:7B:0E:40:FD:A6
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/6m20JR-d81r01oYr9nZlew5A_aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.32.0/22
85.235.72.0/22
139.28.32.0/22
141.98.48.0/22
185.254.54.0/23
193.38.44.0/22
194.56.186.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:c6:98:6a:33:99:d3:26:6c:f1:5e:62:1a:a9:91:2d:0f:d0:
84:81:da:84:ec:de:5b:ad:b4:ff:7a:b1:1e:63:a6:53:b8:de:
b7:a9:80:2f:c5:1b:b6:eb:00:3f:5c:7e:da:9d:2f:0e:cc:83:
e9:c7:ed:d4:21:7b:d2:27:16:a2:17:bf:64:65:27:a3:38:e2:
67:86:73:a2:05:6b:eb:52:e5:da:a2:1c:c4:b7:9c:09:67:b3:
7b:0c:6a:cd:57:95:41:b4:e0:0b:5a:e9:20:39:d6:f1:e2:9a:
26:a8:8c:ca:cb:a9:46:3a:8b:d3:8d:64:90:dc:0f:d4:45:49:
0c:17:65:ff:8c:6d:6d:91:68:a2:88:47:15:b4:70:a9:ba:56:
71:0a:e9:94:d1:1f:13:38:f7:5c:b9:5b:5d:e5:34:82:e2:ba:
11:7b:64:79:9e:1e:fd:ea:68:d3:40:1f:12:c5:cd:fb:c8:9d:
06:77:82:49:91:96:cc:6c:79:8a:30:7e:46:7d:d0:3d:38:ce:
51:78:49:52:04:12:03:89:27:ab:de:99:dd:bd:4b:6e:fd:19:
f0:aa:41:3b:3d:98:95:7d:0f:07:46:16:86:c9:61:e1:97:ee:
58:f7:cc:ec:8c:33:d5:a0:68:c5:91:f3:f2:03:31:2e:0e:5a:
f8:39:9c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:49 2024 by rpki-client on console-fra.rpki-client.org