Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AL6eorohKwbNRCNFKf8zgEJ3-Os.roa
File: AL6eorohKwbNRCNFKf8zgEJ3-Os.roa (raw, json)
Hash identifier: 3lfby4RrvSzSiyDvrt3RuAwmrrF7lxlFp11nI+JwAs0=
Subject key identifier: 00:BE:9E:A2:BA:21:2B:06:CD:44:23:45:29:FF:33:80:42:77:F8:EB
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 0192D50A556B0FB0065C4D40060FA3EB56D6
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AL6eorohKwbNRCNFKf8zgEJ3-Os.roa
Signing time: Mon 28 Oct 2024 21:31:17 +0000
ROA not before: Mon 28 Oct 2024 21:31:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6939
IP address blocks: 5.133.100.0/22 maxlen: 22
5.133.124.0/22 maxlen: 22
31.40.196.0/22 maxlen: 22
77.241.72.0/22 maxlen: 22
83.171.244.0/22 maxlen: 22
84.54.0.0/22 maxlen: 22
85.8.144.0/22 maxlen: 22
85.235.72.0/22 maxlen: 22
139.28.48.0/22 maxlen: 22
139.28.212.0/22 maxlen: 22
176.53.156.0/22 maxlen: 22
176.96.128.0/22 maxlen: 22
193.32.204.0/22 maxlen: 22
193.38.44.0/22 maxlen: 22
194.93.48.0/22 maxlen: 22
194.93.60.0/22 maxlen: 22
212.87.196.0/22 maxlen: 22
212.115.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 08 Nov 2024 16:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d5:0a:55:6b:0f:b0:06:5c:4d:40:06:0f:a3:eb:56:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 28 21:31:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00be9ea2ba212b06cd44234529ff33804277f8eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fa:27:65:7f:89:86:e3:e3:e7:39:a4:58:67:
aa:f5:44:33:88:7a:9c:c0:65:70:bb:c2:8c:38:96:
a3:71:cd:7e:42:09:0c:41:77:74:c8:bc:dd:fd:92:
93:b7:ac:4f:bc:ab:ca:4d:f0:7c:f6:14:14:0c:25:
ff:29:47:02:d6:f8:f7:b9:dc:37:9e:d7:9c:ff:79:
d6:a3:21:34:2e:f8:47:f9:e9:14:02:bc:59:ab:93:
8e:ae:f9:cb:50:df:71:a0:63:7c:4d:44:1b:ad:b2:
46:34:16:9d:33:6b:47:4d:79:ad:d9:fb:c2:2b:7e:
b2:18:0e:06:57:e0:49:6a:9d:16:42:45:50:3f:20:
88:2b:5a:78:99:6f:8e:bd:2d:55:f7:f5:7f:ff:f6:
e1:0e:b0:6b:54:c4:16:95:30:d4:70:8f:e7:3e:98:
a4:f5:8e:4f:6a:a1:22:fa:f4:72:db:ea:b1:a9:be:
95:97:b2:c9:08:cd:29:9c:83:9e:c2:73:88:65:66:
dd:e8:6a:8e:85:6f:f7:29:8e:0e:cd:4b:2e:97:08:
ad:64:ac:6f:6a:a3:8d:9d:df:16:0f:8c:ff:11:98:
d6:3c:5f:ef:2b:ee:72:6d:49:50:c8:6e:21:ba:0b:
d8:04:07:c4:d2:e0:05:02:25:f6:f5:d3:41:c1:0c:
75:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BE:9E:A2:BA:21:2B:06:CD:44:23:45:29:FF:33:80:42:77:F8:EB
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AL6eorohKwbNRCNFKf8zgEJ3-Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
5.133.124.0/22
31.40.196.0/22
77.241.72.0/22
83.171.244.0/22
84.54.0.0/22
85.8.144.0/22
85.235.72.0/22
139.28.48.0/22
139.28.212.0/22
176.53.156.0/22
176.96.128.0/22
193.32.204.0/22
193.38.44.0/22
194.93.48.0/22
194.93.60.0/22
212.87.196.0/22
212.115.100.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:c7:dc:58:26:d2:fd:a8:6e:c1:85:67:16:96:e1:85:ac:4e:
31:f9:78:ce:c3:3d:ba:ab:99:d0:89:a3:92:e4:31:d0:1d:f7:
31:ef:38:a5:d2:58:7d:35:09:8d:cb:61:a4:3a:61:19:b6:9c:
5d:4e:e4:73:6f:94:f6:71:99:2a:2c:f3:36:88:62:e5:87:11:
7e:1f:b5:0e:28:f2:79:58:2c:2a:bc:71:2a:35:b0:36:e1:a0:
53:88:85:44:2d:f6:88:49:45:34:ec:30:89:6e:e7:71:5d:da:
52:e4:d6:90:ae:90:dd:bc:fa:cc:01:18:f8:59:1d:7f:1c:97:
a5:54:82:6f:82:92:ed:e6:28:a8:37:ae:b8:df:0b:ab:77:69:
26:cd:9e:e6:4a:76:35:b1:25:20:ac:3b:03:dc:98:61:9f:a5:
f9:72:0f:a7:d2:f9:dd:b6:a8:c8:56:0b:6f:31:af:1f:36:d1:
67:40:67:c4:30:bb:58:b9:45:1f:68:48:e6:97:de:2b:51:1a:
80:78:e0:b8:cf:5b:b4:90:4a:3a:ef:79:c4:22:90:6a:77:75:
77:6c:70:1b:c6:2e:e6:d7:70:b6:73:1e:12:11:7e:73:0a:8e:
68:90:dd:d4:7d:31:05:c8:22:10:5a:eb:57:01:0a:7d:ca:02:
70:99:e5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 19:11:58 2024 by rpki-client on console-ams.rpki-client.org