Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/KRmY4IQRQ2P8lDjumhebzy4YgMo.roa
File: KRmY4IQRQ2P8lDjumhebzy4YgMo.roa (raw, json)
Hash identifier: FlCcMD9awhmH5iplfsJRU31FdCViV7KS6gYmCwG1Ekg=
Subject key identifier: 29:19:98:E0:84:11:43:63:FC:94:38:EE:9A:17:9B:CF:2E:18:80:CA
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018AEFE7CB2602E1BFD5C0ED4E77EC634C23
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/KRmY4IQRQ2P8lDjumhebzy4YgMo.roa
Signing time: Mon 02 Oct 2023 10:20:59 +0000
ROA not before: Mon 02 Oct 2023 10:20:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 85.8.160.0/22 maxlen: 22
193.38.44.0/22 maxlen: 22
217.18.208.0/22 maxlen: 22
139.28.240.0/22 maxlen: 22
185.231.224.0/22 maxlen: 22
139.28.48.0/22 maxlen: 22
213.139.224.0/22 maxlen: 22
83.171.244.0/22 maxlen: 22
85.8.156.0/22 maxlen: 22
92.249.60.0/22 maxlen: 22
193.187.108.0/22 maxlen: 22
176.96.128.0/22 maxlen: 22
194.93.48.0/22 maxlen: 22
176.53.156.0/22 maxlen: 22
176.53.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 04 Oct 2023 19:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:e7:cb:26:02:e1:bf:d5:c0:ed:4e:77:ec:63:4c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 2 10:20:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=291998e084114363fc9438ee9a179bcf2e1880ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3d:6a:76:42:f8:40:4f:73:0d:dd:e2:9d:ba:
5a:58:65:eb:db:91:c1:2e:ca:25:b0:3f:ff:cd:c3:
ae:5b:19:12:87:16:d0:cb:f4:99:f9:60:0a:1f:2d:
7e:18:ea:38:cf:a4:aa:26:dc:d8:3c:8b:ab:2f:ed:
c9:15:cd:03:4c:98:9c:20:7d:87:3e:7d:25:18:24:
a7:5d:f6:1b:2f:08:4b:ff:63:05:1e:42:ea:6f:8a:
8d:1a:f9:2d:53:02:06:e8:9a:28:8a:e5:b3:da:1f:
26:11:97:35:45:ae:97:12:63:aa:4e:05:b7:21:9e:
54:45:b5:19:5e:30:c9:8d:ab:06:d5:1e:f5:00:9f:
47:eb:5f:c5:8d:59:32:bf:42:72:52:9e:b6:30:60:
11:40:15:8f:9f:da:59:52:9a:e2:6a:55:58:82:54:
07:d0:8e:23:f2:40:6d:95:66:a3:2e:86:1d:16:e6:
f7:11:f0:98:60:69:0e:4e:23:15:5c:c4:6e:8c:ee:
71:f9:0e:85:ff:6c:bf:2f:a9:79:97:04:56:44:77:
79:d7:19:0f:48:4d:80:c3:ba:ad:94:71:97:1b:96:
bd:43:56:4c:0e:de:69:48:20:b1:50:6e:ea:11:65:
9b:c8:8a:69:ad:bf:64:43:d0:3b:5c:f9:48:9f:fa:
b1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:19:98:E0:84:11:43:63:FC:94:38:EE:9A:17:9B:CF:2E:18:80:CA
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/KRmY4IQRQ2P8lDjumhebzy4YgMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.244.0/22
85.8.156.0-85.8.163.255
92.249.60.0/22
139.28.48.0/22
139.28.240.0/22
176.53.156.0/22
176.53.168.0/22
176.96.128.0/22
185.231.224.0/22
193.38.44.0/22
193.187.108.0/22
194.93.48.0/22
213.139.224.0/22
217.18.208.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c5:dd:6c:4a:1f:24:29:27:6f:e7:e3:82:48:63:69:8e:7f:
70:f0:0c:ae:1f:d5:dd:b4:7d:0b:1a:1a:db:ae:b6:1f:e9:a4:
00:17:c2:ba:85:28:59:01:b8:af:70:91:3c:02:57:ca:92:63:
27:2c:d9:e3:2c:d8:97:9d:c1:93:31:5a:5d:7a:d9:0f:c1:bd:
da:99:2a:1a:1b:cb:5b:dd:ef:e3:48:c9:5f:22:30:67:48:32:
ac:c8:95:ea:e1:5f:fd:56:5d:ec:54:fd:ba:d2:28:c3:6a:8f:
5f:e4:a1:a5:25:fc:37:18:f1:48:2e:e9:9c:a7:bf:b4:d2:26:
ae:4c:49:f5:b6:72:2c:d9:81:ae:a8:ca:34:c9:bb:26:fc:6b:
8f:79:55:92:77:6f:b2:64:27:7e:fc:12:b6:cc:32:ea:e6:0e:
e3:c4:0a:a8:9b:c6:16:49:9e:59:0b:21:96:ec:d0:04:15:47:
5c:4f:2d:a5:8c:02:ab:38:17:93:6c:72:20:b6:3b:96:ae:ed:
31:68:66:92:55:f2:d6:7b:72:21:ff:ea:be:ac:94:70:44:0b:
00:dc:ce:8c:3f:21:ed:21:98:af:4c:19:18:0e:82:6e:f7:93:
63:f3:53:04:34:24:da:e6:a7:d4:2c:f1:90:e2:54:7f:6a:75:
8f:60:9b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org