Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zLKXimsaUE7UbxO2wqQfo17gyJg.roa
File: zLKXimsaUE7UbxO2wqQfo17gyJg.roa (raw, json)
Hash identifier: F2dvCeor2Z7M8dJrmHH0m+TXLPtZnQ7DG/RfKx1P29c=
Subject key identifier: CC:B2:97:8A:6B:1A:50:4E:D4:6F:13:B6:C2:A4:1F:A3:5E:E0:C8:98
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 0190E4C9BD4B3BF0189855A8C084AE002086
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zLKXimsaUE7UbxO2wqQfo17gyJg.roa
Signing time: Wed 24 Jul 2024 12:49:04 +0000
ROA not before: Wed 24 Jul 2024 12:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57794
IP address blocks: 37.98.192.0/21 maxlen: 21
37.98.192.0/22 maxlen: 22
37.98.196.0/22 maxlen: 22
82.192.2.0/23 maxlen: 23
82.192.2.0/24 maxlen: 24
82.192.3.0/24 maxlen: 24
188.117.192.0/21 maxlen: 21
188.117.192.0/22 maxlen: 22
188.117.196.0/22 maxlen: 22
188.117.216.0/22 maxlen: 22
188.117.216.0/23 maxlen: 23
188.117.218.0/23 maxlen: 23
188.117.224.0/21 maxlen: 22
188.117.232.0/21 maxlen: 22
188.117.240.0/22 maxlen: 22
188.117.240.0/23 maxlen: 23
188.117.242.0/23 maxlen: 23
188.117.248.0/22 maxlen: 22
188.117.248.0/23 maxlen: 23
188.117.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 23 Oct 2024 11:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:c9:bd:4b:3b:f0:18:98:55:a8:c0:84:ae:00:20:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jul 24 12:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccb2978a6b1a504ed46f13b6c2a41fa35ee0c898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:06:52:d2:02:96:ad:3b:e9:34:3c:91:0a:04:
e7:1b:9e:ed:21:b4:07:6d:f2:20:39:0f:39:0b:9d:
29:10:1a:65:a9:2d:1f:79:3f:28:32:98:cf:4e:3c:
c7:a9:0c:8a:79:09:50:af:c8:83:39:67:41:98:57:
7d:78:3f:68:53:ca:2c:84:c2:6d:8c:ef:4d:fe:0a:
24:6e:96:2b:91:f9:5a:4b:9c:d9:02:b9:3e:43:bd:
6f:42:1e:cd:08:c0:ad:2a:a7:5f:c6:02:8d:8a:b4:
1a:23:06:aa:24:a2:36:6a:26:7f:fb:e2:af:e7:33:
88:08:87:60:51:b4:b7:36:8e:c1:43:78:28:1f:62:
e9:07:31:e2:f7:5e:b0:7e:2d:3c:95:80:b0:22:5a:
fb:33:9e:56:d4:97:8f:31:40:a6:8f:07:c2:9a:60:
b0:c1:aa:c0:8b:fe:8d:b7:d3:81:29:dc:a8:07:66:
44:6c:3d:e7:3c:47:4e:01:d2:ac:eb:86:15:5c:d6:
4e:e9:06:87:8a:72:7d:e9:1b:db:3b:7b:d8:30:77:
bd:3e:8e:44:76:61:60:3c:69:d7:f8:c3:38:36:5f:
8f:6d:ec:be:19:cf:7b:ce:03:27:fe:85:6e:f4:39:
47:ea:6a:fd:5f:45:24:01:fe:cf:7f:fe:fe:20:cf:
6b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B2:97:8A:6B:1A:50:4E:D4:6F:13:B6:C2:A4:1F:A3:5E:E0:C8:98
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zLKXimsaUE7UbxO2wqQfo17gyJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.98.192.0/21
82.192.2.0/23
188.117.192.0/21
188.117.216.0/22
188.117.224.0-188.117.243.255
188.117.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:7f:f6:d9:ad:77:5e:fb:8a:14:18:e8:f2:1d:2d:d4:21:3e:
1d:32:46:e4:19:e1:d2:01:81:90:06:bd:17:7f:73:a1:fa:ab:
cf:f7:ed:41:9f:f5:96:f9:af:b5:e0:a3:bb:39:04:ee:b6:f3:
ee:fa:26:26:ef:08:22:01:ad:28:1b:a2:02:29:c6:04:1b:8b:
20:bb:77:69:b5:83:c9:52:79:2a:14:48:8a:d1:08:21:40:6b:
8c:60:6f:e1:c0:df:ed:6a:4b:d8:be:4f:82:10:c8:d9:81:6f:
ee:e9:5a:8c:06:e2:96:55:df:81:b5:e8:c6:a7:39:ae:8b:c4:
ed:af:50:ac:fb:20:8d:21:6a:b7:a9:18:76:e9:a1:69:7c:f8:
5a:f6:bf:1e:c1:f8:43:ec:26:82:8c:6b:a1:69:95:14:ca:ad:
6b:02:e4:85:6a:73:19:2e:87:43:9e:b5:54:f5:de:10:a6:de:
da:c0:8a:d4:0e:bb:8c:b7:5e:97:3d:39:0e:b8:f1:e1:bb:f5:
c2:57:92:76:12:bc:dd:f0:84:b8:50:69:9c:a6:05:e9:fe:ee:
8e:07:9f:8c:a4:49:f7:f6:e7:c9:16:a7:2f:ac:a6:db:6f:58:
98:10:52:a4:1e:df:3e:73:09:9a:67:97:f2:2c:d6:94:1b:9e:
02:1d:ad:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 16:02:56 2024 by rpki-client on console-ams.rpki-client.org