Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/K5O-aWveIqIhOqTmOu0nVo1Hido.roa
File: K5O-aWveIqIhOqTmOu0nVo1Hido.roa (raw, json)
Hash identifier: uaOCcC5gRxT1fWoTOmMomGvQ0ay2izzvJAhK2nb0xKw=
Subject key identifier: 2B:93:BE:69:6B:DE:22:A2:21:3A:A4:E6:3A:ED:27:56:8D:47:89:DA
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018A2DD097F1B84071132316AE7FAD9C3FA0
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/K5O-aWveIqIhOqTmOu0nVo1Hido.roa
Signing time: Fri 25 Aug 2023 17:49:19 +0000
ROA not before: Fri 25 Aug 2023 17:49:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 91.228.119.0/24 maxlen: 24
91.236.237.0/24 maxlen: 24
46.151.32.0/24 maxlen: 24
46.151.34.0/24 maxlen: 24
46.151.35.0/24 maxlen: 24
46.151.33.0/24 maxlen: 24
77.36.57.0/24 maxlen: 24
77.36.60.0/24 maxlen: 24
77.36.65.0/24 maxlen: 24
93.120.120.0/22 maxlen: 22
77.36.68.0/22 maxlen: 22
91.229.6.0/24 maxlen: 24
188.191.252.0/22 maxlen: 22
178.159.147.0/24 maxlen: 24
91.223.158.0/24 maxlen: 24
91.237.48.0/24 maxlen: 24
176.96.93.0/24 maxlen: 24
176.96.48.0/22 maxlen: 22
77.36.4.0/22 maxlen: 22
91.239.222.0/23 maxlen: 23
93.120.12.0/22 maxlen: 22
91.236.77.0/24 maxlen: 24
93.120.38.0/24 maxlen: 24
93.120.36.0/24 maxlen: 24
93.120.37.0/24 maxlen: 24
91.232.254.0/24 maxlen: 24
93.120.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 15:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:d0:97:f1:b8:40:71:13:23:16:ae:7f:ad:9c:3f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Aug 25 17:49:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b93be696bde22a2213aa4e63aed27568d4789da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5f:8d:11:92:6f:e0:75:e9:0f:57:cc:40:46:
37:f2:ea:0d:31:9c:af:8c:78:0d:f7:1a:19:09:07:
05:08:16:92:38:b8:6a:27:5d:66:42:b3:cf:5b:b3:
c8:1d:23:c0:b2:5e:5a:39:3d:e5:0f:ff:c3:f7:a1:
28:93:af:2d:99:28:16:f5:0d:26:70:29:6b:7c:86:
99:a2:e1:c5:a0:1c:8e:f2:d9:d5:b4:28:d5:5d:1a:
6d:c1:dc:db:ad:c7:b9:a9:f2:d7:03:41:0d:99:c1:
c5:17:35:73:52:85:be:3e:c1:ba:a0:22:96:53:d7:
77:aa:30:7a:23:d6:f4:0a:3c:fe:b1:b7:9d:7c:11:
78:f1:d6:b7:5b:02:75:8e:75:2b:6d:75:5e:51:af:
e6:31:f5:df:ef:76:12:fe:90:f9:c9:0a:69:61:81:
e3:84:d8:0d:89:c6:fd:8c:e9:24:10:95:a4:0b:82:
08:96:16:b4:53:f7:eb:60:c7:b8:52:4f:9b:19:4f:
fc:17:cc:ce:ab:a4:73:bf:f3:7b:dd:60:5c:4d:6e:
99:5a:99:5f:bd:af:64:e0:f8:41:ab:c4:30:00:71:
71:df:76:34:f6:31:33:c4:fc:8d:c3:82:bd:fa:77:
ef:01:7b:09:22:58:a0:4e:3f:b2:f1:ff:eb:e7:3d:
ed:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:93:BE:69:6B:DE:22:A2:21:3A:A4:E6:3A:ED:27:56:8D:47:89:DA
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/K5O-aWveIqIhOqTmOu0nVo1Hido.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.32.0/22
77.36.4.0/22
77.36.57.0/24
77.36.60.0/24
77.36.65.0/24
77.36.68.0/22
91.223.158.0/24
91.228.119.0/24
91.229.6.0/24
91.232.254.0/24
91.236.77.0/24
91.236.237.0/24
91.237.48.0/24
91.239.222.0/23
93.120.12.0/22
93.120.36.0-93.120.38.255
93.120.46.0/24
93.120.120.0/22
176.96.48.0/22
176.96.93.0/24
178.159.147.0/24
188.191.252.0/22
Signature Algorithm: sha256WithRSAEncryption
35:4c:ac:ab:b7:55:1d:8d:c6:62:63:c8:0f:8d:34:c5:9b:0c:
d1:99:cd:93:bf:2a:a8:a7:95:22:11:a1:96:32:b7:65:23:36:
19:0b:3b:0d:ca:a4:85:67:7d:73:a6:bc:ea:d7:24:dc:57:3f:
49:04:0b:ad:38:47:2a:19:b7:00:bf:5f:5b:07:ee:6e:8c:f1:
73:c5:96:15:cd:2b:61:45:20:0f:7c:d3:47:2b:bb:50:73:76:
88:ea:35:39:42:76:bf:df:5f:6e:90:42:14:8a:33:05:e5:1c:
cb:43:b8:ca:17:30:8f:f4:0d:8d:fa:c6:b9:07:95:b1:4f:13:
c2:47:89:30:7e:74:a9:c0:eb:9f:ad:04:bd:db:e3:7a:45:20:
0e:58:f1:cd:04:7e:4a:81:d7:5e:1b:f9:7b:fb:9f:17:db:95:
4b:78:8a:c7:39:e6:df:b7:c1:e7:a4:99:e7:13:d6:ad:60:5f:
17:32:77:86:a5:3c:f4:5d:76:f6:02:43:d1:df:83:c8:91:df:
ed:36:e0:54:cc:d2:d2:7d:cd:8d:a8:f7:ff:a0:8a:ea:70:25:
a2:97:3e:0a:74:d3:9e:e6:f2:d0:94:d4:93:ed:ce:df:65:f5:
a2:90:e8:88:4d:65:59:46:d4:0b:fd:53:8d:56:30:47:18:c8:
81:b4:4e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org