Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/OObH5AueG0G_WxmyehedFBZmAH4.roa
File: OObH5AueG0G_WxmyehedFBZmAH4.roa (raw, json)
Hash identifier: 4EoSxTxLSN9S7sd1yXuFlT6i85zNTClxZCSB4kxl3hM=
Subject key identifier: 38:E6:C7:E4:0B:9E:1B:41:BF:5B:19:B2:7A:17:9D:14:16:66:00:7E
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018C411A0B2D4F94329CB15F15CE7200191E
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/OObH5AueG0G_WxmyehedFBZmAH4.roa
Signing time: Wed 06 Dec 2023 21:47:54 +0000
ROA not before: Wed 06 Dec 2023 21:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 185.55.4.0/23 maxlen: 23
185.55.4.0/22 maxlen: 22
185.55.6.0/23 maxlen: 23
176.103.240.0/22 maxlen: 22
176.96.88.0/22 maxlen: 22
176.103.244.0/22 maxlen: 22
176.103.240.0/21 maxlen: 21
176.116.232.0/22 maxlen: 22
185.55.142.0/23 maxlen: 23
185.55.140.0/22 maxlen: 22
185.55.140.0/23 maxlen: 23
64.43.112.0/22 maxlen: 22
46.173.240.0/21 maxlen: 21
178.212.184.0/22 maxlen: 22
178.212.184.0/21 maxlen: 21
64.43.124.0/22 maxlen: 22
178.212.188.0/22 maxlen: 22
91.233.0.0/23 maxlen: 23
193.36.204.0/22 maxlen: 22
176.102.124.0/22 maxlen: 22
176.102.120.0/21 maxlen: 21
176.102.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:41:1a:0b:2d:4f:94:32:9c:b1:5f:15:ce:72:00:19:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Dec 6 21:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38e6c7e40b9e1b41bf5b19b27a179d141666007e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:71:d7:87:bc:d0:60:cc:f1:e2:dc:1a:f7:ed:
c0:90:65:2f:7d:ec:80:5f:4d:6a:40:89:bf:f1:2c:
36:ea:dc:51:81:31:cf:d0:cd:bc:0d:a2:b3:97:64:
10:eb:29:61:8e:e1:6c:99:26:85:3b:3f:6e:09:bd:
0c:b3:97:74:6f:e6:e8:d5:6c:5d:91:a6:f1:29:e7:
b1:aa:95:d8:18:04:1a:93:1b:5f:cc:46:32:d6:17:
94:9d:f8:ff:88:76:29:e4:e3:bd:0a:f7:4c:3e:bb:
4f:05:98:3a:24:10:35:7d:e0:96:53:6d:0a:13:45:
ad:08:49:ef:de:e0:36:5a:db:89:ba:82:0b:94:cf:
51:7e:cd:ae:61:be:94:d4:74:df:c9:52:99:27:da:
67:de:f1:5a:ec:49:22:68:09:0f:ea:f7:5f:93:ad:
84:8a:bf:d0:a9:e9:8d:6c:10:9f:03:38:47:b1:65:
13:71:2d:cc:00:1c:c7:cf:bf:38:18:92:4e:25:d2:
10:38:ca:f3:fa:9e:e1:81:03:2b:5d:3e:68:02:cc:
07:4b:3d:ee:95:b8:dd:48:d5:db:f1:66:77:21:83:
94:e3:25:7d:7e:ab:bf:09:6a:f5:c7:f1:32:68:82:
02:87:de:c2:72:0e:cf:b4:94:de:6a:76:c8:27:b6:
65:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E6:C7:E4:0B:9E:1B:41:BF:5B:19:B2:7A:17:9D:14:16:66:00:7E
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/OObH5AueG0G_WxmyehedFBZmAH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.240.0/21
64.43.112.0/22
64.43.124.0/22
91.233.0.0/23
176.96.88.0/22
176.102.120.0/21
176.103.240.0/21
176.116.232.0/22
178.212.184.0/21
185.55.4.0/22
185.55.140.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
49:e0:40:a7:67:89:f1:41:e1:ac:11:19:78:9b:63:3c:0c:77:
c1:c0:a5:9b:6e:4d:59:56:41:8a:05:0d:c4:ee:0a:c9:6e:53:
ed:86:91:2f:1a:ae:75:74:3a:41:23:11:9e:52:d4:66:32:15:
b0:9a:64:b3:3c:0b:6a:c7:9f:1b:04:61:fa:96:9f:cd:79:74:
d7:47:07:e1:f7:b2:55:59:f3:86:de:df:68:ef:ce:54:45:a4:
cd:36:2d:6a:86:b8:6c:66:77:0f:ae:1e:fd:0b:f1:e8:cd:ad:
7a:a2:b6:46:37:d2:94:bf:e3:f8:a3:53:de:62:fe:03:14:67:
74:9c:ca:4e:dd:df:f6:fc:bc:a7:02:cd:c9:2f:1a:45:ae:a2:
db:0d:51:4e:c7:d5:bc:dc:7a:b4:f9:bd:48:3f:18:c6:0d:fd:
88:01:45:86:c4:14:02:b2:6d:10:ed:cb:07:63:02:cc:17:a3:
c4:5a:fe:a9:30:86:72:0a:78:89:76:d8:34:0a:74:f0:2a:0b:
64:e0:b6:d4:b4:45:29:80:5a:9e:90:93:7f:2a:cd:d4:69:d2:
74:e8:8b:f9:6a:5d:72:cf:8b:e7:0c:ea:08:c3:14:d1:29:0f:
05:db:c7:20:a4:78:23:dc:6b:25:aa:bb:49:50:65:e9:73:63:
93:44:2c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org