Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/AgVGqCPxg_-Jx-NCkHyIUK1p52I.roa
File: AgVGqCPxg_-Jx-NCkHyIUK1p52I.roa (raw, json)
Hash identifier: NIWaxuL/eYb4+CuvA5dKyvS2a1jRA3CDOf5Ak0l5heU=
Subject key identifier: 02:05:46:A8:23:F1:83:FF:89:C7:E3:42:90:7C:88:50:AD:69:E7:62
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018B70E9DAEFE837379FCD643D82CF1AE594
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/AgVGqCPxg_-Jx-NCkHyIUK1p52I.roa
Signing time: Fri 27 Oct 2023 11:34:16 +0000
ROA not before: Fri 27 Oct 2023 11:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8772
IP address blocks: 95.164.56.0/22 maxlen: 22
95.164.52.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
195.214.212.0/22 maxlen: 22
195.214.208.0/22 maxlen: 22
195.214.208.0/21 maxlen: 21
95.164.72.0/22 maxlen: 22
195.214.210.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.92.0/22 maxlen: 22
95.164.248.0/23 maxlen: 23
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
94.131.0.0/23 maxlen: 23
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
62.205.132.0/24 maxlen: 24
62.205.128.0/19 maxlen: 20
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
2a01:d0:8000::/33 maxlen: 33
2a01:d0::/32 maxlen: 32
2a01:d0:3b::/48 maxlen: 48
2a01:d0:ffff::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 09 Dec 2023 23:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:e9:da:ef:e8:37:37:9f:cd:64:3d:82:cf:1a:e5:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Oct 27 11:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=020546a823f183ff89c7e342907c8850ad69e762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:05:5a:29:e8:90:05:45:61:61:ed:37:11:5a:
3b:30:56:8b:e8:1a:b3:4e:c1:e3:a6:49:8f:3f:2d:
83:0e:fe:d2:1e:59:42:20:bf:82:fb:01:98:6b:ce:
fb:66:ce:53:27:6a:7b:19:1d:ef:bd:f6:0a:55:c8:
76:4e:ce:df:9a:bc:b3:aa:58:c3:6b:38:26:dd:3d:
cc:b8:e9:15:23:4c:6b:65:89:11:ce:24:63:59:69:
c9:d2:57:fe:89:82:1e:4b:12:97:84:02:34:36:8b:
02:ff:ba:36:80:62:f7:f1:f8:fb:a9:0a:0a:af:25:
01:33:81:42:f1:34:20:0f:65:db:6d:86:2c:b2:94:
31:11:0c:58:f9:2b:f5:6c:8f:77:12:35:82:0c:e0:
a1:84:c1:0a:64:a1:18:99:a4:d0:b1:c9:b4:67:e3:
59:7e:c9:66:5f:71:8e:63:18:5a:a8:69:9c:cb:18:
ab:0c:dc:94:73:ee:ed:fe:45:c7:d3:67:f2:26:85:
f6:68:ff:53:67:be:46:f6:53:4a:34:68:9f:a5:a6:
36:42:da:16:57:98:3a:6e:44:59:7b:82:b5:dd:ec:
ee:83:06:f4:d0:07:bb:21:24:b5:6f:0b:de:dd:68:
32:36:27:c7:76:01:61:82:38:4a:86:31:77:b5:dc:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:05:46:A8:23:F1:83:FF:89:C7:E3:42:90:7C:88:50:AD:69:E7:62
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/AgVGqCPxg_-Jx-NCkHyIUK1p52I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.92.0/22
95.164.170.0-95.164.175.255
95.164.248.0/23
195.214.208.0/21
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
09:c1:46:04:55:9a:f8:c0:06:88:c5:32:1e:7f:8f:9b:02:02:
51:3a:96:4b:9b:1b:3a:96:fd:c7:56:ae:d2:58:7b:ed:74:4c:
59:dd:5d:84:7c:be:d9:6f:cc:79:52:8e:e6:34:80:c7:94:69:
3d:c7:8a:9b:cc:0b:d3:8d:31:5c:ee:18:d2:73:86:31:ad:28:
cb:90:ac:8e:a9:d4:70:97:36:d0:bd:17:e7:69:09:27:e4:67:
6c:29:f5:92:7f:bc:05:8b:69:53:d9:6d:d4:c0:fe:83:8b:44:
a7:3e:3b:90:10:bb:97:52:a1:15:18:4e:0b:e8:6f:bc:71:b7:
ca:c9:ad:7f:a1:15:0b:96:c3:31:ed:37:52:b0:e1:d0:24:e8:
93:99:56:e1:44:88:ac:f0:4f:c2:19:e9:f1:3c:9b:2a:60:ca:
6f:78:da:93:27:23:0a:0b:76:e4:a9:2f:c4:d6:a0:1f:c0:c4:
0c:b7:f0:06:06:5a:f0:26:17:da:99:58:73:9f:6c:47:d5:5d:
7b:e3:a6:0d:db:4c:ee:9a:5b:82:c8:d5:47:bc:17:28:7d:3c:
22:5b:09:cc:b1:05:61:c1:e2:dc:24:4b:da:eb:69:e7:af:65:
74:ef:e6:f8:ec:a8:e4:17:ae:54:d1:1f:50:be:22:ff:14:4a:
36:0c:dd:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org