Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/YYtmSxB6O8GiYLwqwjnFdzgbV_c.roa
File: YYtmSxB6O8GiYLwqwjnFdzgbV_c.roa (raw, json)
Hash identifier: 9cs6Y+YgjFXLwokDgX0O5KZpZ+DmHjppceSC3QQk0/k=
Subject key identifier: 61:8B:66:4B:10:7A:3B:C1:A2:60:BC:2A:C2:39:C5:77:38:1B:57:F7
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018D42F2E7A052D45748A16B2C87AA00FECE
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/YYtmSxB6O8GiYLwqwjnFdzgbV_c.roa
Signing time: Thu 25 Jan 2024 23:27:11 +0000
ROA not before: Thu 25 Jan 2024 23:27:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200736
IP address blocks: 94.131.128.0/19 maxlen: 24
94.131.130.0/24 maxlen: 24
94.131.131.0/24 maxlen: 24
94.131.132.0/24 maxlen: 24
94.131.133.0/24 maxlen: 24
94.131.134.0/24 maxlen: 24
94.131.135.0/24 maxlen: 24
94.131.136.0/24 maxlen: 24
94.131.137.0/24 maxlen: 24
94.131.138.0/24 maxlen: 24
94.131.139.0/24 maxlen: 24
94.131.140.0/24 maxlen: 24
94.131.141.0/24 maxlen: 24
94.131.142.0/24 maxlen: 24
94.131.143.0/24 maxlen: 24
94.131.144.0/23 maxlen: 23
94.131.144.0/24 maxlen: 24
94.131.145.0/24 maxlen: 24
94.131.146.0/24 maxlen: 24
94.131.147.0/24 maxlen: 24
94.131.148.0/24 maxlen: 24
94.131.149.0/24 maxlen: 24
94.131.150.0/24 maxlen: 24
94.131.151.0/24 maxlen: 24
94.131.152.0/24 maxlen: 24
94.131.153.0/24 maxlen: 24
94.131.154.0/24 maxlen: 24
94.131.155.0/24 maxlen: 24
94.131.156.0/24 maxlen: 24
94.131.157.0/24 maxlen: 24
94.131.158.0/24 maxlen: 24
94.131.159.0/24 maxlen: 24
94.131.160.0/24 maxlen: 24
94.131.161.0/24 maxlen: 24
94.131.162.0/24 maxlen: 24
94.131.163.0/24 maxlen: 24
94.131.165.0/24 maxlen: 24
94.131.166.0/24 maxlen: 24
94.131.167.0/24 maxlen: 24
94.131.169.0/24 maxlen: 24
94.131.170.0/24 maxlen: 24
94.131.172.0/24 maxlen: 24
94.131.173.0/24 maxlen: 24
94.131.174.0/24 maxlen: 24
95.164.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jan 2024 00:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:42:f2:e7:a0:52:d4:57:48:a1:6b:2c:87:aa:00:fe:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 25 23:27:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=618b664b107a3bc1a260bc2ac239c577381b57f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:b7:ac:ae:79:d2:0e:a8:f1:88:3a:bc:53:
60:85:31:f5:18:5c:19:7a:55:1e:e5:6f:e7:d7:7f:
83:2a:82:e5:47:d2:3f:93:3d:2a:5f:e3:f7:0e:d0:
16:9d:98:05:12:3a:e3:dc:17:fa:e4:ad:6f:0c:60:
8a:bf:c2:ad:09:b1:8c:47:11:63:00:db:2f:9a:1d:
50:2c:d1:a5:3b:97:60:4f:f7:6a:3d:ad:85:1b:3c:
07:86:05:f5:d3:74:4a:e5:25:a9:59:0d:7a:78:7d:
c9:cc:ab:7b:eb:19:90:98:80:86:3b:b5:80:2d:93:
b3:3a:ee:1e:7b:dd:6e:c6:bc:90:b8:16:4a:92:d6:
54:67:a3:55:05:c7:45:84:bc:36:2c:70:24:6e:41:
03:bc:76:34:ba:fe:91:b3:c4:7c:bb:1b:49:23:65:
7e:d2:0b:1c:79:17:0c:9c:50:d2:9a:74:93:bd:c6:
6b:b6:70:81:04:c5:86:68:93:13:db:08:cf:54:7e:
cd:99:05:2b:2a:13:c3:0c:86:32:66:3c:e2:34:5e:
b2:af:eb:22:84:db:64:46:c7:db:63:8a:42:9b:dd:
35:53:de:93:13:2c:c9:36:78:3e:1e:72:38:8f:d2:
01:30:7f:2f:eb:bc:76:c7:5f:4c:00:52:15:00:5b:
bd:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8B:66:4B:10:7A:3B:C1:A2:60:BC:2A:C2:39:C5:77:38:1B:57:F7
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/YYtmSxB6O8GiYLwqwjnFdzgbV_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.128.0-94.131.163.255
94.131.165.0-94.131.167.255
94.131.169.0-94.131.170.255
94.131.172.0-94.131.174.255
95.164.176.0/20
Signature Algorithm: sha256WithRSAEncryption
37:40:1a:eb:20:43:e7:cd:2a:fd:fd:a7:fd:f5:d1:08:3c:f2:
90:72:bd:62:f9:f6:75:ab:8b:37:d6:ff:55:20:00:cc:ae:8d:
bd:ac:e6:5b:24:20:68:bc:59:b4:c0:5f:56:11:0a:55:92:45:
00:88:8d:3b:9b:48:8c:03:5f:80:15:33:95:ac:f5:9c:3c:66:
69:3a:c4:9c:b5:91:c9:34:57:ff:3b:53:4b:ea:0f:41:59:16:
44:c1:8b:6c:3f:8a:71:4b:8e:ca:ed:e7:2d:68:1a:13:20:44:
66:a5:5e:60:98:66:66:a8:5c:d3:57:f1:35:70:69:ec:07:03:
13:60:fe:fc:18:2a:91:05:9a:4a:9e:7b:52:87:e1:cb:93:d7:
49:1f:54:24:1a:e2:95:25:50:c4:09:7f:76:48:1e:53:2a:cb:
7c:9c:42:8b:6d:92:94:b5:d3:c6:3f:4b:4b:97:4a:12:7f:9e:
63:8a:5c:2b:80:11:8e:2d:f8:f5:4e:24:9c:e6:39:c6:34:a5:
40:e2:68:5c:5c:96:25:10:7e:23:22:0b:a7:4a:fa:ff:19:48:
a1:94:66:2f:58:db:ff:20:65:43:d2:b1:5d:44:e5:02:5e:54:
ea:44:dd:92:05:fa:17:ca:f8:cb:b8:70:9d:e5:5c:bb:2e:1d:
43:28:8b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org