Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/V6G7IgkwjDW_O1wznmzPUiqjkt0.roa
File: V6G7IgkwjDW_O1wznmzPUiqjkt0.roa (raw, json)
Hash identifier: iWdFJ9u04vY2oiBsawuEmbEZcOyIopO7e+wi3yqEOQM=
Subject key identifier: 57:A1:BB:22:09:30:8C:35:BF:3B:5C:33:9E:6C:CF:52:2A:A3:92:DD
Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Certificate serial: 018570F072897FA481410829FE19B47564E7
Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/V6G7IgkwjDW_O1wznmzPUiqjkt0.roa
Signing time: Mon 02 Jan 2023 05:24:44 +0000
ROA not before: Mon 02 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 5.101.68.0/24 maxlen: 24
5.101.69.0/24 maxlen: 24
5.101.70.0/24 maxlen: 24
5.188.176.0/24 maxlen: 24
5.188.177.0/24 maxlen: 24
5.188.178.0/24 maxlen: 24
5.188.179.0/24 maxlen: 24
37.9.37.0/24 maxlen: 24
37.9.38.0/24 maxlen: 24
37.9.36.0/24 maxlen: 24
37.9.39.0/24 maxlen: 24
146.185.197.0/24 maxlen: 24
146.185.198.0/24 maxlen: 24
146.185.199.0/24 maxlen: 24
146.185.196.0/24 maxlen: 24
2a11:27c0:140::/44 maxlen: 44
2a11:27c0:110::/44 maxlen: 44
2a11:27c0:120::/44 maxlen: 44
2a11:27c0:130::/44 maxlen: 44
2a11:27c0:150::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 17 Jan 2023 10:24:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:72:89:7f:a4:81:41:08:29:fe:19:b4:75:64:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Validity
Not Before: Jan 2 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57a1bb2209308c35bf3b5c339e6ccf522aa392dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:1c:79:23:37:b0:2a:51:1d:9c:1e:6b:07:
a2:58:9f:61:1b:e8:be:38:22:c9:f6:4c:62:47:4c:
85:8a:45:ae:ee:76:76:36:e3:c4:57:92:cb:12:0e:
8a:92:29:06:60:19:c9:34:d0:eb:22:a7:92:ab:bb:
e5:fa:c9:55:16:2f:2c:5b:4e:bd:67:67:97:47:6f:
1b:66:99:3e:7d:e6:ec:1e:ab:e6:fd:12:7c:f6:8d:
a3:12:c8:81:4a:bf:0e:2e:fa:02:41:27:d5:ba:76:
30:83:25:ca:a5:7b:bf:bb:5a:f0:a2:95:91:0a:80:
a5:b0:3f:07:33:f0:c2:60:1e:f2:9d:24:ab:59:dc:
ba:7b:cd:95:d1:86:07:9c:bd:72:60:4a:9b:4c:f2:
4b:09:34:5c:09:d9:62:57:48:0a:35:15:72:07:a1:
b0:cf:16:4c:62:b0:cc:08:95:c5:87:b7:bf:5f:9a:
be:fb:ba:2f:80:f3:bd:e1:ff:c4:09:30:df:df:7a:
ca:40:f5:1c:9a:e1:4c:f4:dd:c5:1d:22:27:88:37:
25:f3:02:a7:5a:f2:90:66:13:ec:1e:8f:58:81:ef:
c0:7d:88:7f:db:f3:81:b9:17:ef:2d:13:05:a4:09:
34:97:ea:61:34:4d:94:92:9a:1c:1b:c5:c3:58:28:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A1:BB:22:09:30:8C:35:BF:3B:5C:33:9E:6C:CF:52:2A:A3:92:DD
X509v3 Authority Key Identifier:
keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/V6G7IgkwjDW_O1wznmzPUiqjkt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.68.0-5.101.70.255
5.188.176.0/22
37.9.36.0/22
146.185.196.0/22
IPv6:
2a11:27c0:110::-2a11:27c0:15f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
73:f9:aa:b4:45:01:cd:ab:93:07:e2:ff:93:d9:05:53:30:88:
c2:1f:ac:5d:7e:45:18:f6:33:91:2d:e3:38:b2:0b:af:e4:d8:
84:a3:f0:39:06:a8:8a:c4:85:73:7e:5f:28:66:e8:17:34:48:
8e:e3:62:e1:ad:dc:19:8c:7f:2e:51:d0:22:19:fc:17:f2:02:
d5:cd:0d:a7:c4:d9:89:99:9a:91:44:0e:c9:4b:5e:62:ee:17:
8d:70:85:64:2d:1f:25:8a:b0:19:b4:94:af:3d:2a:21:5d:fd:
af:cb:b8:d2:82:4c:a9:3b:9e:eb:91:71:79:2f:6e:1a:53:c8:
3b:94:a8:77:22:0e:87:77:22:df:17:ad:65:bf:69:e7:eb:a5:
35:1a:c7:d7:c7:f7:38:ad:c0:6f:5e:80:78:ba:a2:1f:29:1b:
77:f5:a5:b1:27:22:2f:bb:cf:c9:49:82:24:d5:b7:72:71:be:
47:01:29:48:6a:0d:c1:3d:eb:09:cf:de:8c:4f:8d:ac:86:b9:
b2:2c:3d:ee:1c:bc:50:c3:c8:7b:b4:05:b2:3b:8d:5f:ce:40:
0f:39:d2:74:ff:b6:b2:55:7c:bb:58:68:ca:81:4e:3c:ee:21:
f7:ad:39:16:a6:53:bf:c0:70:ae:dc:29:27:af:2c:c6:99:20:
e9:d9:dd:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:00 2024 by rpki-client on console-fra.rpki-client.org