Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Yrok_lJkUJWT3nSY9xePT_JXioY.roa
File: Yrok_lJkUJWT3nSY9xePT_JXioY.roa (raw, json)
Hash identifier: 4ewbUuk2tX8JYf8DzNdcrfJ8IcCGPtIAXXxfG66FgIc=
Subject key identifier: 62:BA:24:FE:52:64:50:95:93:DE:74:98:F7:17:8F:4F:F2:57:8A:86
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018B5C3D314C71380D8D3D5D24080626FED9
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Yrok_lJkUJWT3nSY9xePT_JXioY.roa
Signing time: Mon 23 Oct 2023 11:13:16 +0000
ROA not before: Mon 23 Oct 2023 11:13:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 87.236.161.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
45.252.180.0/24 maxlen: 24
45.252.182.0/23 maxlen: 23
45.252.182.0/24 maxlen: 24
45.252.183.0/24 maxlen: 24
45.252.181.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
91.247.188.0/24 maxlen: 24
45.89.236.0/22 maxlen: 24
185.211.79.0/24 maxlen: 24
62.204.58.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:6::/48 maxlen: 48
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:8::/48 maxlen: 48
2a0c:6600:5::/48 maxlen: 48
2a0c:6600:1000::/48 maxlen: 48
2a0c:6600:6000::/48 maxlen: 48
2a0c:6600:6600::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:4000::/48 maxlen: 48
2a0c:6600:3000::/48 maxlen: 48
2a0c:6600:2000::/48 maxlen: 48
2a0c:6600:9::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:7::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Oct 2023 03:22:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:3d:31:4c:71:38:0d:8d:3d:5d:24:08:06:26:fe:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Oct 23 11:13:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ba24fe5264509593de7498f7178f4ff2578a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9d:4f:e4:5e:13:b0:6a:86:92:7b:95:92:23:
ac:78:66:bd:2b:c9:37:69:48:6a:18:17:6a:11:3a:
f0:06:f6:96:71:a7:84:f1:36:16:4b:39:10:dd:53:
9e:72:8f:c5:8c:b7:0c:4a:50:09:5a:aa:68:76:38:
df:f1:37:0f:e5:09:5f:38:0c:6b:dd:07:5f:46:68:
c1:86:cb:69:58:96:95:a0:0a:c1:b9:c0:2a:df:f3:
6b:bc:bc:1c:28:22:b3:63:a0:c5:4c:f1:6c:5c:27:
d3:f3:e6:b8:76:31:9c:bc:6c:55:df:44:2c:36:00:
fc:ac:1a:20:cb:4b:ab:db:cf:a9:3e:17:91:fb:ba:
c6:be:48:f0:d7:95:f4:47:14:d1:5b:c5:e1:48:83:
b7:20:01:cd:e0:88:32:bd:be:29:4a:36:e4:41:a3:
42:4f:d4:f1:87:01:62:10:31:d0:cb:59:ed:a5:0d:
dc:00:c4:21:eb:65:a5:03:c3:b0:a0:bf:ac:ce:00:
56:c0:b6:b9:9b:a8:fa:8f:af:ea:6a:93:b2:b6:2a:
02:36:3c:22:16:94:ee:af:f4:00:c2:8e:af:2f:4e:
65:4d:5a:8c:e0:38:da:1f:cc:73:65:ec:42:fc:23:
a7:1a:d9:9c:d0:5f:2e:2a:e0:0f:cc:d3:e0:0a:aa:
17:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BA:24:FE:52:64:50:95:93:DE:74:98:F7:17:8F:4F:F2:57:8A:86
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Yrok_lJkUJWT3nSY9xePT_JXioY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
45.252.180.0/22
62.204.58.0/24
77.87.122.0/24
87.236.161.0/24
91.247.188.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:9:ffff:ffff:ffff:ffff:ffff
2a0c:6600:1000::/48
2a0c:6600:2000::/48
2a0c:6600:3000::/48
2a0c:6600:4000::/48
2a0c:6600:6000::/48
2a0c:6600:6600::/48
Signature Algorithm: sha256WithRSAEncryption
1b:de:d2:30:a9:20:8a:80:3e:06:86:19:56:56:9d:41:ac:98:
64:93:e7:26:fc:e8:df:1b:5d:6e:40:49:19:e7:b2:41:a9:4b:
19:74:eb:dd:c6:d7:ed:80:d1:cf:cb:f9:6d:e0:f6:73:5a:51:
fa:c3:22:a3:84:58:eb:f6:10:e6:3a:6f:e1:3a:2b:4a:ba:b0:
e1:bb:48:50:24:cc:b9:4f:90:4b:6c:30:dd:68:73:3a:50:b1:
36:c4:f9:c3:9c:e6:95:4a:c6:2d:50:c2:9c:3b:78:32:ff:88:
63:79:11:32:25:2e:84:3a:20:7f:6b:3c:a9:d5:7d:cf:cd:40:
3d:7e:c7:a3:40:99:c2:8f:cb:a4:ef:70:3f:1f:da:1c:21:80:
51:9e:bb:ca:2a:32:56:7a:ab:ca:24:ce:75:37:4f:5a:70:49:
2a:04:49:56:99:9d:f8:c5:b4:f5:ad:06:3d:62:70:d5:df:7a:
39:28:2a:85:fc:54:fd:70:64:5c:46:81:08:ff:b4:5b:55:62:
16:ea:7a:c6:39:bf:a5:5f:a3:0d:83:94:67:11:7d:b3:aa:ab:
2e:fd:13:bc:95:0b:e3:d8:6b:7d:ba:0c:9f:1b:7f:61:74:e7:
df:b8:b9:48:7a:90:09:fa:21:cb:d1:42:bb:e2:3e:60:c8:18:
d1:11:23:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org