Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/j7sLNeLxPfJZGtRgvLES6DRj-_E.roa
File: j7sLNeLxPfJZGtRgvLES6DRj-_E.roa (raw, json)
Hash identifier: 4LPPoF/ddRk9uayiWm6ryzB7hVLeolgQaBeoZ/De2iM=
Subject key identifier: 8F:BB:0B:35:E2:F1:3D:F2:59:1A:D4:60:BC:B1:12:E8:34:63:FB:F1
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018A16CA83FAB20B8D1681330BE9B54D5284
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/j7sLNeLxPfJZGtRgvLES6DRj-_E.roa
Signing time: Mon 21 Aug 2023 06:31:25 +0000
ROA not before: Mon 21 Aug 2023 06:31:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
87.236.161.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
45.89.236.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.211.79.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:1::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 05 Sep 2023 06:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:16:ca:83:fa:b2:0b:8d:16:81:33:0b:e9:b5:4d:52:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Aug 21 06:31:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fbb0b35e2f13df2591ad460bcb112e83463fbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c9:8f:67:79:d3:c6:7e:46:c7:b2:fa:27:4a:
d1:66:6e:69:42:36:b8:c4:09:10:8f:8e:9b:27:41:
11:20:73:1e:82:3d:9c:5c:e5:44:3d:43:66:45:de:
37:32:e5:db:16:59:6d:42:b2:b4:51:20:4e:c4:55:
a7:bb:65:9f:3a:69:cd:63:ab:c9:0a:e7:cf:0c:bf:
cc:d5:ac:00:23:ae:81:03:b6:cb:5b:38:46:a2:47:
16:9c:a3:e3:4c:87:e6:bf:3f:ba:e3:4e:50:b4:12:
cd:37:24:3e:b0:ce:53:b1:3a:e6:28:70:4d:d8:e5:
62:43:8f:00:0e:5b:f5:1c:89:df:b3:98:7a:1e:69:
1b:4c:9e:13:fa:ee:5d:c6:90:8d:a6:83:52:ce:79:
cc:78:6b:6a:68:87:c2:4a:fd:0e:dc:02:44:3d:91:
4e:d8:48:11:5b:cd:10:1a:57:f0:09:8e:bf:1e:9a:
b9:ef:a3:26:7b:92:6e:c9:12:aa:2e:d2:b9:c2:03:
00:d1:0a:d7:6d:85:c1:bb:81:37:b1:fc:19:61:5d:
64:ad:e4:03:ee:1c:40:e1:bc:1e:a4:47:11:76:5c:
9d:e8:3e:8c:d3:91:88:fc:55:ac:d4:82:a5:2e:ca:
01:33:30:d1:81:73:06:3d:1c:46:aa:f6:45:46:67:
49:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BB:0B:35:E2:F1:3D:F2:59:1A:D4:60:BC:B1:12:E8:34:63:FB:F1
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/j7sLNeLxPfJZGtRgvLES6DRj-_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
77.87.122.0/24
87.236.161.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b6:64:bb:fd:03:e1:55:ae:2f:cd:f3:c8:95:a7:04:45:89:a3:
a9:90:40:1c:c4:f5:30:75:b0:3e:e7:2b:f5:e3:1c:35:4b:0a:
e1:fd:85:d4:39:ef:30:1d:fc:02:1b:1c:ba:ae:7d:c2:28:9f:
3b:44:a4:d4:8c:dd:3a:70:3a:40:dc:f1:b2:4b:a4:0a:23:e1:
bb:1f:21:7d:fd:0e:69:84:7f:f0:98:d2:44:6b:8c:a7:43:59:
3c:04:7b:05:10:f4:90:ec:cb:a1:8a:3e:ce:66:2d:60:3b:52:
01:af:89:80:d7:21:dc:53:e3:f4:ad:22:a5:48:a5:1b:5b:f4:
1b:3e:fc:6c:58:78:de:a2:c8:b5:8b:a7:c6:4e:40:17:c1:cd:
b3:9f:3e:83:0f:fa:eb:9a:c2:b7:4e:0d:c2:46:09:52:cb:ca:
f7:6b:a6:7c:88:62:89:90:db:47:34:ca:2c:ed:51:35:f0:0d:
ee:49:1c:bc:ea:d9:c8:29:c0:17:f2:c8:ac:df:d2:30:23:d3:
5a:e7:8a:3b:be:c6:ea:0d:d7:19:bf:50:ca:35:bc:ad:6e:20:
e2:bb:0e:a6:f5:3f:70:64:d1:52:c7:03:5d:2e:4d:45:13:a7:
74:51:ec:55:97:8d:69:20:10:05:54:2f:4e:94:c2:fc:87:01:
95:3a:5a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org