Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/oC2DLS2IWQWSMZ-C2srYoTK5dYk.roa
File: oC2DLS2IWQWSMZ-C2srYoTK5dYk.roa (raw, json)
Hash identifier: EoSflQvtDJQCFJTUWfQXnIzsLRRVdL/bP365tlw1G2w=
Subject key identifier: A0:2D:83:2D:2D:88:59:05:92:31:9F:82:DA:CA:D8:A1:32:B9:75:89
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018A640FFFF5FDD7322E927512C879B33104
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/oC2DLS2IWQWSMZ-C2srYoTK5dYk.roa
Signing time: Tue 05 Sep 2023 06:38:04 +0000
ROA not before: Tue 05 Sep 2023 06:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 87.236.161.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.89.236.0/22 maxlen: 24
185.211.79.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:6::/48 maxlen: 48
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:8::/48 maxlen: 48
2a0c:6600:5::/48 maxlen: 48
2a0c:6600:1000::/48 maxlen: 48
2a0c:6600:6000::/48 maxlen: 48
2a0c:6600:6600::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:4000::/48 maxlen: 48
2a0c:6600:3000::/48 maxlen: 48
2a0c:6600:2000::/48 maxlen: 48
2a0c:6600:9::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:7::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 05 Sep 2023 07:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:0f:ff:f5:fd:d7:32:2e:92:75:12:c8:79:b3:31:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Sep 5 06:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a02d832d2d88590592319f82dacad8a132b97589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:22:77:94:5a:77:14:db:30:7e:c6:6c:b9:cc:
f2:40:23:1e:54:ac:ad:de:4a:86:72:ce:65:f6:82:
e5:5f:f3:a7:62:76:2a:40:17:95:3b:be:2b:37:3e:
26:83:7a:1c:3a:a9:eb:ea:20:11:0c:64:2f:da:59:
c6:8a:b7:7b:77:3d:5a:c1:6b:a2:82:14:ba:51:9b:
42:a9:fe:91:18:89:4d:69:d7:c9:db:e2:a7:45:e9:
8f:18:ef:69:8d:79:32:a2:66:3b:f5:20:f0:dd:21:
b7:af:a6:e9:ed:a8:9c:f2:0d:a8:59:4e:a6:47:41:
18:39:0c:26:14:4b:a4:48:11:af:aa:0a:65:ea:76:
dc:56:7e:65:38:50:eb:aa:85:2f:f0:f2:7f:cd:e7:
e6:83:e6:48:da:80:ab:32:07:20:44:29:f4:47:4b:
f4:39:01:33:2a:8e:5a:b0:99:d2:09:fe:3b:79:95:
86:cf:1c:70:b4:51:d8:3c:a3:12:df:31:5e:fc:25:
73:ec:05:7a:8b:b4:65:01:bf:84:82:cb:88:8a:e9:
00:10:a3:37:fd:a8:5e:2d:c3:c8:e8:f9:05:4b:3c:
90:fd:31:7f:60:4b:7c:35:a4:98:3c:bf:ef:68:62:
5e:a2:ec:91:7b:d9:aa:7e:6c:d4:10:11:00:6c:55:
fd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2D:83:2D:2D:88:59:05:92:31:9F:82:DA:CA:D8:A1:32:B9:75:89
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/oC2DLS2IWQWSMZ-C2srYoTK5dYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
77.87.122.0/24
87.236.161.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:9:ffff:ffff:ffff:ffff:ffff
2a0c:6600:1000::/48
2a0c:6600:2000::/48
2a0c:6600:3000::/48
2a0c:6600:4000::/48
2a0c:6600:6000::/48
2a0c:6600:6600::/48
Signature Algorithm: sha256WithRSAEncryption
82:e6:8a:fe:03:1f:4d:f6:b4:e6:f3:36:c5:12:bb:33:d7:b2:
41:12:85:b7:4f:9b:78:3c:bc:f6:e2:00:01:15:d3:2b:c8:be:
2c:21:a0:dc:a1:89:0f:d2:34:bc:01:d9:91:6d:7d:1e:7c:58:
97:35:7e:61:20:71:17:d2:dd:a9:d7:27:fa:58:fa:d5:bb:78:
4d:b0:b0:97:01:44:62:68:a9:b4:23:76:5b:7a:77:87:64:a1:
c3:67:d3:05:75:42:a4:5b:7e:f3:5e:f2:a4:7d:cc:78:f7:7e:
42:a7:cc:2d:e1:24:ae:83:c3:f8:08:d3:92:fc:19:51:0e:7a:
79:d3:e1:cf:4d:ca:de:80:c0:67:7e:4a:e6:9d:48:e1:cc:77:
56:07:74:50:85:c0:74:83:ca:18:f9:aa:d8:77:d5:a7:04:b9:
35:ad:ea:44:92:5e:a6:1d:fd:ff:6c:a1:b4:46:1c:cd:55:10:
37:26:c9:7c:9b:ba:0b:12:13:6e:e3:5c:8b:c6:7f:83:60:5c:
53:6e:b8:30:03:fb:b7:e6:c9:1e:2d:96:47:32:9a:f0:67:26:
4b:74:f0:56:0e:36:c1:69:6b:34:7b:5c:2a:ec:e1:0f:f5:e0:
c0:c7:a3:bf:17:16:fc:f4:0c:d1:b6:08:a4:4d:d6:1c:8d:18:
4c:2b:89:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org