Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xrKIprVfLG5Ejhj4gwVrASep8sE.roa
File: xrKIprVfLG5Ejhj4gwVrASep8sE.roa (raw, json)
Hash identifier: T4j+FxhlnUbNGTdUah2dPnqQQAKATj+4ij75ux/DgpI=
Subject key identifier: C6:B2:88:A6:B5:5F:2C:6E:44:8E:18:F8:83:05:6B:01:27:A9:F2:C1
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E2E3762D95442B3E813D2022BB8BE196C
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xrKIprVfLG5Ejhj4gwVrASep8sE.roa
Signing time: Mon 11 Mar 2024 15:52:45 +0000
ROA not before: Mon 11 Mar 2024 15:52:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 2.59.48.0/24 maxlen: 24
31.222.240.0/24 maxlen: 24
31.222.250.0/24 maxlen: 24
37.221.80.0/24 maxlen: 24
45.11.22.0/24 maxlen: 24
45.14.221.0/24 maxlen: 24
45.89.68.0/24 maxlen: 24
45.89.71.0/24 maxlen: 24
91.188.220.0/24 maxlen: 24
94.158.188.0/24 maxlen: 24
176.56.35.0/24 maxlen: 24
176.124.34.0/24 maxlen: 24
185.212.112.0/24 maxlen: 24
185.234.8.0/24 maxlen: 24
188.95.71.0/24 maxlen: 24
193.3.18.0/24 maxlen: 24
193.201.114.0/24 maxlen: 24
194.32.240.0/24 maxlen: 24
195.18.26.0/24 maxlen: 24
195.69.148.0/24 maxlen: 24
195.69.150.0/24 maxlen: 24
195.225.96.0/24 maxlen: 24
212.18.100.0/24 maxlen: 24
212.18.122.0/24 maxlen: 24
212.52.4.0/24 maxlen: 24
213.109.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2e:37:62:d9:54:42:b3:e8:13:d2:02:2b:b8:be:19:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 11 15:52:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6b288a6b55f2c6e448e18f883056b0127a9f2c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:df:a4:e7:01:ad:7b:0d:e5:2a:d8:c0:2d:89:
16:f2:f1:d0:9f:64:cd:79:8f:62:2d:c7:fa:a3:64:
a2:b5:70:14:7f:3d:ae:49:ec:9a:0e:1e:63:cd:ef:
6a:d0:41:59:38:4c:2b:ea:3c:6a:f0:9e:80:c7:7f:
cd:8d:5d:b4:2a:5c:33:05:33:2f:d0:2f:7e:b9:10:
46:dc:ad:ed:43:95:26:cf:5d:fb:32:1d:cd:c9:09:
38:50:d1:6f:4c:b3:cf:9f:1c:05:20:b6:b8:28:ff:
eb:4e:c4:b7:5a:b5:1e:9f:d2:82:2f:00:20:81:96:
3d:83:88:a6:8c:ce:41:f0:8c:44:fb:31:b8:82:ee:
1f:24:1b:f9:1c:57:ab:b2:16:7e:83:be:b7:4b:ca:
00:ca:62:11:a9:8a:3b:65:e8:97:0a:67:02:68:b7:
04:fc:4b:b7:c0:9e:93:87:90:76:55:68:b3:da:36:
36:85:16:05:f0:82:db:6e:3d:41:76:f8:6e:b3:76:
50:38:7e:53:fb:f1:af:46:73:e4:38:f8:19:0e:0b:
d6:5b:80:e2:e1:73:66:81:bf:ac:be:d8:55:d1:ab:
8d:3a:90:29:3f:a2:0e:ac:69:50:db:b8:cf:28:c3:
41:ee:02:6a:a2:0f:cd:0c:41:20:36:7b:4c:59:c0:
f8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B2:88:A6:B5:5F:2C:6E:44:8E:18:F8:83:05:6B:01:27:A9:F2:C1
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xrKIprVfLG5Ejhj4gwVrASep8sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.48.0/24
31.222.240.0/24
31.222.250.0/24
37.221.80.0/24
45.11.22.0/24
45.14.221.0/24
45.89.68.0/24
45.89.71.0/24
91.188.220.0/24
94.158.188.0/24
176.56.35.0/24
176.124.34.0/24
185.212.112.0/24
185.234.8.0/24
188.95.71.0/24
193.3.18.0/24
193.201.114.0/24
194.32.240.0/24
195.18.26.0/24
195.69.148.0/24
195.69.150.0/24
195.225.96.0/24
212.18.100.0/24
212.18.122.0/24
212.52.4.0/24
213.109.206.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e1:1f:02:09:f5:42:a2:39:ea:73:6b:2c:85:24:be:8f:aa:
53:b2:e1:5b:94:b9:6c:9e:2c:e8:45:45:06:d0:50:16:a2:5d:
1a:20:47:a9:79:e3:17:73:c6:06:5c:96:aa:9e:e1:1b:ae:c0:
5c:5b:4f:f3:28:9d:f2:c4:78:18:b0:ab:0e:01:28:8a:e8:84:
4c:6c:e9:10:50:d5:71:be:46:1d:1e:f8:d5:cd:ad:d6:f4:a7:
5d:a3:10:82:b5:ca:52:0a:aa:8a:c1:50:2d:71:70:64:60:b4:
67:81:e8:5a:f2:b4:05:85:4d:ae:f9:8d:38:1c:bf:32:4e:81:
20:e1:6b:93:a2:f9:8c:6e:0c:39:88:2f:1e:f6:e6:47:dc:ea:
89:1c:52:7a:69:3c:6f:70:a6:2f:15:3c:86:64:c6:6c:2e:b2:
a1:ea:10:bc:6d:55:dd:62:2b:a7:a6:d3:bf:51:5d:aa:b9:8c:
66:d9:3e:7b:af:99:b8:75:ce:0e:76:89:1a:97:b8:1f:65:07:
d8:5d:07:9b:3f:04:af:f3:09:d2:7f:54:e7:4f:cd:b3:8d:7f:
01:27:fe:74:ae:34:e3:93:ae:3d:9f:09:aa:a4:74:0c:03:d7:
4a:ad:14:fc:ad:d6:2c:3c:19:79:24:7c:d8:0b:25:1d:26:ca:
9b:01:2e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org