Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/sHaTaJPi3cqfF29Kuf0wP1fvsJY.roa
File: sHaTaJPi3cqfF29Kuf0wP1fvsJY.roa (raw, json)
Hash identifier: LmMKsxJpEnUUyuBu4sNL9JRXfz5d8WVjBnYIAK7XpE8=
Subject key identifier: B0:76:93:68:93:E2:DD:CA:9F:17:6F:4A:B9:FD:30:3F:57:EF:B0:96
Certificate issuer: /CN=6fbbb5ec127a0632d226af07fac9c4d284bd1bac
Certificate serial: 01856C6EEEA13B1E6F0DA04B8FA7CEF42B6A
Authority key identifier: 6F:BB:B5:EC:12:7A:06:32:D2:26:AF:07:FA:C9:C4:D2:84:BD:1B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b7u17BJ6BjLSJq8H-snE0oS9G6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/sHaTaJPi3cqfF29Kuf0wP1fvsJY.roa
Signing time: Sun 01 Jan 2023 08:24:47 +0000
ROA not before: Sun 01 Jan 2023 08:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204281
IP address blocks: 94.26.86.0/23 maxlen: 24
94.26.96.0/24 maxlen: 24
94.26.94.0/24 maxlen: 24
94.26.100.0/24 maxlen: 24
94.26.102.0/24 maxlen: 24
94.26.108.0/24 maxlen: 24
94.26.30.0/24 maxlen: 24
94.26.26.0/24 maxlen: 24
94.26.45.0/24 maxlen: 24
94.26.66.0/24 maxlen: 24
94.26.72.0/24 maxlen: 24
94.26.75.0/24 maxlen: 24
94.26.74.0/23 maxlen: 24
94.26.4.0/22 maxlen: 24
94.26.8.0/21 maxlen: 24
185.108.140.0/22 maxlen: 24
94.26.10.0/24 maxlen: 24
94.26.16.0/21 maxlen: 24
2a01:b760::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:ee:a1:3b:1e:6f:0d:a0:4b:8f:a7:ce:f4:2b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fbbb5ec127a0632d226af07fac9c4d284bd1bac
Validity
Not Before: Jan 1 08:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b076936893e2ddca9f176f4ab9fd303f57efb096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:42:7b:3c:13:f9:d8:fc:90:1b:01:b7:64:30:
ba:ca:59:2a:68:84:f2:85:14:a3:b3:3e:38:4c:a5:
dd:cf:7f:f4:d2:f0:3b:ae:9b:1b:2a:86:79:76:bf:
aa:ce:86:71:61:5f:1f:cc:f7:13:7f:56:4d:27:e7:
10:c3:68:ec:97:cd:50:8c:5d:f1:18:c6:dc:11:7d:
40:e0:7b:73:81:46:b1:15:1d:9e:4f:5e:a1:04:a4:
9f:76:4c:4e:5a:64:55:14:f1:af:32:90:f6:94:4c:
b4:54:bb:35:f8:bc:9b:3b:ec:cf:8a:4f:d5:b9:eb:
a0:af:2f:1d:f3:ab:c8:67:a7:a7:26:0f:ed:78:2f:
49:37:d0:f8:ed:b3:04:8c:ea:e4:70:99:48:59:0e:
19:15:49:b1:bb:cc:02:6d:b1:20:08:e9:55:37:e5:
a9:c0:46:93:23:04:b1:a2:28:1b:19:ed:45:f1:fd:
25:dd:f4:2b:b5:2d:43:29:2b:70:31:e3:b8:27:fe:
b3:92:3c:a8:3a:f1:90:fc:e8:ac:dd:c8:4b:8d:6c:
52:20:6d:fe:5c:42:59:92:9e:6e:14:4e:72:d4:d8:
93:17:01:6b:61:58:d9:24:3f:11:56:88:ef:29:c0:
ca:1a:3a:1d:7d:9d:b2:46:73:aa:ce:49:27:69:50:
d5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:76:93:68:93:E2:DD:CA:9F:17:6F:4A:B9:FD:30:3F:57:EF:B0:96
X509v3 Authority Key Identifier:
keyid:6F:BB:B5:EC:12:7A:06:32:D2:26:AF:07:FA:C9:C4:D2:84:BD:1B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7u17BJ6BjLSJq8H-snE0oS9G6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/sHaTaJPi3cqfF29Kuf0wP1fvsJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/b7u17BJ6BjLSJq8H-snE0oS9G6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.4.0-94.26.23.255
94.26.26.0/24
94.26.30.0/24
94.26.45.0/24
94.26.66.0/24
94.26.72.0/24
94.26.74.0/23
94.26.86.0/23
94.26.94.0/24
94.26.96.0/24
94.26.100.0/24
94.26.102.0/24
94.26.108.0/24
185.108.140.0/22
IPv6:
2a01:b760::/32
Signature Algorithm: sha256WithRSAEncryption
42:14:62:f1:ea:2b:75:77:03:e6:b6:f6:7b:f6:42:4f:5c:15:
7e:6a:dd:7e:41:2b:91:fd:bc:85:d0:88:bc:df:61:65:97:72:
c7:b3:b1:68:26:69:92:8b:dd:c4:25:4a:78:cb:e3:50:b2:73:
e9:ab:8c:1e:46:fe:bd:4f:7f:ad:6b:c2:a5:90:2a:46:cd:c3:
38:ac:6b:3e:bc:af:5f:16:08:83:ab:b9:e8:92:f4:ab:2d:35:
bd:47:76:cb:e0:b2:a7:e6:ce:1c:1e:50:8e:57:99:6f:30:d7:
37:dd:61:ea:18:f8:2e:a4:bf:36:83:43:52:f6:d3:72:1a:5c:
43:e6:77:54:9d:85:d7:32:b6:04:2c:97:29:a2:5a:43:d6:19:
f2:f9:b3:ff:b7:02:c6:12:74:5e:19:76:d8:e5:70:b0:ad:85:
ad:8e:b6:f0:6d:31:22:55:e9:22:dc:04:39:9d:e5:82:00:f5:
38:0d:fb:83:f2:91:f4:fe:e9:a4:d6:a5:3b:39:52:47:7e:42:
59:2c:0c:9f:1f:15:52:c2:b4:10:78:bd:af:ec:62:0d:df:2e:
2a:f0:4c:52:b7:38:da:a3:ad:09:a4:80:fb:5c:88:1e:31:69:
ac:06:98:bc:ba:af:57:39:85:8d:fe:68:36:1d:84:b0:1d:d4:
33:2c:01:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:30 2024 by rpki-client on console-fra.rpki-client.org