Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/JDmm6s9uyDhGeKBVsYOlhXHZcGc.roa
File: JDmm6s9uyDhGeKBVsYOlhXHZcGc.roa (raw, json)
Hash identifier: dAHW0oMcXrRs4kaq72seV/8BYJ09YFCpifkh8lpeYM8=
Subject key identifier: 24:39:A6:EA:CF:6E:C8:38:46:78:A0:55:B1:83:A5:85:71:D9:70:67
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 0185970C3A789E4269454CAF9C98A69817B3
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/JDmm6s9uyDhGeKBVsYOlhXHZcGc.roa
Signing time: Mon 09 Jan 2023 15:00:39 +0000
ROA not before: Mon 09 Jan 2023 15:00:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.245.0/24 maxlen: 24
66.22.244.0/24 maxlen: 24
66.22.246.0/24 maxlen: 24
66.22.242.0/24 maxlen: 24
66.22.241.0/24 maxlen: 24
66.22.243.0/24 maxlen: 24
66.22.248.0/24 maxlen: 24
66.22.247.0/24 maxlen: 24
66.22.196.0/22 maxlen: 22
66.22.204.0/22 maxlen: 22
66.22.200.0/22 maxlen: 22
66.22.208.0/22 maxlen: 22
66.22.212.0/22 maxlen: 22
66.22.216.0/23 maxlen: 23
66.22.218.0/23 maxlen: 23
66.22.220.0/23 maxlen: 23
66.22.222.0/23 maxlen: 23
66.22.224.0/23 maxlen: 23
66.22.226.0/23 maxlen: 23
66.22.231.0/24 maxlen: 24
66.22.230.0/24 maxlen: 24
66.22.233.0/24 maxlen: 24
66.22.232.0/24 maxlen: 24
66.22.235.0/24 maxlen: 24
66.22.234.0/24 maxlen: 24
66.22.236.0/24 maxlen: 24
66.22.238.0/24 maxlen: 24
66.22.237.0/24 maxlen: 24
66.22.240.0/24 maxlen: 24
66.22.239.0/24 maxlen: 24
2a0e:5940:90::/44 maxlen: 44
2a0e:5940:20::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 09 Jan 2023 16:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:0c:3a:78:9e:42:69:45:4c:af:9c:98:a6:98:17:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Jan 9 15:00:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2439a6eacf6ec8384678a055b183a58571d97067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:44:67:67:d1:72:bf:3e:cf:3b:f6:66:9b:f9:
07:09:79:52:50:99:bf:66:25:a2:94:3f:ac:a4:59:
f9:5a:0d:9a:7f:a1:62:91:43:f1:b3:ca:34:78:70:
a3:03:ae:f0:ce:32:4e:83:cc:6a:40:8a:6f:b0:a5:
bc:e2:ba:31:95:b6:5c:ba:e3:7d:4e:6e:2c:26:01:
68:55:53:bf:1c:21:3a:c2:20:64:bb:44:80:69:bb:
70:29:2d:d0:f5:c1:9a:df:ef:35:8a:2e:dc:cc:00:
a9:2a:4d:52:c0:e4:24:5a:c5:2d:8e:41:69:fe:09:
1f:a7:61:d1:71:d6:f2:d4:8a:7f:e3:b6:af:e4:4d:
33:8e:c6:eb:80:fe:1a:41:26:4f:47:53:45:4b:ed:
5d:9b:1a:73:be:d7:fa:32:68:0c:f8:9f:f6:23:94:
83:5b:81:f8:9d:cf:8b:e5:07:8d:23:36:c4:a5:35:
c5:17:d0:ae:0f:34:5e:0f:a3:6b:ea:05:83:e6:19:
18:28:62:00:f3:54:45:6e:1e:84:57:83:2f:7d:a5:
b4:48:c8:52:3f:de:fa:6a:d7:03:4f:aa:a1:1e:e9:
27:49:45:01:dd:14:8d:4b:fa:59:c1:97:3b:bc:40:
ee:6d:c3:0b:80:53:69:02:33:a5:64:a5:42:dc:62:
ea:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:39:A6:EA:CF:6E:C8:38:46:78:A0:55:B1:83:A5:85:71:D9:70:67
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/JDmm6s9uyDhGeKBVsYOlhXHZcGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.196.0-66.22.227.255
66.22.230.0-66.22.248.255
IPv6:
2a0e:5940:20::/44
2a0e:5940:90::/44
Signature Algorithm: sha256WithRSAEncryption
21:99:b2:38:af:69:66:57:c8:38:3a:e7:18:d0:81:db:de:2f:
8f:c1:14:cd:f9:fb:a5:98:56:66:69:93:3a:73:61:9b:b4:be:
ff:81:1b:f3:c9:e4:d5:0c:b9:2f:ce:4d:d9:c2:d1:89:59:99:
74:33:91:e2:7f:2b:43:a1:ca:c2:df:8b:bb:b0:a4:b0:16:f8:
a8:78:84:3c:71:69:31:7a:52:56:c3:6f:51:d7:38:61:a7:11:
e7:a9:26:f5:f9:20:82:79:50:12:24:12:e8:d7:26:2c:8b:3e:
6f:30:92:08:34:83:32:f3:5c:55:56:dc:3c:ab:42:67:73:b8:
2d:ee:5d:f3:99:ad:fb:fa:31:75:6b:66:f7:f8:4a:f5:cd:74:
06:b3:00:78:3a:2a:b9:a6:5f:dd:a1:0d:6e:bb:9c:29:b1:ee:
93:af:34:d6:f0:6a:f4:d4:ba:bf:c8:85:31:50:85:f6:ab:c6:
78:ff:08:f0:2c:81:4b:db:3e:61:9b:75:1a:34:52:de:c9:c9:
d2:de:c8:44:bb:3d:a8:bd:fb:50:bc:95:20:50:7e:55:51:b4:
cb:32:d8:c2:0e:ca:dc:c5:f2:11:9b:f1:67:f7:ea:8c:15:b1:
db:cd:37:62:01:3b:6a:04:78:75:8f:2a:f0:a6:71:38:0a:b3:
fd:53:4b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org