Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/u6IHITRTQ_A-dqLrCW8uJ7YgHtY.roa
File: u6IHITRTQ_A-dqLrCW8uJ7YgHtY.roa (raw, json)
Hash identifier: Jx9JjZikiVAw9nsxIkRABSq+HiodkYEVu6VkR4uYUfM=
Subject key identifier: BB:A2:07:21:34:53:43:F0:3E:76:A2:EB:09:6F:2E:27:B6:20:1E:D6
Certificate issuer: /CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Certificate serial: 018CC6B91826A5837A5D1E3DDB596BC5109C
Authority key identifier: A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/u6IHITRTQ_A-dqLrCW8uJ7YgHtY.roa
Signing time: Mon 01 Jan 2024 20:31:08 +0000
ROA not before: Mon 01 Jan 2024 20:31:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29066
IP address blocks: 185.136.164.0/22 maxlen: 22
185.136.160.0/22 maxlen: 22
185.136.168.0/22 maxlen: 22
78.138.96.0/21 maxlen: 21
87.119.220.0/22 maxlen: 22
78.138.104.0/22 maxlen: 22
92.42.104.0/21 maxlen: 21
92.204.240.0/20 maxlen: 20
78.138.118.0/24 maxlen: 24
37.61.208.0/20 maxlen: 20
78.138.126.0/23 maxlen: 23
92.204.160.0/19 maxlen: 19
195.69.240.0/22 maxlen: 22
146.0.224.0/19 maxlen: 19
92.205.152.0/22 maxlen: 22
92.204.200.0/21 maxlen: 21
87.119.195.0/24 maxlen: 24
185.136.156.0/22 maxlen: 22
85.195.64.0/18 maxlen: 18
92.205.112.0/20 maxlen: 20
185.19.216.0/22 maxlen: 22
92.204.96.0/21 maxlen: 21
2a01:7a0::/29 maxlen: 29
2a01:7a7::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 30 Jan 2024 15:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:18:26:a5:83:7a:5d:1e:3d:db:59:6b:c5:10:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Validity
Not Before: Jan 1 20:31:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bba20721345343f03e76a2eb096f2e27b6201ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:0b:71:e8:92:30:0e:22:6d:72:d5:74:7a:
f3:64:f6:fa:c2:c7:2e:f1:82:42:ba:5b:70:90:53:
b7:83:de:54:fc:d4:dd:49:79:ea:c8:69:b3:7b:a7:
ea:c6:e2:58:90:bd:c8:e9:cc:14:c7:c0:49:fd:bc:
df:89:53:0e:05:a0:3c:b9:78:e0:dc:84:0b:75:d3:
ff:e7:c3:90:2e:6f:3a:38:ac:98:9b:72:3a:ed:4b:
be:0f:e1:32:98:06:65:62:c7:ef:e6:92:05:83:e6:
05:1c:70:2f:f3:ff:35:56:ce:04:e0:36:33:cf:ac:
70:2d:97:ee:28:ab:53:93:1d:f1:9d:80:d3:d1:56:
2c:75:1d:0b:e0:84:3d:db:8d:61:ee:ea:e3:78:53:
7d:08:8c:be:30:ee:e2:91:d5:71:e9:71:46:33:eb:
49:f2:84:09:3e:64:f7:cf:b3:4e:d2:ea:cf:3b:71:
cb:58:25:71:33:fb:f0:bd:09:8d:48:c7:b6:71:13:
ad:9f:5b:0f:cb:c3:72:09:ba:23:66:c2:8e:74:52:
79:49:51:44:8a:ae:f6:bd:7a:a8:53:af:18:54:d1:
c8:82:0a:8a:d7:a8:43:66:38:18:d5:87:c9:74:3e:
55:5b:e4:c6:a2:05:7d:99:d3:5a:50:c1:9f:d5:81:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A2:07:21:34:53:43:F0:3E:76:A2:EB:09:6F:2E:27:B6:20:1E:D6
X509v3 Authority Key Identifier:
keyid:A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/u6IHITRTQ_A-dqLrCW8uJ7YgHtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.208.0/20
78.138.96.0-78.138.107.255
78.138.118.0/24
78.138.126.0/23
85.195.64.0/18
87.119.195.0/24
87.119.220.0/22
92.42.104.0/21
92.204.96.0/21
92.204.160.0/19
92.204.200.0/21
92.204.240.0/20
92.205.112.0/20
92.205.152.0/22
146.0.224.0/19
185.19.216.0/22
185.136.156.0-185.136.171.255
195.69.240.0/22
IPv6:
2a01:7a0::/29
Signature Algorithm: sha256WithRSAEncryption
00:47:88:a5:ab:b4:db:fc:35:a5:2a:ae:05:80:5c:a5:f4:a1:
43:19:c7:ca:b0:de:d0:02:8d:7a:83:e4:97:a0:8e:f6:84:94:
77:dd:38:cd:a0:95:5a:40:27:ae:19:62:7f:af:e7:6e:76:1c:
21:bb:96:15:48:19:d9:d7:65:5f:43:28:8b:9a:ea:26:c3:c9:
f6:2e:99:ae:b7:ea:37:be:49:eb:8a:d6:35:f1:a7:14:c4:c0:
13:8a:03:4a:30:85:e4:00:42:9d:ec:49:20:d9:29:23:3a:f8:
d2:9c:6a:8c:c7:6f:44:58:14:f9:90:31:be:79:b8:80:53:2c:
aa:b0:9b:bd:1e:5d:e0:fe:9f:a2:ca:aa:b2:8a:88:20:b2:ca:
30:4d:3c:14:38:71:76:4a:21:f3:3e:d9:a1:86:f0:c2:d7:ac:
29:0e:14:62:37:04:ce:1a:33:be:d0:7c:ff:9e:ad:c7:71:77:
48:e8:53:47:4c:10:0b:8e:49:2a:88:b4:05:2e:9a:a3:69:5d:
e2:8d:cf:3d:53:0c:65:76:db:67:f2:ab:2a:cc:00:05:e3:41:
b8:27:3d:39:a9:0c:fe:94:b0:b9:a2:0c:0b:b3:1d:31:8d:05:
a1:29:cb:3d:4b:f4:0b:7f:a4:a0:c7:df:98:b2:2b:a1:71:15:
6e:32:bf:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:16 2024 by rpki-client on console-ams.rpki-client.org