Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/kIrwcOQ1ZCDdfKgpPHfnbToQ8JQ.roa
File: kIrwcOQ1ZCDdfKgpPHfnbToQ8JQ.roa (raw, json)
Hash identifier: uHytRqICqmEFgMOoE8azjXL4NOvHRnioZqD0bM9Msls=
Subject key identifier: 90:8A:F0:70:E4:35:64:20:DD:7C:A8:29:3C:77:E7:6D:3A:10:F0:94
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 018714193704EFDCDC9EA6CEF90C660E6A7B
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/kIrwcOQ1ZCDdfKgpPHfnbToQ8JQ.roa
Signing time: Fri 24 Mar 2023 14:50:09 +0000
ROA not before: Fri 24 Mar 2023 14:50:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24961
IP address blocks: 185.219.208.0/22 maxlen: 22
78.31.64.0/21 maxlen: 21
93.186.192.0/20 maxlen: 20
83.136.80.0/21 maxlen: 21
46.20.32.0/20 maxlen: 20
85.114.128.0/19 maxlen: 19
5.104.104.0/21 maxlen: 21
85.14.192.0/18 maxlen: 18
62.141.32.0/20 maxlen: 20
37.157.248.0/21 maxlen: 21
46.228.192.0/20 maxlen: 20
194.107.129.0/24 maxlen: 24
81.30.144.0/20 maxlen: 20
80.82.208.0/20 maxlen: 20
91.212.159.0/24 maxlen: 24
91.212.153.0/24 maxlen: 24
89.163.128.0/17 maxlen: 17
146.0.32.0/20 maxlen: 20
91.194.84.0/24 maxlen: 24
213.202.192.0/18 maxlen: 18
5.199.128.0/20 maxlen: 20
185.15.244.0/22 maxlen: 22
217.79.176.0/20 maxlen: 20
193.111.198.0/23 maxlen: 23
2001:4ba4::/32 maxlen: 32
2a01:480::/32 maxlen: 32
2001:4ba1::/32 maxlen: 32
2001:4ba0::/32 maxlen: 32
2001:4ba3::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Aug 2023 12:44:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:19:37:04:ef:dc:dc:9e:a6:ce:f9:0c:66:0e:6a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Mar 24 14:50:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=908af070e4356420dd7ca8293c77e76d3a10f094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:46:81:7a:e9:19:f7:ce:06:e0:f2:10:50:8d:
4c:bd:ce:06:94:86:5d:63:fc:0c:f4:35:7c:85:25:
b1:c1:88:c7:e3:b5:c4:59:66:7a:3b:be:15:35:64:
8d:dd:97:b4:29:99:31:8d:56:57:1c:18:bc:d6:91:
42:93:06:f7:a6:2e:a9:97:c5:95:29:d4:35:71:3d:
d6:c0:b1:fa:09:09:03:4d:d7:54:51:78:7b:6a:05:
73:b4:0a:4c:19:40:4e:80:41:40:59:de:6b:66:c8:
a8:cb:23:1f:dc:8e:8f:8f:65:e4:ec:41:a8:ef:27:
98:b3:66:7d:cf:87:eb:33:c0:65:a7:23:39:1f:b6:
cf:c5:e1:69:8d:e5:5b:fc:29:38:d2:91:72:d7:11:
81:7e:2a:6b:98:56:2b:5d:04:db:0c:0e:55:41:82:
53:24:c7:25:8b:65:b6:7e:00:aa:7b:79:16:92:dd:
c2:0f:80:7b:02:86:ca:69:c6:23:c5:3e:48:52:33:
40:f2:09:c5:41:e6:34:19:47:5b:7a:8b:f8:58:78:
6e:23:41:61:26:b8:93:b3:0f:15:71:42:bb:ba:51:
78:94:bc:5c:9f:dc:72:dd:7c:c3:39:f2:32:a9:60:
8c:35:e1:55:45:84:81:8c:48:5a:77:ac:28:2e:24:
32:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8A:F0:70:E4:35:64:20:DD:7C:A8:29:3C:77:E7:6D:3A:10:F0:94
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/kIrwcOQ1ZCDdfKgpPHfnbToQ8JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.104.0/21
5.199.128.0/20
37.157.248.0/21
46.20.32.0/20
46.228.192.0/20
62.141.32.0/20
78.31.64.0/21
80.82.208.0/20
81.30.144.0/20
83.136.80.0/21
85.14.192.0/18
85.114.128.0/19
89.163.128.0/17
91.194.84.0/24
91.212.153.0/24
91.212.159.0/24
93.186.192.0/20
146.0.32.0/20
185.15.244.0/22
185.219.208.0/22
193.111.198.0/23
194.107.129.0/24
213.202.192.0/18
217.79.176.0/20
IPv6:
2001:4ba0::/31
2001:4ba3::-2001:4ba4:ffff:ffff:ffff:ffff:ffff:ffff
2a01:480::/32
Signature Algorithm: sha256WithRSAEncryption
47:72:b1:36:df:2c:c1:32:e6:6e:6f:91:78:54:98:e9:fd:1f:
27:a7:32:a8:f4:13:7a:89:2f:5f:82:f8:9a:62:3f:5c:b1:23:
29:cb:21:59:7f:7d:33:62:f7:a3:22:ea:47:e2:5e:7e:fa:25:
13:a0:27:27:bb:4f:bd:6d:cb:62:e6:9b:9f:3a:44:a8:0f:03:
06:59:8a:72:39:41:bf:36:a4:b9:bc:38:14:e2:98:c7:19:1b:
b8:c6:32:28:23:96:9c:4a:2d:1d:75:22:3c:c7:de:84:5e:74:
fd:9c:b0:92:91:e0:a4:42:59:55:21:b9:d6:a0:5b:c6:3b:95:
d6:f9:58:c5:74:01:0c:18:58:3c:25:6f:db:88:4a:77:61:d3:
f1:e1:44:ff:95:5e:a5:16:41:14:a9:89:8a:0a:4f:c9:c1:37:
d7:e7:a3:89:d1:19:c9:0d:f1:ac:cc:42:48:17:91:10:5e:13:
6b:09:c8:11:23:77:c6:ee:83:e9:69:7f:76:73:67:f3:74:4d:
22:46:fa:23:d1:fb:ca:ba:d4:96:1c:b2:c7:58:82:47:15:25:
8e:b0:4b:56:c0:f1:0a:da:72:b2:d3:f1:fa:55:f0:e1:71:94:
f6:d2:91:64:7e:fa:ed:d0:fc:a7:9a:b2:2b:f2:f9:7b:0f:ff:
34:9d:1d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:26 2024 by rpki-client on console-fra.rpki-client.org