Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/L6i-OaMicg8OSL2iVS1kAcnQhJ8.roa
File: L6i-OaMicg8OSL2iVS1kAcnQhJ8.roa (raw, json)
Hash identifier: xZvA9cOtQJ45JNVWRAv6YoUdjH5RQLj1eY/jONOMZP4=
Subject key identifier: 2F:A8:BE:39:A3:22:72:0F:0E:48:BD:A2:55:2D:64:01:C9:D0:84:9F
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 0189770552EA0ECEB1A7B48A9868807B9B78
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/L6i-OaMicg8OSL2iVS1kAcnQhJ8.roa
Signing time: Fri 21 Jul 2023 05:56:24 +0000
ROA not before: Fri 21 Jul 2023 05:56:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 185.14.94.0/24 maxlen: 24
185.14.95.0/24 maxlen: 24
37.114.36.0/24 maxlen: 24
37.114.33.0/24 maxlen: 24
37.114.35.0/24 maxlen: 24
37.114.34.0/24 maxlen: 24
37.114.32.0/24 maxlen: 24
37.114.38.0/23 maxlen: 24
37.114.43.0/24 maxlen: 24
37.114.42.0/24 maxlen: 24
37.114.50.0/24 maxlen: 24
37.114.47.0/24 maxlen: 24
37.114.48.0/24 maxlen: 24
37.114.53.0/24 maxlen: 24
37.114.57.0/24 maxlen: 24
37.114.56.0/24 maxlen: 24
37.114.55.0/24 maxlen: 24
103.252.88.0/22 maxlen: 22
37.114.61.0/24 maxlen: 24
37.114.60.0/24 maxlen: 24
37.114.62.0/24 maxlen: 24
37.114.59.0/24 maxlen: 24
43.251.162.0/23 maxlen: 23
176.100.33.0/24 maxlen: 24
176.100.32.0/24 maxlen: 24
176.100.34.0/24 maxlen: 24
176.100.35.0/24 maxlen: 24
2a00:ccc1:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 17 Nov 2023 16:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:05:52:ea:0e:ce:b1:a7:b4:8a:98:68:80:7b:9b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jul 21 05:56:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fa8be39a322720f0e48bda2552d6401c9d0849f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:85:95:6b:fc:e8:5e:90:88:e5:88:11:16:
81:bf:23:f9:ab:9a:db:a4:f2:e7:76:d4:97:49:3b:
95:31:74:c3:d8:68:54:b3:0a:bb:d8:66:f6:2a:70:
bc:c5:05:77:b7:4d:45:af:db:80:4f:b9:19:f3:d4:
22:d1:44:da:5d:a6:19:e3:ff:38:4d:43:c7:d8:ef:
a1:50:4d:d4:24:83:cc:c5:db:f5:6f:de:2b:a6:87:
2f:ec:f0:e4:ec:2b:89:bb:5f:4d:6f:33:2d:2a:72:
db:2c:83:82:fc:2b:ed:2e:c7:52:c9:33:cf:cf:ed:
c3:88:2d:77:20:75:06:71:4b:69:d4:2e:aa:cd:b0:
eb:c2:62:45:5b:96:20:10:16:03:0b:53:b1:8b:64:
f3:c3:4c:6f:a0:b8:33:87:f7:f2:49:1f:d3:bb:cf:
45:53:68:32:2b:36:1b:78:e9:b4:83:64:c3:44:d2:
bd:fe:ce:11:28:4b:4e:ec:92:a4:7f:4c:f3:fe:f3:
05:a1:07:4f:35:ea:86:cf:d4:30:61:aa:b4:14:d7:
6c:ce:67:f0:6c:55:a8:bd:c4:76:cd:45:0a:c3:6e:
0d:82:56:cd:1f:b5:88:c2:9e:b7:68:94:c3:e5:14:
5e:f8:b7:64:91:c8:a7:6a:f1:cc:fb:05:d1:ae:6f:
de:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A8:BE:39:A3:22:72:0F:0E:48:BD:A2:55:2D:64:01:C9:D0:84:9F
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/L6i-OaMicg8OSL2iVS1kAcnQhJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0-37.114.36.255
37.114.38.0/23
37.114.42.0/23
37.114.47.0-37.114.48.255
37.114.50.0/24
37.114.53.0/24
37.114.55.0-37.114.57.255
37.114.59.0-37.114.62.255
43.251.162.0/23
103.252.88.0/22
176.100.32.0/22
185.14.94.0/23
IPv6:
2a00:ccc1:100::/40
Signature Algorithm: sha256WithRSAEncryption
81:9c:aa:f8:1b:ef:af:79:37:7c:72:0d:0c:30:0d:10:16:46:
7d:f7:8a:b1:0d:07:c3:4f:07:6c:c2:47:e4:61:bb:c4:7c:b4:
1d:d8:f8:97:bd:ff:d0:c8:99:34:40:4a:a3:c1:8b:0c:03:95:
ac:c2:f8:2d:fc:54:38:a6:56:d7:d2:7d:02:53:a6:ad:ee:e1:
09:39:a2:1d:00:ae:2a:62:2f:5c:15:48:c2:39:61:26:64:a3:
da:20:3a:48:72:45:8f:fb:d4:d6:52:e0:5d:00:a7:84:83:25:
09:09:33:59:fc:a8:de:f8:1f:47:2c:e3:3c:49:56:ab:d4:cb:
83:05:8d:b4:7c:eb:43:96:38:2f:6e:f9:86:bb:22:c7:c0:e3:
c8:6c:a0:d5:15:76:0e:1d:27:b4:c5:36:12:b3:1d:99:97:37:
50:24:9e:36:26:94:df:d0:14:87:1e:c1:54:4a:be:56:1d:f2:
8b:36:0d:38:f8:f7:26:a2:ea:3f:7e:d4:03:45:91:f0:2b:1f:
de:9c:56:89:ea:08:2b:87:cb:93:84:e2:01:00:c1:99:7e:5e:
05:ad:1d:51:dd:8d:3c:4a:57:c4:2e:58:f4:14:05:0f:5c:0d:
a4:9a:cb:83:51:15:11:f3:10:2d:01:be:7d:43:51:f9:1e:b5:
96:b1:62:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:17 2024 by rpki-client on console-ams.rpki-client.org