Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/alBcf_4x5nz_WfijfcHh9JH_FCM.roa
File: alBcf_4x5nz_WfijfcHh9JH_FCM.roa (raw, json)
Hash identifier: Jh0Tu8RGpPFmSdGq7mnr8zsOsr0ELOzvdWK77jBQt24=
Subject key identifier: 6A:50:5C:7F:FE:31:E6:7C:FF:59:F8:A3:7D:C1:E1:F4:91:FF:14:23
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 0185EEC1ACBFB7381F7672FC99968B01A584
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/alBcf_4x5nz_WfijfcHh9JH_FCM.roa
Signing time: Thu 26 Jan 2023 15:45:48 +0000
ROA not before: Thu 26 Jan 2023 15:45:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57433
IP address blocks: 185.14.92.0/24 maxlen: 24
185.14.93.0/24 maxlen: 24
94.154.51.0/24 maxlen: 24
94.154.49.0/24 maxlen: 24
94.154.50.0/24 maxlen: 24
94.154.48.0/24 maxlen: 24
94.154.48.0/21 maxlen: 24
94.154.52.0/24 maxlen: 24
94.154.53.0/24 maxlen: 24
94.154.54.0/24 maxlen: 24
94.154.55.0/24 maxlen: 24
43.251.161.0/24 maxlen: 24
43.251.162.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
43.251.163.0/24 maxlen: 24
176.100.32.0/21 maxlen: 21
176.100.32.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
37.114.32.0/19 maxlen: 24
37.114.37.0/24 maxlen: 24
37.114.32.0/24 maxlen: 24
2a00:ccc1::/48 maxlen: 48
2a00:ccc0::/32 maxlen: 32
2a00:ccc1:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Apr 2023 17:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:c1:ac:bf:b7:38:1f:76:72:fc:99:96:8b:01:a5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 26 15:45:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a505c7ffe31e67cff59f8a37dc1e1f491ff1423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:c8:93:e3:e8:ae:09:6e:16:ed:1e:36:c4:
0e:4a:38:a3:66:31:a5:16:97:e9:cb:93:97:88:67:
9c:b9:42:61:6a:fb:16:13:97:f3:1a:23:62:49:63:
5c:3e:30:0a:f1:13:97:bd:29:1d:37:8d:4f:00:4d:
83:0e:2d:5f:d5:74:5e:9b:70:25:49:49:c4:7a:06:
60:81:d4:d5:01:6c:e4:b7:42:fd:dc:75:28:9b:6a:
e6:9b:93:b4:11:8e:79:ad:ca:25:14:34:ca:b7:0e:
a9:cb:95:34:b2:bc:ba:45:ac:62:8f:15:8d:de:5b:
71:18:16:de:ea:20:08:dc:b1:a9:a9:b6:e4:18:08:
f2:13:e9:13:48:bf:a2:46:51:60:4f:20:c9:a6:f1:
c5:5c:38:e0:73:a5:52:2d:98:9e:77:01:ad:f3:6a:
32:07:ab:6a:4b:e5:41:8b:b9:56:a5:53:11:5f:01:
1f:97:98:a7:9b:9a:df:83:50:66:1e:b7:fc:ec:f1:
f9:79:c3:70:9e:30:d3:d5:c0:d2:d8:00:f4:03:ec:
54:b4:c9:41:19:8b:52:a0:be:44:e4:59:fd:21:74:
b1:38:c5:b7:22:f0:ad:4c:62:a4:3f:8c:84:6e:aa:
bc:b8:e5:d8:6a:a9:ca:28:93:be:db:ba:87:e3:75:
86:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:50:5C:7F:FE:31:E6:7C:FF:59:F8:A3:7D:C1:E1:F4:91:FF:14:23
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/alBcf_4x5nz_WfijfcHh9JH_FCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0/19
43.251.160.0/22
94.154.48.0/21
176.100.32.0/21
185.14.92.0/23
IPv6:
2a00:ccc0::-2a00:ccc1:0:ffff:ffff:ffff:ffff:ffff
2a00:ccc1:4::/48
Signature Algorithm: sha256WithRSAEncryption
c5:b3:ef:f9:98:8c:04:3e:f3:f5:08:b1:4f:25:3e:36:c4:3e:
54:27:6f:c2:6c:0f:07:ca:e3:26:f6:5b:b9:0e:ec:b9:ff:a7:
4e:8d:06:66:dc:5d:27:d3:20:d7:82:73:c2:3f:3c:15:43:fb:
85:ec:5b:83:02:fa:d6:31:de:a3:3b:86:4f:ec:98:0b:fe:c8:
0c:4d:80:65:26:d6:ae:ec:f6:e0:7d:ad:53:5d:28:f9:28:1f:
aa:18:07:dd:c3:bb:f1:be:3f:cf:b8:bf:c2:62:88:46:aa:7e:
0c:34:f6:2a:07:61:c0:b5:57:22:ec:69:f5:5a:3e:68:65:3d:
6d:dd:a9:13:e5:d3:39:4b:0c:89:a2:4c:81:e6:c9:9b:e0:ef:
49:6e:69:a9:04:58:38:70:d8:67:94:d2:09:cf:c6:fb:f0:9f:
87:ce:ab:e7:d4:b5:1f:2f:d3:f4:ea:c2:10:98:20:ff:0a:dc:
99:ed:c7:2d:67:17:db:0f:11:94:eb:cb:f9:51:0e:65:c8:4c:
d3:9f:2f:63:71:3c:10:b6:32:a7:3b:5f:59:8e:bc:61:49:cf:
29:63:a1:b1:ab:40:92:21:77:43:02:59:12:2e:02:98:f3:c3:
fc:a6:4e:fe:a7:76:6f:52:09:db:e0:23:79:67:c1:06:59:37:
aa:f5:7e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org