Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/DCAZ_iezT8UB4rn2j-bLP0UL0fE.roa
File: DCAZ_iezT8UB4rn2j-bLP0UL0fE.roa (raw, json)
Hash identifier: dfelRCSGuziaamwOGE6q3UZGxs007EbC7qMsyigdVCI=
Subject key identifier: 0C:20:19:FE:27:B3:4F:C5:01:E2:B9:F6:8F:E6:CB:3F:45:0B:D1:F1
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 018F57C458F90C546CF4158448188A6D214C
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/DCAZ_iezT8UB4rn2j-bLP0UL0fE.roa
Signing time: Wed 08 May 2024 10:33:56 +0000
ROA not before: Wed 08 May 2024 10:33:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 80.86.192.0/24 maxlen: 24
80.86.193.0/24 maxlen: 24
80.86.196.0/24 maxlen: 24
80.86.198.0/24 maxlen: 24
80.86.199.0/24 maxlen: 24
81.221.250.0/24 maxlen: 24
81.221.251.0/24 maxlen: 24
81.221.252.0/24 maxlen: 24
81.221.253.0/24 maxlen: 24
81.221.254.0/24 maxlen: 24
81.221.255.0/24 maxlen: 24
82.195.224.0/24 maxlen: 24
82.195.225.0/24 maxlen: 24
82.195.226.0/24 maxlen: 24
82.195.227.0/24 maxlen: 24
194.191.16.0/24 maxlen: 24
194.191.17.0/24 maxlen: 24
194.191.18.0/24 maxlen: 24
194.191.19.0/24 maxlen: 24
194.191.20.0/24 maxlen: 24
194.191.21.0/24 maxlen: 24
194.191.24.0/24 maxlen: 24
194.191.25.0/24 maxlen: 24
194.191.26.0/24 maxlen: 24
194.191.28.0/24 maxlen: 24
194.191.29.0/24 maxlen: 24
194.191.30.0/24 maxlen: 24
195.49.16.0/24 maxlen: 24
212.59.184.0/24 maxlen: 24
212.59.186.0/24 maxlen: 24
212.59.188.0/24 maxlen: 24
212.59.189.0/24 maxlen: 24
2a01:2a8:2001::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 08:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:c4:58:f9:0c:54:6c:f4:15:84:48:18:8a:6d:21:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: May 8 10:33:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c2019fe27b34fc501e2b9f68fe6cb3f450bd1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:77:ae:95:8f:42:5a:8e:b1:7b:00:ba:b3:21:
f0:c9:f2:ef:41:51:16:48:77:0b:55:6e:30:14:cc:
e4:fd:3c:f2:62:8a:04:22:cf:eb:e6:d4:45:25:6c:
38:9f:0e:ed:83:1a:5f:7d:2c:80:2a:32:54:73:bb:
76:03:73:f4:81:8f:24:50:6a:17:f2:ec:5d:e3:85:
fd:e0:ab:8c:4b:99:e1:a9:52:fc:30:64:85:2a:19:
0f:b4:41:dd:26:1c:15:79:d5:80:b4:c7:1d:a5:da:
3b:e8:0e:1c:48:06:1c:21:1b:50:8f:35:dc:b7:2d:
59:d6:53:03:15:8c:6d:af:39:c1:00:da:25:2c:bc:
10:6d:99:8d:c6:de:93:45:fc:36:bf:26:5f:a5:40:
6f:c9:36:20:2f:e3:1c:e3:7f:39:70:0a:f6:99:02:
6e:88:de:25:bc:4a:e4:c0:c2:7c:76:56:1c:f7:12:
0f:42:ec:f2:82:a7:42:b7:3d:72:d6:56:b0:f3:72:
dd:1a:13:16:5b:49:ab:2b:1c:4b:fd:67:b5:17:9e:
70:ca:13:c6:1e:50:d5:d0:1b:2d:4f:7b:67:27:19:
fa:f7:af:a2:a7:8d:a0:d9:ff:2b:8e:e4:fc:e3:f3:
71:df:29:a0:b3:1b:37:42:2c:af:b4:2c:20:43:91:
97:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:20:19:FE:27:B3:4F:C5:01:E2:B9:F6:8F:E6:CB:3F:45:0B:D1:F1
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/DCAZ_iezT8UB4rn2j-bLP0UL0fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.192.0/23
80.86.196.0/24
80.86.198.0/23
81.221.250.0-81.221.255.255
82.195.224.0/22
194.191.16.0-194.191.21.255
194.191.24.0-194.191.26.255
194.191.28.0-194.191.30.255
195.49.16.0/24
212.59.184.0/24
212.59.186.0/24
212.59.188.0/23
IPv6:
2a01:2a8:2001::/48
Signature Algorithm: sha256WithRSAEncryption
91:a3:51:e1:36:97:50:03:4c:f4:40:1d:aa:e8:32:e0:30:22:
31:7c:16:9f:e1:ce:41:7d:f5:92:5c:3c:62:1a:8b:13:03:3f:
fb:1d:f9:4b:86:c3:e2:5b:50:99:74:8a:0d:3d:34:38:d9:38:
6c:9a:93:a7:c6:f3:b4:9d:25:05:fc:78:dd:1a:91:93:1a:f3:
2f:9d:81:ca:1a:a3:bf:79:34:aa:1b:4c:c2:3e:4c:d1:1d:97:
d0:25:76:d0:b9:4c:7c:2f:ff:c3:15:06:65:7b:0b:ef:fb:cd:
51:0a:cc:ce:ef:08:f9:16:89:0a:5a:2f:0b:70:cf:54:2c:3b:
c8:ca:47:71:cb:2a:a8:0d:81:18:e0:5d:b1:69:d1:c1:90:f9:
7c:43:38:48:e4:91:bc:a9:ec:a1:4e:cb:e6:03:dc:3e:fd:7d:
06:87:8e:6b:4c:86:dd:0c:4b:58:87:f3:11:04:16:f2:10:63:
15:7e:83:65:49:c3:dd:a5:3a:1b:be:f5:e8:c6:46:0e:fc:28:
8c:da:f5:e9:17:e4:e5:8b:b3:72:1b:5f:51:c3:12:ae:83:ab:
59:4f:43:7c:f0:98:c1:17:c3:e7:b1:b4:6c:59:98:4a:34:d2:
2c:c6:c4:3d:7b:6b:2d:74:6b:25:f3:f2:75:ca:d0:18:37:92:
78:df:25:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org