Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PBiYpPAxDidwpprRqG418hQ-6RA.roa
File: PBiYpPAxDidwpprRqG418hQ-6RA.roa (raw, json)
Hash identifier: /VirMI/aDGcRAwiU+3OP8GEhNKNAAby0ofaPRVkGlq4=
Subject key identifier: 3C:18:98:A4:F0:31:0E:27:70:A6:9A:D1:A8:6E:35:F2:14:3E:E9:10
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BEF25501F83B9F661AAF4BB671A6CEC7B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PBiYpPAxDidwpprRqG418hQ-6RA.roa
Signing time: Mon 20 Nov 2023 23:51:21 +0000
ROA not before: Mon 20 Nov 2023 23:51:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ef:25:50:1f:83:b9:f6:61:aa:f4:bb:67:1a:6c:ec:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 20 23:51:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c1898a4f0310e2770a69ad1a86e35f2143ee910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:e1:2e:05:2b:a6:25:db:f0:03:cb:c9:d4:
48:a4:5f:d6:ec:64:2b:7c:1d:d5:73:43:1a:00:4a:
7a:3b:e9:a7:49:6a:ef:90:33:4c:ad:ed:1c:c5:ce:
6e:06:b4:f5:5e:3d:c6:7b:89:0b:ef:02:2b:04:dc:
05:fb:c7:35:0f:dc:ac:a6:2d:88:95:49:80:e1:93:
46:af:7e:62:83:62:7c:38:d8:fb:12:85:9a:5a:f5:
99:f5:e8:0f:08:9c:5f:c5:44:41:e3:41:97:cf:f5:
48:c8:d1:57:8b:19:64:32:44:83:70:d1:64:8c:81:
94:a1:c3:89:40:53:f9:70:9d:db:3d:d2:e8:5b:a9:
77:7a:1a:a2:43:26:02:85:ec:17:5d:56:9d:b6:a1:
ae:e1:90:f1:db:ea:2e:66:3d:f2:71:1d:b9:89:2b:
c6:68:a3:ec:12:44:4b:ed:df:e2:24:a9:86:97:86:
c7:a5:c1:03:f8:88:24:25:25:3a:90:cd:48:02:be:
9e:91:92:83:1b:b0:c5:5a:f3:c5:b6:61:32:0b:10:
5c:2c:9a:d1:f6:8d:12:dd:90:dc:a6:5a:f5:30:d9:
9b:e8:8d:61:b1:c0:93:0b:dc:64:28:9d:a2:f3:d6:
f1:a6:b7:30:12:97:8a:15:e9:9f:af:95:8e:da:2f:
20:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:18:98:A4:F0:31:0E:27:70:A6:9A:D1:A8:6E:35:F2:14:3E:E9:10
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PBiYpPAxDidwpprRqG418hQ-6RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
a8:1e:e4:7d:51:c6:b8:10:8e:41:a5:5d:d5:74:f9:34:2d:a8:
2e:04:84:94:81:7d:72:5a:06:87:d9:e1:38:58:42:97:ed:f5:
07:2e:5a:51:83:73:59:3c:c1:d4:2a:f4:8c:f0:3e:61:25:a9:
2d:df:6b:b9:9e:f1:f8:ca:1a:9f:1d:be:85:e9:3b:22:49:13:
6e:fc:fc:ec:fb:dc:f2:5b:0a:19:7d:54:70:a2:f1:5f:a9:89:
75:b7:2b:f0:c9:d7:4d:ca:a5:83:14:f3:4b:f2:71:9b:28:9b:
18:3d:6c:0c:4a:fb:6e:e5:c4:10:58:78:b9:90:a4:3b:ae:9d:
44:9b:c4:a2:d6:87:2e:ac:59:a8:87:13:53:76:95:df:12:e8:
18:59:ae:05:0a:c9:4a:5b:c1:36:8e:02:df:eb:16:c9:e4:0a:
f6:e6:de:81:50:31:ed:dd:40:8b:c2:52:2c:10:50:5f:11:74:
dd:70:d2:a9:40:f2:a6:b4:d1:4a:f3:dc:ec:ec:59:a9:6a:54:
86:6f:b7:49:d0:ad:09:f7:9c:cf:33:06:ba:01:f2:f2:f1:80:
a8:c1:76:bc:79:28:4f:4a:32:8a:f3:c5:96:99:ff:54:c9:53:
45:54:54:6a:ab:a4:c6:89:03:78:3f:7e:16:5d:b5:c0:39:0e:
da:ad:20:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:31 2024 by rpki-client on console-fra.rpki-client.org