Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rPj5VtRhXAnB6wcc5qxkZd2WsvM.roa
File: rPj5VtRhXAnB6wcc5qxkZd2WsvM.roa (raw, json)
Hash identifier: IZSX7fjv70Rlk+tNWACJwalB4sIUfjbsbNqP8JXwT44=
Subject key identifier: AC:F8:F9:56:D4:61:5C:09:C1:EB:07:1C:E6:AC:64:65:DD:96:B2:F3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018815ED3EC91F6BFE76798E435874A05BD5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rPj5VtRhXAnB6wcc5qxkZd2WsvM.roa
Signing time: Sat 13 May 2023 16:24:09 +0000
ROA not before: Sat 13 May 2023 16:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a04:ccc2::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 16 May 2023 07:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:15:ed:3e:c9:1f:6b:fe:76:79:8e:43:58:74:a0:5b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 13 16:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acf8f956d4615c09c1eb071ce6ac6465dd96b2f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1e:27:63:b9:3b:31:72:d4:56:90:45:25:33:
d3:23:a2:b0:4e:c3:7c:86:a8:0a:9a:e7:54:de:53:
80:01:e5:07:b0:63:52:70:5e:8a:9b:19:65:63:1b:
14:96:dd:e2:2d:25:53:92:22:84:7d:ef:ca:73:e3:
d0:da:5c:69:c8:ee:ef:b2:26:54:a8:96:64:9f:fc:
7c:5f:65:13:1b:1a:ee:5b:30:e4:62:b3:c7:d9:f6:
80:98:14:6d:ba:0c:09:c8:f0:90:d8:34:f6:25:45:
6e:06:50:e0:cf:f7:f0:1f:1a:e4:46:cd:09:a6:e2:
f0:2d:e5:7b:a6:93:24:8e:36:cc:6d:76:1e:c5:e5:
f7:b7:3c:76:25:db:4f:f0:dc:76:ab:d1:13:47:67:
0e:36:f5:f9:ab:8b:c7:99:f4:25:b7:9c:35:e4:11:
f4:a8:27:85:eb:9b:68:db:0b:05:61:28:e7:7a:9b:
28:86:17:9f:8e:7a:e8:6a:ea:a5:ff:8e:5b:61:d3:
d9:c7:44:6d:0b:32:b1:d9:30:0e:a0:3f:41:36:a3:
3b:85:f8:a2:2a:ca:5a:7d:3d:e9:fc:86:19:b7:a4:
ce:6c:eb:7a:80:3b:aa:92:74:8f:ac:f6:ec:e4:24:
76:1b:2b:cb:07:c0:27:4e:4f:21:6d:aa:12:4b:ab:
fd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F8:F9:56:D4:61:5C:09:C1:EB:07:1C:E6:AC:64:65:DD:96:B2:F3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rPj5VtRhXAnB6wcc5qxkZd2WsvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc1::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
76:e6:f6:4a:24:0b:9f:6b:5c:ad:bb:ad:49:9e:d2:58:6b:4f:
de:18:54:58:a1:06:8f:7d:fd:6b:81:fe:ec:3e:7b:f7:ea:f8:
3d:9b:b1:a0:2b:69:43:3d:ce:c3:26:a3:d0:e4:a7:0a:58:c2:
48:17:05:30:c9:d2:fb:f0:06:e7:83:c3:db:61:a2:31:ed:d4:
d9:9c:e7:01:11:92:e1:d3:b7:89:d9:db:a7:19:c8:5f:b7:de:
41:41:0c:39:9c:c9:43:44:48:3c:e5:d5:c2:26:ad:a1:4e:06:
09:48:96:17:39:80:f0:81:fb:2f:3d:79:75:07:87:10:59:5c:
8c:40:38:f8:52:46:f9:95:be:a1:6a:5c:68:b4:c2:53:98:ec:
76:7a:c4:7c:c9:c9:5b:31:af:93:b4:51:50:80:52:e8:b2:f3:
5d:26:74:20:2d:63:c4:94:a6:12:69:80:cb:fa:c3:5b:3f:5e:
69:74:e0:2e:2d:d1:19:d3:b3:6a:e4:25:c9:90:fc:93:aa:35:
a8:d0:89:11:95:9c:4e:23:13:b8:04:24:17:30:f3:03:d3:66:
70:37:0f:22:b0:20:ab:ea:e9:c9:2c:0c:4b:87:4e:ae:04:67:
89:eb:b2:5a:5f:5a:7f:12:c5:6e:64:b7:80:c4:31:d7:ee:75:
c3:f4:30:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:32 2024 by rpki-client on console-ams.rpki-client.org