Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yY9lslM8KlqFMW7mxxPL_pZGkP4.roa
File: yY9lslM8KlqFMW7mxxPL_pZGkP4.roa (raw, json)
Hash identifier: w57Jle0t2ERJ5qwm+wOYfwmQR5Do5mKygZPHHUCYxkI=
Subject key identifier: C9:8F:65:B2:53:3C:2A:5A:85:31:6E:E6:C7:13:CB:FE:96:46:90:FE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BCD54B8E0F430583BF3F4D099BE4CB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yY9lslM8KlqFMW7mxxPL_pZGkP4.roa
Signing time: Tue 02 Jan 2024 10:34:04 +0000
ROA not before: Tue 02 Jan 2024 10:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Mar 2024 09:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:d5:4b:8e:0f:43:05:83:bf:3f:4d:09:9b:e4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c98f65b2533c2a5a85316ee6c713cbfe964690fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:58:c9:f2:c3:98:c6:db:b4:73:4b:60:e4:79:
42:d5:f0:08:0f:4c:ca:8f:7a:fd:78:c0:3f:73:22:
86:0d:39:0b:23:96:05:e1:e7:71:55:bd:60:0a:42:
c7:51:65:ee:60:0a:fc:5d:ee:e3:19:dc:4d:3b:13:
91:51:6d:bf:67:41:b3:24:0d:b0:5a:f5:c0:b5:57:
83:70:cc:a2:0e:0d:8e:a1:a1:36:b3:35:e4:82:87:
59:95:43:77:fe:fc:a9:10:5e:0e:51:d6:de:ad:91:
72:29:ec:e2:37:73:ea:d3:0f:5f:4c:3c:53:f0:7d:
6d:7a:86:66:e6:d4:92:b2:3b:e9:56:ce:16:c7:ae:
d1:be:14:09:57:bf:6e:0b:f9:fe:6d:53:be:86:f4:
d4:e3:1c:bb:97:e4:27:3b:ce:01:42:b8:79:aa:50:
70:17:6f:39:e5:b3:bd:98:fd:94:9b:3a:df:f8:15:
ce:18:e6:27:c3:a6:73:30:fe:21:2f:33:79:ba:33:
e1:c2:84:79:87:ab:5e:87:42:69:b3:68:1c:28:08:
71:b7:3d:33:df:71:fd:a8:18:4c:e8:c4:a6:08:0a:
aa:10:b5:4a:5b:a5:ef:b4:0d:0f:3e:ab:3d:5b:96:
7d:c8:02:a0:34:70:e3:e4:28:3e:29:47:c4:ea:e3:
db:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8F:65:B2:53:3C:2A:5A:85:31:6E:E6:C7:13:CB:FE:96:46:90:FE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yY9lslM8KlqFMW7mxxPL_pZGkP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
6f:b4:d0:62:ba:f9:c8:f0:ea:c0:df:83:6d:2a:e4:73:b2:aa:
69:3e:4a:a9:b5:28:06:9a:94:9f:5c:c8:f7:53:eb:e7:fe:8e:
d1:cf:84:44:74:93:8c:a9:5b:76:b5:8d:30:49:d2:51:d0:f9:
73:09:33:65:ca:e4:84:3a:8f:04:9b:77:0a:5a:06:24:89:87:
c4:8f:26:34:e0:c4:fc:79:14:c7:4d:04:c8:73:5a:9b:59:69:
bb:ea:cd:e3:1c:9d:dd:b6:70:50:5c:96:4d:9b:b1:eb:a3:f3:
c1:fe:7b:ce:69:ba:8e:b1:83:ee:b4:e9:f6:f6:d7:ad:6f:43:
98:2a:e5:1f:79:9d:7e:c6:db:1f:d5:0e:00:5f:bf:1b:79:cf:
c2:5a:2c:92:41:68:0d:a7:0d:4c:ee:88:0e:b9:6b:bc:0d:2e:
e2:1a:25:21:3f:b9:01:9f:2c:c2:32:37:69:8c:1a:d2:c8:b6:
1b:2c:2b:29:d1:d5:3c:6e:68:4a:9c:24:08:83:9b:9d:28:08:
1b:3f:8e:ee:87:c9:53:ab:19:ac:b9:39:20:bc:cc:53:4f:44:
0a:bb:b5:6d:4d:bb:6f:4e:a6:bb:bf:03:4d:31:05:cb:c9:ca:
bf:29:8a:93:48:88:22:5e:1f:b4:cf:3f:36:60:8b:54:13:89:
16:6e:0e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:40 2024 by rpki-client on console-fra.rpki-client.org