Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/i2T8p9_ZbmftASrqF69YbaWS3hQ.roa
File: i2T8p9_ZbmftASrqF69YbaWS3hQ.roa (raw, json)
Hash identifier: 5PlFPi1yRfB5ZLrSb2JmRNekl7A7JGHHkIVLoIlteWs=
Subject key identifier: 8B:64:FC:A7:DF:D9:6E:67:ED:01:2A:EA:17:AF:58:6D:A5:92:DE:14
Certificate issuer: /CN=8559fea7e83e64e5d82562313c3a3f190f49f032
Certificate serial: 01856D660A12B32D9BE7DA9833EB1700DA1E
Authority key identifier: 85:59:FE:A7:E8:3E:64:E5:D8:25:62:31:3C:3A:3F:19:0F:49:F0:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/i2T8p9_ZbmftASrqF69YbaWS3hQ.roa
Signing time: Sun 01 Jan 2023 12:54:41 +0000
ROA not before: Sun 01 Jan 2023 12:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200869
IP address blocks: 185.93.17.0/24 maxlen: 24
185.93.16.0/24 maxlen: 24
185.93.19.0/24 maxlen: 24
185.93.18.0/24 maxlen: 24
62.112.16.0/24 maxlen: 24
62.112.15.0/24 maxlen: 24
62.112.14.0/24 maxlen: 24
62.112.17.0/24 maxlen: 24
62.112.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:0a:12:b3:2d:9b:e7:da:98:33:eb:17:00:da:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8559fea7e83e64e5d82562313c3a3f190f49f032
Validity
Not Before: Jan 1 12:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b64fca7dfd96e67ed012aea17af586da592de14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:21:5a:86:a3:e1:1c:20:b1:89:97:19:0d:20:
10:f1:fd:3d:5b:f3:87:54:4d:e9:52:c0:80:f0:9d:
31:ad:2a:e7:5e:e8:e8:a2:e1:21:60:51:15:53:55:
df:78:40:18:b3:21:0c:56:e2:e7:da:4a:44:3c:ea:
bf:4d:85:d5:6a:ce:cb:ad:0f:6d:23:79:0b:41:0c:
bf:a6:58:b1:c3:53:3f:1c:71:dc:1a:99:68:56:36:
e7:22:40:7a:71:39:46:d2:fc:d6:ca:bb:d7:6f:8d:
e2:c4:56:0c:ae:43:23:8c:6f:a3:a5:fc:6a:36:e8:
85:58:8b:fb:76:25:a1:ed:99:b3:98:7e:87:d0:c2:
83:3b:c6:7b:68:2a:cc:80:eb:df:0e:96:27:f2:ef:
57:d3:70:0b:d2:e8:80:a5:80:d7:53:31:fb:3d:c3:
88:86:0b:4d:32:e3:8f:3c:6a:09:d5:5c:80:71:57:
63:bc:23:95:a3:58:ac:2f:ec:b6:d7:a7:26:db:51:
6c:af:62:3c:44:a2:5b:03:9a:86:bc:3b:34:a7:7e:
00:72:85:c9:69:01:ad:a4:c9:0f:b5:10:d2:66:88:
4c:4e:14:b0:4e:ef:21:26:3f:c6:6a:81:d5:1f:9b:
42:8d:0f:16:4c:b2:b4:58:a4:9a:ab:07:22:20:81:
2b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:64:FC:A7:DF:D9:6E:67:ED:01:2A:EA:17:AF:58:6D:A5:92:DE:14
X509v3 Authority Key Identifier:
keyid:85:59:FE:A7:E8:3E:64:E5:D8:25:62:31:3C:3A:3F:19:0F:49:F0:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/i2T8p9_ZbmftASrqF69YbaWS3hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.14.0-62.112.17.255
62.112.20.0/24
185.93.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:1c:47:bf:4a:ba:2e:78:8e:a5:2a:c2:9a:4d:89:a3:61:77:
12:db:17:cd:7a:69:68:54:3c:2b:7e:80:92:2b:0f:a0:b0:58:
3f:30:92:3f:63:1d:df:8f:a8:7c:3c:cd:d9:fd:96:12:68:43:
69:ae:83:ac:bc:18:60:57:23:c3:99:6e:47:45:01:e6:00:c6:
7d:93:aa:5d:cc:25:ea:93:19:23:ec:ce:85:a4:85:45:f1:2a:
9b:94:a6:42:f9:7f:f8:92:78:3d:74:29:e8:03:69:91:ea:2c:
a2:c8:8d:78:fa:0a:b9:de:52:5b:fc:fb:c9:be:d4:ef:a2:58:
90:12:51:95:c0:f1:3d:a3:d9:d1:23:63:fc:84:a7:48:10:b5:
e5:c7:7c:10:c7:33:12:74:b6:23:ff:fc:4a:7b:f5:6c:12:aa:
1b:4a:5b:ff:65:b5:d9:a9:24:5d:45:6d:6d:f9:ae:92:7f:cb:
fe:4c:f9:4b:e2:78:37:ec:40:65:ab:6a:c7:fc:c2:d0:c8:c7:
b8:dc:26:41:25:f5:7c:61:92:36:1a:0f:34:a4:a4:ce:7d:da:
22:17:26:9b:69:8b:3e:34:72:b4:41:d3:05:c1:18:28:73:df:
30:94:10:da:2d:42:23:37:42:31:06:19:95:f9:e2:97:f3:55:
2d:ea:ae:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:31 2024 by rpki-client on console-fra.rpki-client.org