Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k68JzmiyRzpH6cd6WXSJKGZQ8DQ.roa
File: k68JzmiyRzpH6cd6WXSJKGZQ8DQ.roa (raw, json)
Hash identifier: 67eIUcHvTDcIBo74zcPu1Ny8nBXwZL0nXeF3U+nyKLQ=
Subject key identifier: 93:AF:09:CE:68:B2:47:3A:47:E9:C7:7A:59:74:89:28:66:50:F0:34
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0192246BABAAC93CA360A43B3C80FE5760B2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k68JzmiyRzpH6cd6WXSJKGZQ8DQ.roa
Signing time: Tue 24 Sep 2024 14:24:49 +0000
ROA not before: Tue 24 Sep 2024 14:24:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51812
IP address blocks: 92.38.20.0/23 maxlen: 24
92.38.88.0/23 maxlen: 24
92.38.90.0/23 maxlen: 24
92.253.216.0/23 maxlen: 24
93.170.32.0/23 maxlen: 24
93.170.50.0/23 maxlen: 24
93.170.104.0/23 maxlen: 24
93.170.120.0/23 maxlen: 24
93.170.138.0/23 maxlen: 24
93.170.172.0/23 maxlen: 24
93.171.14.0/23 maxlen: 24
93.171.98.0/23 maxlen: 24
93.171.216.0/23 maxlen: 24
95.46.12.0/23 maxlen: 24
95.46.14.0/23 maxlen: 24
95.46.38.0/23 maxlen: 24
95.46.98.0/23 maxlen: 24
95.46.152.0/23 maxlen: 24
95.47.184.0/23 maxlen: 24
95.47.198.0/23 maxlen: 24
95.47.202.0/23 maxlen: 24
146.120.98.0/23 maxlen: 24
146.120.114.0/23 maxlen: 24
146.120.156.0/23 maxlen: 24
146.120.186.0/23 maxlen: 24
146.158.10.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:6b:ab:aa:c9:3c:a3:60:a4:3b:3c:80:fe:57:60:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Sep 24 14:24:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93af09ce68b2473a47e9c77a597489286650f034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:be:14:85:61:c7:a0:2b:64:dc:9d:7d:67:ac:
9a:d1:b1:48:17:ee:3c:a1:37:5c:01:6d:aa:39:2f:
66:11:2f:47:6c:fa:61:7e:81:6e:63:22:4e:2e:1d:
45:72:a0:8b:f4:77:28:ea:b8:b4:91:55:ed:e8:dd:
ea:98:c4:d7:db:d5:4e:05:c3:a3:1d:6a:fe:8b:99:
6f:1f:be:26:44:96:cf:dc:33:29:82:23:88:20:d8:
c6:71:1b:4e:11:83:de:f3:36:e8:bb:f9:51:ba:d6:
be:84:52:c3:ee:2f:c9:c0:96:4d:9a:aa:ba:b2:a0:
41:26:38:37:bd:d4:ea:18:4e:8a:ab:a1:ed:52:98:
e0:92:ca:a7:d5:3b:65:21:de:85:46:60:eb:73:2e:
a8:32:0f:6f:1b:16:67:34:88:2d:88:12:8f:98:ee:
7d:e8:5d:4a:ef:ab:b9:50:a6:e3:fa:11:1e:e1:82:
a0:ac:5c:75:f9:1e:c1:f9:c4:7c:36:3c:81:bf:d8:
1d:98:0d:e3:10:ae:31:a2:f3:fd:7a:47:1f:ff:3f:
23:7b:d7:a2:76:c2:78:ff:1a:89:a5:57:3a:38:8f:
31:33:3b:2d:c1:f6:19:ef:77:4f:dd:60:b0:a8:16:
c8:6e:ce:1d:b6:bb:b4:95:53:bc:56:fe:fe:e8:01:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:AF:09:CE:68:B2:47:3A:47:E9:C7:7A:59:74:89:28:66:50:F0:34
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k68JzmiyRzpH6cd6WXSJKGZQ8DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.20.0/23
92.38.88.0/22
92.253.216.0/23
93.170.32.0/23
93.170.50.0/23
93.170.104.0/23
93.170.120.0/23
93.170.138.0/23
93.170.172.0/23
93.171.14.0/23
93.171.98.0/23
93.171.216.0/23
95.46.12.0/22
95.46.38.0/23
95.46.98.0/23
95.46.152.0/23
95.47.184.0/23
95.47.198.0/23
95.47.202.0/23
146.120.98.0/23
146.120.114.0/23
146.120.156.0/23
146.120.186.0/23
146.158.10.0/23
Signature Algorithm: sha256WithRSAEncryption
88:78:e4:44:02:91:10:2d:ab:61:12:13:a5:73:96:cb:5c:66:
8a:cb:94:3a:4e:fc:ac:1d:da:58:c6:ae:39:39:65:dc:7f:70:
d8:b8:32:1a:d1:b6:ca:d9:41:36:9c:23:59:3e:b4:10:a9:3e:
6b:0d:a0:bc:21:ea:06:c7:11:a7:84:74:6c:be:aa:12:be:07:
ed:b6:ca:75:8b:47:3d:7c:cb:7b:c1:21:3f:86:b2:8b:1a:57:
85:7f:d2:a4:93:dc:45:6f:74:8f:5d:a8:a5:db:8e:37:da:b0:
e8:d0:e1:46:a3:33:1a:f4:1b:f1:08:f6:60:29:81:de:86:1a:
37:e3:03:09:9a:13:b1:fb:1e:bd:b2:fc:a8:8e:85:de:36:c2:
59:81:31:a8:bd:fc:15:9a:af:2b:60:a3:b3:9a:3a:8b:9f:c9:
ca:14:f4:d0:42:45:64:bd:44:c7:30:89:2f:a1:c4:4c:01:9f:
55:f5:ff:4d:1a:57:bc:3c:b6:b7:cc:6b:06:6c:b4:82:cd:1a:
06:da:fd:1e:a6:27:42:53:c7:14:77:80:b2:d9:42:7b:96:bf:
34:c2:ed:4f:0f:58:d6:2c:80:d5:9d:3e:71:83:4c:48:2d:f7:
f7:d3:92:0d:a3:5d:bd:e9:a1:c5:b5:67:80:23:2b:8d:3b:b1:
9b:2e:76:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:47 2025 by rpki-client