Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/jwZU-ZdGnxNmLeGEcrqUKqzOizk.roa
File: jwZU-ZdGnxNmLeGEcrqUKqzOizk.roa (raw, json)
Hash identifier: oFbfzZCKXuJXYmmyUttryamwOFw/75YqlzacvMGUVEU=
Subject key identifier: 8F:06:54:F9:97:46:9F:13:66:2D:E1:84:72:BA:94:2A:AC:CE:8B:39
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018DA762BB8A412514D7DABC4B084E5A2663
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/jwZU-ZdGnxNmLeGEcrqUKqzOizk.roa
Signing time: Wed 14 Feb 2024 11:31:21 +0000
ROA not before: Wed 14 Feb 2024 11:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 92.61.228.0/24 maxlen: 24
92.61.230.0/24 maxlen: 24
92.61.231.0/24 maxlen: 24
92.61.232.0/24 maxlen: 24
92.61.236.0/24 maxlen: 24
92.61.237.0/24 maxlen: 24
92.61.238.0/24 maxlen: 24
94.188.137.0/24 maxlen: 24
94.188.201.0/24 maxlen: 24
94.188.202.0/24 maxlen: 24
94.188.203.0/24 maxlen: 24
94.188.211.0/24 maxlen: 24
94.188.212.0/24 maxlen: 24
94.188.214.0/24 maxlen: 24
94.188.215.0/24 maxlen: 24
94.188.216.0/24 maxlen: 24
94.188.224.0/24 maxlen: 24
94.188.225.0/24 maxlen: 24
94.188.226.0/24 maxlen: 24
94.188.227.0/24 maxlen: 24
94.188.228.0/24 maxlen: 24
94.188.229.0/24 maxlen: 24
94.188.230.0/24 maxlen: 24
94.188.231.0/24 maxlen: 24
94.188.239.0/24 maxlen: 24
94.188.240.0/24 maxlen: 24
94.188.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 04:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a7:62:bb:8a:41:25:14:d7:da:bc:4b:08:4e:5a:26:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Feb 14 11:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f0654f997469f13662de18472ba942aacce8b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a3:fb:08:6c:6b:67:2c:01:6d:fd:e6:66:a1:
78:fd:73:d1:c0:cd:d6:55:1d:19:86:3d:45:4a:39:
29:bc:09:40:93:40:2c:5d:6b:cc:08:e0:df:dc:83:
c0:cd:6a:3d:a2:04:96:dd:97:6c:c1:37:ad:62:84:
89:e7:e6:88:33:f8:0e:f7:b9:e1:98:25:e4:80:c6:
cb:6e:24:18:65:39:08:e0:ab:ed:97:2b:ec:d9:3f:
ce:1d:9b:45:15:35:8a:cf:b3:7f:82:8e:ef:10:75:
7f:2c:35:a9:42:a2:15:74:d2:53:8d:15:fb:d2:19:
8e:73:89:00:ac:af:6e:3d:21:1e:47:91:bf:bc:2f:
56:81:3f:d9:62:db:ef:8e:8f:fb:12:f5:8f:d1:6b:
1d:c3:3c:92:e9:fb:95:82:4a:df:07:ec:08:79:2b:
0c:04:37:db:c0:36:31:68:9a:68:49:d3:a7:b9:c6:
56:73:53:2f:68:07:f7:b2:08:c6:80:d6:ff:7f:c4:
51:53:90:53:5e:57:c3:14:ae:60:6b:d3:0a:86:a5:
6c:18:e4:7c:9b:59:ba:63:c5:c2:0a:fa:4d:fc:e4:
f9:77:69:f5:a7:5f:fa:fe:76:3f:9b:34:79:ca:69:
cf:a8:4d:c6:69:1e:38:1a:d5:dd:2c:c5:a9:05:f2:
7e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:06:54:F9:97:46:9F:13:66:2D:E1:84:72:BA:94:2A:AC:CE:8B:39
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/jwZU-ZdGnxNmLeGEcrqUKqzOizk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.228.0/24
92.61.230.0-92.61.232.255
92.61.236.0-92.61.238.255
94.188.137.0/24
94.188.201.0-94.188.203.255
94.188.211.0-94.188.212.255
94.188.214.0-94.188.216.255
94.188.224.0/21
94.188.239.0-94.188.241.255
Signature Algorithm: sha256WithRSAEncryption
ac:97:7b:52:5d:cf:98:8c:85:e8:dd:8d:30:45:bf:0b:8e:f3:
b9:26:2e:68:e2:7b:d1:89:3a:34:b4:fb:05:bc:45:66:d7:3d:
aa:1d:c3:47:fd:2c:f7:c6:52:b9:27:c8:ca:71:df:9d:4f:c8:
a2:76:49:b6:5c:6a:15:2e:8c:cc:8b:ca:bb:cd:11:7c:a9:44:
7f:e6:63:5b:b8:92:c7:9c:07:da:9c:98:34:c5:62:68:12:31:
19:76:bd:db:e9:43:bf:7b:ec:00:1b:6b:0b:17:2f:59:fc:5b:
50:9d:75:ef:5e:3f:d2:03:66:1f:fa:6e:87:d8:9d:a7:2f:ba:
13:73:ad:65:73:5b:af:0f:45:b3:6a:f6:4f:31:ee:64:8c:a8:
9a:09:9e:32:4a:5b:72:f2:33:bd:6e:6f:73:3e:b5:5a:e3:23:
a0:28:13:c6:49:f3:9d:44:e9:fb:6a:85:4b:d9:b2:92:13:a6:
d7:0b:a3:1b:67:7c:80:72:b6:4e:d3:b7:fe:56:83:91:ef:98:
3b:67:26:e6:9a:ba:0c:ff:e9:6e:82:66:92:cf:56:74:e7:08:
07:d0:58:41:82:ac:43:57:e7:00:ab:09:98:09:37:82:ed:e8:
e5:c1:6d:1c:40:39:13:e2:75:2a:6e:2b:f5:5a:ab:9f:ae:9d:
75:d8:da:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:46 2025 by rpki-client