Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/sIm50nhoTcfjkUzi8h-YFFzqRc0.roa
File: sIm50nhoTcfjkUzi8h-YFFzqRc0.roa (raw, json)
Hash identifier: AryEyeDIQJz7vnUoQIuR0GE+caLvQtUEKHBzLmPs2sc=
Subject key identifier: B0:89:B9:D2:78:68:4D:C7:E3:91:4C:E2:F2:1F:98:14:5C:EA:45:CD
Certificate issuer: /CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Certificate serial: 01859C05C6BAF5CFA2F528050272DE2B8DD4
Authority key identifier: 4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/sIm50nhoTcfjkUzi8h-YFFzqRc0.roa
Signing time: Tue 10 Jan 2023 14:11:42 +0000
ROA not before: Tue 10 Jan 2023 14:11:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8585
IP address blocks: 195.66.189.0/24 maxlen: 24
213.149.96.0/19 maxlen: 19
46.33.192.0/22 maxlen: 22
85.94.96.0/19 maxlen: 19
46.33.192.0/19 maxlen: 19
109.228.64.0/18 maxlen: 18
95.155.0.0/18 maxlen: 18
46.33.198.0/24 maxlen: 24
46.33.199.0/24 maxlen: 24
46.33.196.0/24 maxlen: 24
46.33.197.0/24 maxlen: 24
195.66.166.0/24 maxlen: 24
195.66.164.0/24 maxlen: 24
195.66.160.0/19 maxlen: 19
195.66.167.0/24 maxlen: 24
31.204.192.0/18 maxlen: 18
195.66.180.0/24 maxlen: 24
78.155.32.0/19 maxlen: 19
46.161.64.0/18 maxlen: 18
46.161.76.0/22 maxlen: 22
37.122.160.0/19 maxlen: 19
77.222.0.0/19 maxlen: 19
2a00:fe80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9c:05:c6:ba:f5:cf:a2:f5:28:05:02:72:de:2b:8d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Validity
Not Before: Jan 10 14:11:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b089b9d278684dc7e3914ce2f21f98145cea45cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:72:b8:b4:b2:0c:de:7a:b2:b7:3d:4e:92:9b:
6f:99:5d:7a:a5:5c:c7:ce:d7:35:fa:10:b6:e4:5e:
a6:87:19:30:23:cc:78:3d:b5:19:3a:72:47:ed:ae:
3a:01:32:dc:81:6d:92:ae:ec:89:40:41:c4:18:96:
55:68:48:29:82:53:38:54:5a:20:11:3a:28:bc:70:
d4:c5:58:c9:69:9c:16:f2:97:3a:c7:81:ff:dc:56:
f6:47:b1:0d:05:80:0c:00:90:89:86:b0:dc:24:30:
6d:9c:d8:c2:c4:c3:52:dd:1f:29:9c:0a:d6:e7:3f:
ad:9b:9d:dd:36:98:86:b9:a6:7c:fa:6c:52:2f:ab:
93:45:e0:30:7e:87:1d:01:d1:09:c0:7b:4c:46:e5:
fb:bb:a3:c6:07:75:36:e7:a0:6c:2f:99:82:2c:96:
90:d7:33:8d:20:7d:0d:60:96:bd:5d:06:7b:e1:04:
0e:6f:ab:0a:ee:3e:e3:9e:30:37:9f:a1:25:22:50:
5d:72:9e:aa:d0:52:59:bf:32:0c:4e:41:0d:47:26:
0f:66:42:f7:c5:dc:e8:19:5e:93:5b:1e:68:31:2c:
95:75:c5:d0:98:ee:98:34:28:8d:23:3f:8d:47:45:
55:07:2a:22:51:6f:e9:46:41:d8:6a:0f:f4:c8:de:
23:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:89:B9:D2:78:68:4D:C7:E3:91:4C:E2:F2:1F:98:14:5C:EA:45:CD
X509v3 Authority Key Identifier:
keyid:4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/sIm50nhoTcfjkUzi8h-YFFzqRc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/SnqRfdz8JujIezCFi28H8po9tD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.204.192.0/18
37.122.160.0/19
46.33.192.0/19
46.161.64.0/18
77.222.0.0/19
78.155.32.0/19
85.94.96.0/19
95.155.0.0/18
109.228.64.0/18
195.66.160.0/19
213.149.96.0/19
IPv6:
2a00:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
2b:92:0f:7d:cc:c4:6c:e9:30:6b:5b:0e:54:40:bb:40:f3:1a:
9a:ef:64:69:ca:86:a9:38:68:c6:aa:c4:da:df:4b:40:c2:49:
c4:12:14:3c:b3:37:60:d6:95:30:9e:10:8d:87:18:3c:ab:fe:
b0:c4:98:1a:2b:39:f0:e9:f0:7f:be:87:54:0c:5a:20:c6:72:
2f:76:65:41:46:4a:7c:95:76:ea:29:aa:92:d5:49:1d:52:36:
09:8f:44:da:5e:cf:43:07:4f:c3:ff:da:66:6b:20:44:26:e2:
fa:f3:9e:49:0f:c0:35:c3:b3:0c:a7:a8:32:4e:a9:e5:8f:ff:
53:6a:8e:13:c2:e2:1e:f0:4a:39:8c:6f:c7:0a:c7:f0:c6:76:
e2:32:c8:44:24:b5:07:8b:e6:12:15:c9:1f:f3:c8:9f:eb:c1:
23:1a:aa:ea:dc:09:52:de:ca:ef:95:6f:8d:da:84:57:e8:72:
e0:47:09:de:a9:54:a3:67:d3:9c:49:85:35:be:bd:f2:d7:2e:
6f:92:86:7f:33:a6:6a:9d:af:dd:3a:48:81:35:56:d6:07:fb:
2d:42:cb:13:99:d0:37:1b:c8:2f:3b:2a:fe:c7:9b:69:cd:88:
f0:3e:7f:26:d0:29:0e:bc:9b:2e:f1:50:12:7b:4a:23:c6:19:
8d:2e:04:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:14 2024 by rpki-client on console-fra.rpki-client.org