Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/0M7aaac5vZAUjIxl4HK1Xo0bZ-k.roa
File: 0M7aaac5vZAUjIxl4HK1Xo0bZ-k.roa (raw, json)
Hash identifier: C0kVrWkzg2o8r3DrBcuCCTgZl6vlfb6wLW67kMWWMDI=
Subject key identifier: D0:CE:DA:69:A7:39:BD:90:14:8C:8C:65:E0:72:B5:5E:8D:1B:67:E9
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 0189F83AE28376DF8847B7F9F7097B809411
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/0M7aaac5vZAUjIxl4HK1Xo0bZ-k.roa
Signing time: Tue 15 Aug 2023 08:05:55 +0000
ROA not before: Tue 15 Aug 2023 08:05:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6696
IP address blocks: 94.139.39.0/24 maxlen: 24
109.69.217.16/28 maxlen: 28
62.112.29.0/24 maxlen: 24
62.112.31.0/24 maxlen: 24
46.18.36.0/22 maxlen: 24
46.18.34.0/23 maxlen: 24
46.18.33.0/24 maxlen: 24
5.149.136.0/23 maxlen: 23
5.149.138.0/24 maxlen: 24
5.149.140.0/23 maxlen: 23
5.149.142.0/24 maxlen: 24
86.107.124.0/23 maxlen: 23
86.107.120.0/22 maxlen: 22
87.238.225.0/24 maxlen: 24
86.107.126.0/24 maxlen: 24
87.238.228.0/22 maxlen: 24
185.64.64.0/22 maxlen: 24
85.119.216.0/21 maxlen: 24
109.69.221.192/28 maxlen: 28
185.185.229.0/24 maxlen: 24
185.185.228.0/24 maxlen: 24
109.69.216.0/23 maxlen: 24
109.69.219.0/24 maxlen: 24
109.69.220.0/23 maxlen: 23
109.69.220.0/24 maxlen: 24
109.69.222.0/24 maxlen: 24
109.69.221.0/24 maxlen: 24
37.19.8.0/21 maxlen: 24
85.88.34.0/24 maxlen: 24
2a00:1528::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:3a:e2:83:76:df:88:47:b7:f9:f7:09:7b:80:94:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Aug 15 08:05:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0ceda69a739bd90148c8c65e072b55e8d1b67e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a7:57:c5:b6:e0:1d:6d:0e:5f:8f:66:5d:27:
1b:72:fc:dd:78:0f:ca:41:46:71:52:5c:cf:07:00:
1b:3b:5b:3e:d6:a2:19:ef:f9:89:ca:ff:d2:ee:e0:
56:f8:d1:17:dd:cf:fa:dc:59:11:55:78:2e:ca:c9:
91:2e:d2:fa:95:9c:35:93:5a:d6:27:aa:ee:cf:7f:
b3:0a:ac:bd:bb:9b:bd:bd:64:c7:42:7d:a6:0f:d9:
a4:c1:63:b3:37:0f:6e:bb:04:c9:db:ee:15:42:03:
50:d6:53:bd:d5:ca:59:78:d2:16:d0:34:f3:13:d4:
b8:49:aa:dd:ff:5f:64:4e:a8:07:43:5b:11:f9:be:
10:ab:c6:2d:6a:96:f5:16:3a:63:9e:f3:8c:ac:e5:
23:d0:9e:82:38:20:66:14:fe:9f:33:e4:da:b6:c9:
34:38:b1:81:b3:75:15:77:4b:7b:97:89:bf:63:47:
27:08:09:04:87:7b:cf:66:ba:aa:be:82:d3:6c:5a:
27:04:6e:d6:7e:14:ce:40:04:51:b6:d5:61:09:9b:
d5:86:1c:f1:70:13:53:72:a5:9e:28:c2:7a:b1:8b:
9d:a4:d5:de:3a:42:01:d3:b2:c5:81:20:2d:11:21:
e9:b6:e9:29:9e:89:d8:92:6a:d3:2f:30:c6:da:83:
5d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:CE:DA:69:A7:39:BD:90:14:8C:8C:65:E0:72:B5:5E:8D:1B:67:E9
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/0M7aaac5vZAUjIxl4HK1Xo0bZ-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.136.0-5.149.138.255
5.149.140.0-5.149.142.255
37.19.8.0/21
46.18.33.0-46.18.39.255
62.112.29.0/24
62.112.31.0/24
85.88.34.0/24
85.119.216.0/21
86.107.120.0-86.107.126.255
87.238.225.0/24
87.238.228.0/22
94.139.39.0/24
109.69.216.0/23
109.69.219.0-109.69.222.255
185.64.64.0/22
185.185.228.0/23
IPv6:
2a00:1528::/32
Signature Algorithm: sha256WithRSAEncryption
36:3e:60:e7:06:e0:c7:b1:f1:80:9e:15:21:ac:14:bd:49:d6:
d5:ed:4d:a0:19:e8:e3:0d:d3:95:2d:19:c7:aa:52:5f:c3:2a:
18:60:8b:10:a4:08:5e:2e:f1:a8:0d:56:67:92:6c:5c:d6:23:
86:f9:60:6e:7f:bb:4b:bc:89:c2:71:0e:eb:1d:67:22:bf:8c:
b3:67:70:90:a9:f5:c6:d0:18:19:04:b1:49:4f:1d:3a:58:a9:
01:9e:ad:b8:ce:b2:90:ed:e2:5c:ca:4f:f6:27:26:da:93:ba:
d2:66:28:95:d9:eb:c3:12:5d:f9:e1:cb:3a:2f:33:ad:ed:89:
6c:79:93:e3:44:8b:23:b2:8d:94:8f:de:0a:77:26:c2:ba:32:
51:06:7a:dc:79:d4:b7:88:38:de:52:28:e1:d4:03:8f:65:21:
ea:47:b2:7a:5d:b1:96:a7:37:0e:6b:eb:85:a1:fb:34:19:7c:
cc:5d:40:6a:28:1d:c5:55:76:ae:cb:7c:c0:68:83:e8:29:47:
cd:f0:33:42:83:44:82:00:63:83:f0:06:14:89:4d:19:18:52:
be:67:90:a8:10:ae:59:18:36:b4:d2:a3:c2:4c:0e:56:17:ad:
80:50:27:cd:b6:c6:89:45:c3:1b:7e:83:7e:74:41:90:cf:9e:
e7:3d:e8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:29 2024 by rpki-client on console-fra.rpki-client.org