Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/ccoR0Dfs2rBGCog0gfPN9n4bo2c.roa
File: ccoR0Dfs2rBGCog0gfPN9n4bo2c.roa (raw, json)
Hash identifier: NZ6P7hWs8hjel1fBBrxS0FFqtE/bppongsTkPHYjqGU=
Subject key identifier: 71:CA:11:D0:37:EC:DA:B0:46:0A:88:34:81:F3:CD:F6:7E:1B:A3:67
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 018CC79333ABE8FDF62FED175CA8DFA50F08
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/ccoR0Dfs2rBGCog0gfPN9n4bo2c.roa
Signing time: Tue 02 Jan 2024 00:29:22 +0000
ROA not before: Tue 02 Jan 2024 00:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12912
IP address blocks: 178.183.0.0/18 maxlen: 18
188.146.0.0/19 maxlen: 19
188.146.0.0/18 maxlen: 18
188.146.0.0/16 maxlen: 17
188.147.192.0/19 maxlen: 19
188.146.0.0/15 maxlen: 15
178.183.32.0/24 maxlen: 24
188.147.96.0/19 maxlen: 19
62.152.128.0/19 maxlen: 19
37.30.32.0/19 maxlen: 19
178.180.0.0/14 maxlen: 14
188.146.128.0/19 maxlen: 19
188.146.32.0/19 maxlen: 19
37.30.0.0/19 maxlen: 19
188.146.64.0/19 maxlen: 19
83.220.96.0/19 maxlen: 19
37.30.0.0/15 maxlen: 17
83.220.101.0/24 maxlen: 24
188.146.192.0/19 maxlen: 19
46.204.0.0/19 maxlen: 19
46.204.0.0/15 maxlen: 15
46.205.192.0/20 maxlen: 20
46.205.208.0/20 maxlen: 20
46.204.32.0/19 maxlen: 19
46.205.128.0/19 maxlen: 19
37.30.96.0/19 maxlen: 19
178.182.0.0/18 maxlen: 18
188.147.64.0/19 maxlen: 19
188.147.64.0/18 maxlen: 18
213.158.192.0/19 maxlen: 19
46.204.64.0/19 maxlen: 19
188.147.0.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
46.204.96.0/19 maxlen: 19
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 11 Jul 2024 12:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:33:ab:e8:fd:f6:2f:ed:17:5c:a8:df:a5:0f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jan 2 00:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71ca11d037ecdab0460a883481f3cdf67e1ba367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cb:23:26:80:aa:26:49:9f:da:38:1f:96:1f:
97:9c:b7:c0:a0:ca:18:1f:85:12:c7:a2:73:28:48:
08:ed:24:38:a6:2c:98:ce:fb:90:3d:a4:28:9e:8e:
d9:bd:f2:4f:3c:6c:43:0b:a3:1c:76:6d:91:22:fb:
7c:40:81:37:6a:29:e6:e5:fb:29:22:26:44:74:ec:
28:d8:28:f6:29:9d:9c:78:3d:ba:89:9d:62:c6:b9:
7b:f6:8e:42:4f:51:25:94:56:d9:79:7e:6f:1a:5a:
bb:e0:d6:45:68:c6:10:96:d0:b1:76:be:d4:da:42:
1c:71:a7:93:26:5e:7e:11:47:e3:59:39:83:a0:da:
fb:3d:4a:23:08:b8:b2:94:85:7b:55:67:f8:e2:90:
b2:d0:ee:fa:bb:9f:55:c2:8d:dd:06:e2:9a:44:37:
9d:1e:d2:09:1e:eb:a6:cc:27:ed:e6:a0:9a:c6:34:
8d:7e:f5:53:6d:1e:20:06:b6:40:42:9a:e6:f6:03:
20:af:95:45:a6:e2:ec:71:0f:53:0e:b4:15:9a:8e:
1b:15:a2:a6:4b:bf:9d:b7:d7:05:b4:a8:a5:70:12:
1d:ef:16:c3:dd:43:8e:b8:a3:b4:3a:cc:3a:87:b8:
78:2f:83:6f:17:7a:ef:e0:6a:12:5c:ab:42:fb:a2:
ee:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CA:11:D0:37:EC:DA:B0:46:0A:88:34:81:F3:CD:F6:7E:1B:A3:67
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/ccoR0Dfs2rBGCog0gfPN9n4bo2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.30.0.0/15
46.204.0.0/15
62.152.128.0/19
83.220.96.0/19
178.180.0.0/14
188.146.0.0/15
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
48:c9:3a:61:38:e3:25:aa:6b:be:6d:7e:ca:07:a0:9b:79:3e:
20:cb:1d:a1:d0:e6:30:51:e6:20:af:5f:12:29:ee:6d:74:46:
1d:35:0a:a7:87:2d:14:71:ab:e5:4e:12:23:36:8f:01:cf:49:
b9:4c:fa:c0:6b:cf:43:ba:5a:41:31:e3:f3:f6:5b:da:40:43:
d0:9e:0d:ac:64:fc:58:c8:67:3d:bc:40:18:e8:16:ed:be:ff:
14:f0:d2:8f:ba:4a:62:38:75:5f:c5:1e:c2:71:2a:9d:dc:ab:
aa:67:5b:2f:4b:f0:80:bc:d5:5c:1b:38:a4:08:0d:89:f7:3f:
bc:be:dd:16:dc:f6:04:8e:57:a5:fe:f9:08:be:c2:21:68:85:
a6:7d:ec:b9:e8:7b:d1:55:af:43:9b:9f:28:21:4f:b8:af:ef:
f0:03:f4:bb:1b:ea:10:29:80:32:12:63:71:80:2d:98:bb:78:
0f:58:0f:88:21:b5:6c:d8:08:4c:76:51:77:07:57:03:17:ec:
a9:aa:7f:ab:00:99:ad:51:a9:8a:60:41:d9:a7:0e:c3:a3:4b:
1b:ae:04:52:64:5a:50:44:9d:74:23:b3:c5:17:7d:da:61:f0:
8e:e4:8b:c7:13:ae:d4:57:a6:9a:08:3c:bf:81:90:0f:69:11:
73:65:1d:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:05 2025 by rpki-client