Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/o6cWOMf7niSiWlYnDf9gYnkUP-A.roa
File: o6cWOMf7niSiWlYnDf9gYnkUP-A.roa (raw, json)
Hash identifier: TQ5rTedcwz7rUX4dhwwa5nKw+GjNFT99gX5ZNRll3wc=
Subject key identifier: A3:A7:16:38:C7:FB:9E:24:A2:5A:56:27:0D:FF:60:62:79:14:3F:E0
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 018708A8B728E780C768D50BC734F84BDB4F
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/o6cWOMf7niSiWlYnDf9gYnkUP-A.roa
Signing time: Wed 22 Mar 2023 09:31:27 +0000
ROA not before: Wed 22 Mar 2023 09:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 176.223.104.0/22 maxlen: 32
94.139.60.0/23 maxlen: 32
91.92.22.0/23 maxlen: 32
188.241.249.0/24 maxlen: 32
94.176.0.0/23 maxlen: 32
180.149.16.0/20 maxlen: 32
185.66.136.0/22 maxlen: 32
193.142.103.0/24 maxlen: 32
119.12.192.0/21 maxlen: 32
188.240.48.0/23 maxlen: 32
92.114.81.0/24 maxlen: 32
180.235.160.0/20 maxlen: 32
91.92.138.0/24 maxlen: 32
89.40.81.0/24 maxlen: 32
193.200.104.0/23 maxlen: 32
110.238.192.0/19 maxlen: 32
92.114.60.0/22 maxlen: 32
176.223.182.0/23 maxlen: 32
91.92.216.0/23 maxlen: 32
91.92.218.0/24 maxlen: 32
188.241.15.0/24 maxlen: 32
5.62.152.0/21 maxlen: 32
188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
91.92.178.0/23 maxlen: 32
94.139.224.0/20 maxlen: 32
89.38.234.0/24 maxlen: 32
180.149.0.0/20 maxlen: 32
91.192.212.0/22 maxlen: 32
93.115.4.0/23 maxlen: 32
77.81.92.0/22 maxlen: 32
188.211.24.0/23 maxlen: 32
86.106.176.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 29 Mar 2023 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:a8:b7:28:e7:80:c7:68:d5:0b:c7:34:f8:4b:db:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Mar 22 09:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3a71638c7fb9e24a25a56270dff606279143fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:6e:a9:34:5c:68:cc:e8:bf:a0:e6:96:79:
aa:2b:54:a8:08:a2:c4:65:42:21:7b:f2:b0:77:42:
eb:3e:5b:b4:66:c2:d2:35:8f:78:74:a4:32:43:96:
c8:5c:7d:5e:61:92:0e:62:d1:1a:a4:7a:39:1f:94:
0c:b7:80:f9:06:a7:70:54:f8:d6:f2:b3:67:21:7b:
86:ce:24:78:d9:37:c8:db:98:81:68:cb:76:5a:37:
42:c7:50:d2:a8:ff:b2:89:f3:10:48:70:64:26:cb:
b6:21:3f:62:9f:fd:86:f8:39:90:bc:63:82:23:f4:
aa:9a:5b:ef:75:51:8b:7e:4d:b5:4a:3c:c7:37:7f:
a7:2d:69:8a:45:30:4c:fb:b8:63:4c:c1:76:2f:d4:
ea:5f:d2:ac:05:62:b4:55:42:db:6d:b1:4f:99:cc:
7d:5f:f6:1c:61:4b:ed:49:36:01:a2:3a:5d:ec:8e:
80:6f:1b:e0:84:de:b7:a0:07:24:79:34:90:bf:a3:
c8:7c:71:ed:be:a1:65:b3:83:fc:15:8f:da:a3:16:
96:ee:90:d8:46:47:c1:2b:2c:75:1c:1d:ff:a9:d9:
a4:0c:6b:5e:e5:6f:0e:1b:ce:4d:07:68:84:6d:d4:
f7:c5:56:4f:45:8f:7d:36:29:30:b6:b2:e4:7f:b9:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A7:16:38:C7:FB:9E:24:A2:5A:56:27:0D:FF:60:62:79:14:3F:E0
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/o6cWOMf7niSiWlYnDf9gYnkUP-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.152.0/21
77.81.92.0/22
86.106.176.0/23
89.38.234.0/24
89.40.81.0/24
91.92.22.0/23
91.92.138.0/24
91.92.178.0/23
91.92.216.0-91.92.218.255
91.192.212.0/22
92.114.60.0/22
92.114.81.0/24
93.113.52.0/23
93.115.4.0/23
94.139.60.0/23
94.139.224.0/20
94.176.0.0/23
110.238.192.0/19
119.12.192.0/21
176.223.104.0/22
176.223.182.0/23
180.149.0.0/19
180.235.160.0/20
185.66.136.0/22
188.94.84.0/22
188.211.24.0/23
188.212.136.0/21
188.240.48.0/23
188.241.15.0/24
188.241.249.0/24
193.142.103.0/24
193.200.104.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:a1:14:d1:f6:bf:fe:6f:45:ba:fd:4a:ed:23:95:e6:b2:07:
0c:db:95:1a:66:f3:63:8d:f0:a6:e0:d5:ad:6d:f8:78:40:b4:
fc:67:fa:71:15:87:0c:01:6b:e9:e8:61:4b:24:ba:7b:9c:24:
9e:bb:e2:8c:b8:8c:4f:73:96:74:ea:50:6f:d4:58:df:76:c6:
72:a6:59:a4:42:27:02:1f:e4:95:ba:d4:1b:61:2e:92:8d:c4:
32:da:91:d0:bb:20:1d:b9:e1:62:c6:13:9a:5c:ca:a6:3d:c6:
29:3e:35:92:6c:7c:b0:f2:89:41:75:41:b4:9c:59:5e:cf:a5:
63:93:c8:b2:61:82:f7:eb:fc:49:55:d3:92:c6:57:07:27:9a:
fe:8e:4e:85:82:f0:2d:6e:9d:cb:c5:3e:98:42:b0:1e:2c:0d:
5f:a2:8d:5e:98:9c:5a:9e:8d:0f:c6:51:23:a9:df:f8:b4:a5:
35:f2:d6:1d:78:19:9c:fe:97:15:36:ab:b9:f5:11:86:96:2c:
10:19:51:84:2c:72:8a:45:16:37:1e:4d:d6:b7:85:d3:21:e2:
8c:fc:7e:7b:b7:73:2f:5d:aa:d2:19:8a:de:4f:55:ae:93:18:
a1:af:40:eb:97:6b:69:f1:6a:2e:ea:27:99:cb:4b:c9:d0:85:
5d:09:7c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:47 2024 by rpki-client on console-fra.rpki-client.org