Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/YiOwOF2SF8c9hGRzkA7b54Jja2s.roa
File: YiOwOF2SF8c9hGRzkA7b54Jja2s.roa (raw, json)
Hash identifier: Xi0eHTheClgw+uscRkIXcMQvGcLYv5ej70x+MCZD3KU=
Subject key identifier: 62:23:B0:38:5D:92:17:C7:3D:84:64:73:90:0E:DB:E7:82:63:6B:6B
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 0185715562BA6A25EDB8E74C32DCB9829245
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/YiOwOF2SF8c9hGRzkA7b54Jja2s.roa
Signing time: Mon 02 Jan 2023 07:14:59 +0000
ROA not before: Mon 02 Jan 2023 07:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 195.226.205.0/24 maxlen: 24
213.249.76.0/22 maxlen: 24
213.249.74.0/23 maxlen: 24
213.249.73.0/24 maxlen: 24
213.249.84.0/22 maxlen: 24
213.249.82.0/23 maxlen: 24
213.249.81.0/24 maxlen: 24
213.249.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:62:ba:6a:25:ed:b8:e7:4c:32:dc:b9:82:92:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Jan 2 07:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6223b0385d9217c73d846473900edbe782636b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:66:bf:68:12:d7:5f:cd:6b:49:05:98:e1:04:
46:48:d5:59:05:de:79:08:f9:6a:3b:4b:ab:14:9b:
a0:18:0b:b4:d4:10:fd:36:98:fe:70:6d:43:4e:c2:
cf:77:bd:8c:e1:97:c0:ee:64:5a:e9:b1:0e:2d:4f:
cb:44:69:40:c1:88:3c:16:26:51:8c:6c:4f:ae:73:
71:f2:c2:94:16:7e:a2:11:05:d2:63:fd:6a:dc:c0:
a6:4c:ee:52:ce:39:9c:3e:d7:5b:fa:0e:08:c1:ff:
91:e0:f9:59:29:14:ba:b6:79:75:05:28:f4:a2:42:
a3:07:b0:e6:1d:b1:50:34:ac:17:1e:0c:b8:ae:57:
6a:86:c7:2c:6a:56:cb:3f:c5:5c:a1:1c:ac:0b:d6:
c8:a7:37:73:1c:46:c7:59:f4:6d:ef:c1:f7:2a:dc:
23:90:c3:e5:20:c1:0d:f7:bc:ed:ad:03:86:6a:a0:
bf:1b:e3:6c:ad:d6:5b:f4:72:2c:b6:d2:f6:96:fd:
75:9c:40:9b:f6:04:fc:ba:ae:a2:ef:06:f4:7e:c3:
3b:25:43:79:f5:85:af:1c:f7:2f:02:a4:8d:71:da:
c5:e0:61:f5:4b:b9:6a:99:57:b7:97:98:fd:e7:37:
df:c5:53:3c:4a:44:89:ec:7c:5c:45:88:19:9d:ca:
75:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:23:B0:38:5D:92:17:C7:3D:84:64:73:90:0E:DB:E7:82:63:6B:6B
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/YiOwOF2SF8c9hGRzkA7b54Jja2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.205.0/24
213.249.73.0-213.249.79.255
213.249.81.0-213.249.91.255
Signature Algorithm: sha256WithRSAEncryption
99:e8:a3:eb:b1:7e:09:b1:58:f3:7e:e8:ae:bd:be:27:46:c0:
e6:ab:15:16:a1:ec:36:95:e0:1c:af:c4:36:22:93:3b:c7:03:
35:2e:ec:50:d9:0f:27:d3:55:5a:ca:35:54:e5:36:c5:6f:60:
69:8e:5b:89:8b:20:e7:73:40:b3:2d:08:1d:98:fe:99:8b:e3:
97:8c:05:3d:e8:29:25:45:49:85:f0:64:47:30:f1:8a:60:4c:
10:b2:42:8a:18:71:15:39:ad:1e:8a:71:43:45:e7:49:56:8c:
6e:4d:b0:2f:77:01:6a:55:37:2c:ce:f8:47:31:0d:9d:36:ec:
74:e5:34:15:ec:35:f3:f1:e4:cd:2e:12:2e:f0:a1:b8:7d:d5:
b5:4c:80:d6:1b:3e:4b:f7:e0:48:29:a5:8c:ff:eb:91:de:e8:
b7:e6:f0:b1:aa:b3:c3:e0:17:2d:35:eb:e5:ff:df:b6:92:2b:
f1:21:4f:e6:26:91:49:09:2c:3c:eb:87:d2:c8:1f:e4:14:7b:
86:b5:4e:10:32:ae:01:df:4a:c6:da:8b:61:ae:d3:b2:87:51:
8e:29:c6:0a:3e:29:f3:c4:13:12:1b:d9:f0:52:70:18:c7:3b:
38:b8:43:29:3b:e4:f4:f2:7f:a2:55:c2:b4:38:58:5c:d9:10:
5e:71:a4:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org