Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/BvGuuQcY8lZpFuUKX6f9nK_Ylk0.roa
File: BvGuuQcY8lZpFuUKX6f9nK_Ylk0.roa (raw, json)
Hash identifier: fROcX9u8ZweG3tqm4qcxAvaAClQav3MSS/A6ewIXW7o=
Subject key identifier: 06:F1:AE:B9:07:18:F2:56:69:16:E5:0A:5F:A7:FD:9C:AF:D8:96:4D
Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Certificate serial: 0192AF1D2B370027198929C6B8E0A3033D2F
Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/BvGuuQcY8lZpFuUKX6f9nK_Ylk0.roa
Signing time: Mon 21 Oct 2024 12:46:17 +0000
ROA not before: Mon 21 Oct 2024 12:46:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 77.72.104.0/21 maxlen: 24
84.18.0.0/19 maxlen: 24
92.60.160.0/20 maxlen: 24
176.98.220.0/22 maxlen: 24
185.66.60.0/22 maxlen: 24
185.145.224.0/22 maxlen: 24
185.155.64.0/22 maxlen: 24
185.173.44.0/22 maxlen: 24
185.187.180.0/22 maxlen: 24
185.224.76.0/22 maxlen: 24
193.34.240.0/22 maxlen: 24
195.5.64.0/19 maxlen: 24
195.5.64.0/24 maxlen: 24
195.5.65.0/24 maxlen: 24
195.5.66.0/24 maxlen: 24
195.5.67.0/24 maxlen: 24
2a0d:59c1::/32 maxlen: 32
2a0d:59c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 21 Oct 2024 17:24:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:af:1d:2b:37:00:27:19:89:29:c6:b8:e0:a3:03:3d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Validity
Not Before: Oct 21 12:46:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06f1aeb90718f2566916e50a5fa7fd9cafd8964d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:6c:d6:47:80:dd:82:ab:3d:55:ec:b7:b2:
3e:31:e6:cd:82:ba:87:da:28:b4:23:52:01:ef:13:
98:d8:8e:36:cc:a3:ac:b8:3d:e8:20:ff:5a:c8:70:
55:59:14:10:65:dd:f3:96:8f:fc:e8:94:84:f3:5f:
d0:d5:b5:46:06:2f:cc:86:e9:c8:ab:29:39:de:a7:
4f:62:64:89:65:84:60:52:fc:da:52:64:26:f6:4d:
aa:dd:02:c3:5e:4b:0b:0d:a7:11:b1:a3:4d:6b:8e:
c4:38:cd:aa:d3:e4:0d:ab:19:af:0c:08:e3:97:8d:
ba:f0:0c:57:e8:54:b3:32:df:7e:14:25:7a:ad:ba:
7b:93:f5:c5:6a:14:b8:43:e9:de:3c:27:69:58:e8:
ac:43:81:cd:8f:f2:86:f7:a9:05:3c:a3:a0:d8:ed:
4d:e0:9f:4c:de:0c:13:84:07:4a:b9:f1:4e:1a:c0:
b5:74:1c:f5:37:f1:ef:32:f4:be:ec:72:93:ca:43:
05:0e:7a:fa:f5:05:c2:1f:1f:4b:f4:85:c4:1e:94:
f4:cf:75:60:12:a0:45:be:51:c2:f7:47:87:f7:14:
0c:26:45:8a:2e:41:82:0b:0d:f8:f6:71:8d:02:c7:
34:d3:af:19:96:1e:11:4b:4c:0e:33:9b:25:bb:b2:
ac:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F1:AE:B9:07:18:F2:56:69:16:E5:0A:5F:A7:FD:9C:AF:D8:96:4D
X509v3 Authority Key Identifier:
keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/BvGuuQcY8lZpFuUKX6f9nK_Ylk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.104.0/21
84.18.0.0/19
92.60.160.0/20
176.98.220.0/22
185.66.60.0/22
185.145.224.0/22
185.155.64.0/22
185.173.44.0/22
185.187.180.0/22
185.224.76.0/22
193.34.240.0/22
195.5.64.0/19
IPv6:
2a0d:59c1::/32
2a0d:59c7::/32
Signature Algorithm: sha256WithRSAEncryption
20:b6:5e:72:8a:c6:3d:73:2a:2c:17:c3:0b:64:86:81:8e:a1:
71:97:96:15:de:e3:b2:94:85:d0:27:12:b5:f3:37:0d:1a:17:
2d:9b:da:4e:b8:b2:c6:73:8e:37:9b:78:44:4c:c5:4f:a5:e3:
ce:83:74:89:07:35:95:71:0d:b6:14:50:69:22:35:da:6b:09:
c3:45:cf:ed:89:cb:cc:6a:2f:f7:b7:c6:f8:33:99:d4:43:f4:
1a:09:76:8a:9a:1d:f4:ed:a9:1b:63:1b:21:49:c6:7a:a4:4a:
b1:a9:9a:6d:ad:55:20:8c:91:39:25:0b:9e:df:78:d7:03:0d:
b2:9a:1f:76:72:92:52:95:29:d8:07:dd:d6:c5:e2:9f:49:21:
29:9b:d7:f7:05:b0:9d:90:0c:02:ed:ea:3c:92:6a:75:26:53:
69:db:bb:bc:d8:81:78:48:03:e6:39:2d:59:29:bc:85:31:1c:
67:c0:95:a7:35:e9:2c:79:39:b0:cc:cd:f7:6c:fe:be:3b:5a:
ef:64:62:8a:2c:c7:df:19:f3:5c:c4:ea:a7:10:66:e1:eb:e7:
c6:ad:dc:2a:1c:ed:8d:bb:73:6a:85:c1:d1:a3:e8:7e:64:5a:
c2:13:14:3c:ed:db:da:e9:9f:c7:01:de:64:78:6e:ee:87:e1:
db:a3:be:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org