Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Cmt5DgjU_aLMBKdvMNMX-WSKMjo.roa
File: Cmt5DgjU_aLMBKdvMNMX-WSKMjo.roa (raw, json)
Hash identifier: 3HdlAB3QJGZSlTrWyEHlIVZ0iDXtqTzuM9K685xF6fc=
Subject key identifier: 0A:6B:79:0E:08:D4:FD:A2:CC:04:A7:6F:30:D3:17:F9:64:8A:32:3A
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 0185E43B0CEA17A97D75621103CD2615CB2C
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Cmt5DgjU_aLMBKdvMNMX-WSKMjo.roa
Signing time: Tue 24 Jan 2023 14:42:33 +0000
ROA not before: Tue 24 Jan 2023 14:42:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 193.251.220.0/22 maxlen: 24
193.251.240.0/20 maxlen: 24
90.84.48.0/20 maxlen: 24
81.52.128.0/21 maxlen: 24
90.84.128.0/20 maxlen: 24
81.52.136.0/22 maxlen: 24
81.52.140.0/23 maxlen: 24
90.84.151.0/24 maxlen: 24
193.251.148.0/23 maxlen: 23
193.251.160.0/20 maxlen: 24
193.251.169.0/24 maxlen: 24
81.52.236.0/22 maxlen: 24
90.84.255.0/24 maxlen: 24
81.52.160.0/24 maxlen: 24
81.52.168.0/23 maxlen: 24
81.52.166.0/23 maxlen: 24
81.52.176.0/20 maxlen: 24
80.12.71.0/24 maxlen: 32
80.12.76.0/24 maxlen: 24
80.12.79.0/24 maxlen: 24
81.52.190.0/24 maxlen: 24
193.251.128.0/19 maxlen: 24
80.12.98.0/24 maxlen: 24
80.12.96.0/22 maxlen: 24
81.52.202.0/24 maxlen: 24
80.12.96.0/23 maxlen: 24
2a01:c000::/19 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Nov 2023 10:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:3b:0c:ea:17:a9:7d:75:62:11:03:cd:26:15:cb:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 24 14:42:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a6b790e08d4fda2cc04a76f30d317f9648a323a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d1:92:fd:39:ad:db:a5:89:2b:1b:4e:de:72:
0d:39:13:14:07:4f:4a:75:e5:80:67:04:62:c1:3e:
d7:17:03:79:59:9f:d6:29:08:d8:c2:60:2b:76:2a:
f9:34:c8:7e:b1:92:84:50:99:bd:4a:de:3f:a7:73:
c7:a4:1f:1d:57:65:06:83:90:f2:d5:c6:97:8f:05:
77:16:d8:fa:18:f2:34:a6:ee:d4:80:f0:99:49:ee:
17:1f:fd:c5:a0:dc:fb:4a:1d:18:9b:ea:1c:65:01:
48:45:71:46:1f:bd:75:7a:5d:e6:36:91:a6:08:bd:
b5:0e:72:f0:75:70:ac:bc:d7:2c:22:5a:59:e4:c1:
fc:43:9c:21:2c:55:87:53:5b:1e:62:84:26:65:79:
f8:ec:97:85:06:5f:01:7c:e5:b1:8f:2f:c3:52:d1:
cc:9d:49:da:49:d0:97:b6:85:8e:e5:dc:90:40:50:
e4:b7:2b:f8:c8:ec:d9:11:10:6f:5e:66:a1:17:1d:
38:9c:58:49:9d:02:18:cf:a0:df:4d:4e:67:69:bd:
70:af:77:97:f8:16:77:5d:9a:d4:6c:29:e6:85:83:
7a:c6:03:dd:8f:45:ab:42:cd:e1:9f:d4:d0:cb:64:
6a:36:30:28:22:31:95:6e:ac:33:bf:38:27:0a:d7:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6B:79:0E:08:D4:FD:A2:CC:04:A7:6F:30:D3:17:F9:64:8A:32:3A
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Cmt5DgjU_aLMBKdvMNMX-WSKMjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.12.71.0/24
80.12.76.0/24
80.12.79.0/24
80.12.96.0/22
81.52.128.0-81.52.141.255
81.52.160.0/24
81.52.166.0-81.52.169.255
81.52.176.0/20
81.52.202.0/24
81.52.236.0/22
90.84.48.0/20
90.84.128.0/20
90.84.151.0/24
90.84.255.0/24
193.251.128.0-193.251.175.255
193.251.220.0/22
193.251.240.0/20
IPv6:
2a01:c000::/19
Signature Algorithm: sha256WithRSAEncryption
a0:2b:b6:f2:28:c5:1d:1f:f3:a0:ed:d9:7e:23:16:c8:9f:3a:
f1:09:b3:e4:fc:34:45:6a:3e:e4:29:a4:c7:a1:69:39:ca:e7:
3e:02:2c:0b:25:a1:54:8a:08:c9:15:a1:f0:e0:7c:1c:b5:64:
16:50:a4:95:c1:ba:51:68:7f:8f:5a:1e:72:e8:b4:0d:01:20:
1c:4f:b4:3f:ef:cc:99:c0:ef:61:01:ca:b9:a1:a2:00:fc:07:
03:50:d8:cb:1e:a1:1c:93:7d:05:61:77:d2:a4:75:b8:dd:58:
00:73:32:47:f0:83:6b:7b:5e:9d:55:df:ac:73:3e:a0:c7:b9:
40:7e:bb:c3:fe:fc:ea:57:a4:d6:59:a9:24:2d:a1:fa:bf:37:
0c:b3:6b:63:d1:77:8a:e8:74:b6:18:66:75:dd:a5:75:d2:22:
87:81:39:0a:8c:a3:e3:7e:68:77:1c:b3:d8:62:2a:db:81:d0:
f4:ac:a0:4e:27:ff:ef:ac:0d:60:3d:8e:74:79:ed:f9:b8:56:
6c:3f:d8:0e:ea:7f:6d:6c:cd:4b:62:f4:07:8f:f5:87:0f:b1:
5a:b5:74:91:08:41:f5:82:33:36:a1:61:e0:e0:5f:55:2b:d1:
16:99:07:f8:1c:28:84:12:9a:42:63:c2:cb:c1:b2:65:84:2d:
48:a8:97:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org