Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/tRB3Aoy_m3S5DMjjhulmXsbwJbU.roa
File: tRB3Aoy_m3S5DMjjhulmXsbwJbU.roa (raw, json)
Hash identifier: +czKX6UlI3ssJVkG5XkVipsHobc1T7D9fVJVDMoFp60=
Subject key identifier: B5:10:77:02:8C:BF:9B:74:B9:0C:C8:E3:86:E9:66:5E:C6:F0:25:B5
Certificate issuer: /CN=7b148db42f90e96447bd7f63edd8a7ccbeeaa842
Certificate serial: 01884DD6A07DC335F2E10AC556096D7D4C85
Authority key identifier: 7B:14:8D:B4:2F:90:E9:64:47:BD:7F:63:ED:D8:A7:CC:BE:EA:A8:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/exSNtC-Q6WRHvX9j7dinzL7qqEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/tRB3Aoy_m3S5DMjjhulmXsbwJbU.roa
Signing time: Wed 24 May 2023 12:58:11 +0000
ROA not before: Wed 24 May 2023 12:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60501
IP address blocks: 185.187.62.0/24 maxlen: 24
193.43.208.0/24 maxlen: 24
194.156.180.0/22 maxlen: 22
185.30.64.0/22 maxlen: 22
185.109.24.0/22 maxlen: 22
185.109.24.0/24 maxlen: 24
185.109.25.0/24 maxlen: 24
185.109.26.0/24 maxlen: 24
185.109.27.0/24 maxlen: 24
185.253.53.0/24 maxlen: 24
2a00:ae20::/32 maxlen: 32
2a06:4dc0::/29 maxlen: 29
2a04:f440::/29 maxlen: 29
2a10:b740::/29 maxlen: 29
2a0d:cc0::/29 maxlen: 29
2a0f:ccc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:d6:a0:7d:c3:35:f2:e1:0a:c5:56:09:6d:7d:4c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b148db42f90e96447bd7f63edd8a7ccbeeaa842
Validity
Not Before: May 24 12:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b51077028cbf9b74b90cc8e386e9665ec6f025b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f8:95:e3:a8:33:9b:76:ce:33:b3:87:a8:e0:
b5:99:f9:21:fc:85:a5:4e:25:34:d4:5e:e6:61:38:
1d:66:dc:e6:a5:63:e9:49:7a:36:95:67:9d:ef:3d:
91:44:b6:52:47:e5:d7:34:65:34:34:5f:95:36:2d:
46:47:c2:f3:5f:86:a3:73:84:5d:15:da:2d:c1:83:
a0:79:ed:40:f7:bd:b7:5a:7b:a5:8e:ff:d0:1d:e9:
c7:47:2f:46:0d:86:5e:e8:bd:f6:7d:45:6b:55:18:
3b:53:cc:81:0f:3b:aa:68:1c:5e:46:cf:0a:f2:93:
4e:e5:08:29:a1:96:91:69:31:90:0d:43:2b:6f:a0:
bf:6a:06:ac:83:69:22:ee:a4:b5:73:0c:ba:ee:55:
50:65:54:e2:c5:fa:b9:15:a8:d6:f2:0a:f4:eb:c8:
84:e4:23:49:65:76:3c:35:37:39:ac:32:66:51:f3:
c8:7e:7c:69:3f:90:9d:1d:98:29:50:37:57:33:4a:
ef:80:b3:63:d6:c2:3a:6e:56:6e:20:c4:02:ed:af:
7d:f6:23:dc:f3:d1:6e:8f:2b:14:ef:1b:73:f8:bc:
42:ed:e0:34:03:86:67:af:c5:b3:65:a0:54:c9:7b:
3e:0e:88:70:06:2e:e9:de:c1:2e:d9:5a:73:f4:38:
29:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:10:77:02:8C:BF:9B:74:B9:0C:C8:E3:86:E9:66:5E:C6:F0:25:B5
X509v3 Authority Key Identifier:
keyid:7B:14:8D:B4:2F:90:E9:64:47:BD:7F:63:ED:D8:A7:CC:BE:EA:A8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/exSNtC-Q6WRHvX9j7dinzL7qqEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/tRB3Aoy_m3S5DMjjhulmXsbwJbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f24885-a4db-4fa1-a72d-86d6c1305357/1/exSNtC-Q6WRHvX9j7dinzL7qqEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.64.0/22
185.109.24.0/22
185.187.62.0/24
185.253.53.0/24
193.43.208.0/24
194.156.180.0/22
IPv6:
2a00:ae20::/32
2a04:f440::/29
2a06:4dc0::/29
2a0d:cc0::/29
2a0f:ccc0::/29
2a10:b740::/29
Signature Algorithm: sha256WithRSAEncryption
80:85:86:c1:74:d1:03:30:90:e0:d2:2c:c8:77:66:67:09:34:
74:73:f9:29:c8:88:56:fb:ad:66:50:49:83:cc:56:98:b0:5e:
8d:e9:0d:3d:7a:48:1b:79:59:f4:4e:18:e4:86:dd:93:87:95:
e2:c6:d4:e9:81:8f:ce:f6:d5:f4:9b:83:89:71:fb:81:c0:76:
08:0a:7f:df:22:57:87:eb:69:ae:e1:4c:0a:0e:2d:74:0a:5e:
51:87:82:16:7e:a5:7f:24:b4:cb:6d:70:9e:3f:bc:cb:13:6f:
88:9c:52:39:b1:61:42:d0:4a:be:62:58:9d:e7:aa:f9:0d:8f:
e6:3b:da:93:4c:86:27:f5:f8:a3:6c:7f:af:f1:3e:09:81:73:
b7:ae:40:72:42:81:af:ce:be:2b:8c:32:6f:66:5b:13:96:1f:
7d:9c:c0:e0:93:c5:62:32:9c:49:6d:ba:ee:d1:f5:e2:1d:0b:
2a:c0:42:92:fe:c6:8e:be:e1:91:93:77:ad:bb:7d:8c:11:1b:
1c:17:8d:2a:75:33:9d:0b:8a:97:2c:6d:bd:17:4f:f4:cb:67:
0f:d5:89:af:ac:1f:0c:b1:fc:40:7c:a8:4c:5f:c0:6e:e4:ba:
49:ee:40:e0:de:ce:52:ae:1b:34:d7:d7:70:83:8e:99:7d:63:
fb:3c:46:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org