Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/2oeglfLCqQonPekl3sReNYvFd78.roa
File: 2oeglfLCqQonPekl3sReNYvFd78.roa (raw, json)
Hash identifier: 5Ve7RwLNY9Hebzz7oeD12QW83EblnzrTLRUtQEuUVwU=
Subject key identifier: DA:87:A0:95:F2:C2:A9:0A:27:3D:E9:25:DE:C4:5E:35:8B:C5:77:BF
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018B1E25A2D291CF7E1B71BAF9BB34EAFC4B
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/2oeglfLCqQonPekl3sReNYvFd78.roa
Signing time: Wed 11 Oct 2023 09:51:04 +0000
ROA not before: Wed 11 Oct 2023 09:51:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31376
IP address blocks: 217.119.16.0/20 maxlen: 28
213.108.32.0/21 maxlen: 21
91.215.252.0/23 maxlen: 23
94.125.8.0/21 maxlen: 21
91.190.80.0/21 maxlen: 21
93.92.192.0/21 maxlen: 28
109.71.176.0/21 maxlen: 28
185.42.60.0/22 maxlen: 28
91.219.180.0/22 maxlen: 22
80.79.240.0/21 maxlen: 21
80.79.248.0/22 maxlen: 22
80.79.252.0/23 maxlen: 23
91.215.254.0/24 maxlen: 24
80.249.176.0/20 maxlen: 28
185.155.112.0/22 maxlen: 22
80.73.192.0/20 maxlen: 20
188.93.240.0/21 maxlen: 28
93.190.224.0/21 maxlen: 28
193.110.237.0/24 maxlen: 24
193.110.236.0/22 maxlen: 22
2a02:16e8::/32 maxlen: 64
Validation: Failed, certificate revoked on Thu 09 Nov 2023 12:44:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:25:a2:d2:91:cf:7e:1b:71:ba:f9:bb:34:ea:fc:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Oct 11 09:51:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da87a095f2c2a90a273de925dec45e358bc577bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:b1:25:dc:56:24:ee:55:3c:bf:db:ed:df:
6f:d6:9b:c1:72:0f:9f:25:81:ed:3b:32:db:ca:ae:
41:2a:4a:d6:e7:97:9a:d6:3c:85:cc:24:5f:25:31:
51:9d:92:24:e9:b9:04:25:1f:5c:be:05:11:dd:d0:
8e:6c:b2:0e:b9:ab:f1:ad:0f:d0:2d:6e:44:a9:9c:
d3:de:80:2c:f2:94:56:43:78:a7:7f:b8:38:b1:66:
29:f7:62:da:79:0a:c5:4d:ab:cd:64:b4:e2:b7:b0:
5e:cd:84:16:ae:6b:5b:d3:32:84:ae:14:29:22:73:
f9:4c:f7:9b:c3:b9:a5:b2:31:8f:35:39:bc:34:e7:
56:e7:88:19:0f:06:64:bd:40:23:11:06:cc:5a:dc:
8a:f7:c3:71:38:24:f6:c2:c7:ae:56:8c:f6:75:0a:
1c:70:5e:47:72:b4:45:d4:52:fb:c0:17:bc:6f:88:
dc:38:7a:81:d9:00:56:08:c1:e5:37:8a:65:e9:47:
24:d5:7f:4a:de:ed:0d:db:45:e1:f5:44:87:c1:c4:
55:9f:ea:10:31:6f:21:c4:23:31:06:0c:cb:cb:0e:
7c:41:45:f7:1e:5f:17:7a:db:75:15:c1:be:76:7a:
7d:98:f6:74:ea:2b:8b:f2:ab:98:96:ae:2b:81:a3:
e2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:87:A0:95:F2:C2:A9:0A:27:3D:E9:25:DE:C4:5E:35:8B:C5:77:BF
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/2oeglfLCqQonPekl3sReNYvFd78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.192.0/20
80.79.240.0-80.79.253.255
80.249.176.0/20
91.190.80.0/21
91.215.252.0-91.215.254.255
91.219.180.0/22
93.92.192.0/21
93.190.224.0/21
94.125.8.0/21
109.71.176.0/21
185.42.60.0/22
185.155.112.0/22
188.93.240.0/21
193.110.236.0/22
213.108.32.0/21
217.119.16.0/20
IPv6:
2a02:16e8::/32
Signature Algorithm: sha256WithRSAEncryption
97:38:4a:e1:b9:23:f2:21:49:a2:5b:33:c4:29:94:c6:09:4c:
27:8d:7a:92:c4:44:63:f6:2c:be:5d:96:be:9a:2a:e6:21:de:
34:89:01:40:8e:a4:95:a8:32:34:2e:cd:df:78:59:e5:c4:cb:
ad:8b:18:9e:6f:1e:50:7f:c3:11:b6:e0:8e:8b:90:93:be:39:
31:8d:98:94:a2:f4:0a:b1:1f:66:65:e3:44:33:3b:25:3b:1a:
7b:27:29:31:d5:43:62:40:98:2e:4e:91:19:35:70:ff:93:f7:
27:41:2b:5e:34:50:3a:91:c1:41:02:a4:18:53:ff:b1:1b:40:
3c:2b:0f:b4:22:1f:0b:28:b4:38:ad:a7:e6:fa:1a:3a:01:41:
04:35:d6:6c:57:6d:bd:f8:6e:53:dd:ac:0d:44:5c:ca:7f:d9:
fa:1b:89:0a:b0:1d:a4:8b:ec:8e:69:f7:9f:4a:2e:ca:33:78:
6e:6f:98:c4:95:57:01:e9:f4:ad:b1:30:4b:07:89:1d:58:57:
5d:58:bc:b0:bc:e7:40:e8:9c:7a:46:04:18:49:03:92:04:e2:
ff:db:47:37:99:31:97:9b:ae:b3:c8:29:2d:9b:86:d2:44:ff:
80:0c:b0:b7:d4:6f:a2:85:f3:87:74:18:32:7d:08:5f:c2:f7:
bf:9d:c8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:06 2024 by rpki-client on console-fra.rpki-client.org