Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/lc1Snw7tepYIzFUB6kKSorB9-o4.roa
File: lc1Snw7tepYIzFUB6kKSorB9-o4.roa (raw, json)
Hash identifier: 5RX1U/0ya1YXJ+wVpxM1DQPGFkxr1/jBxoGEvuQQQYU=
Subject key identifier: 95:CD:52:9F:0E:ED:7A:96:08:CC:55:01:EA:42:92:A2:B0:7D:FA:8E
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 01860C25AA9269016CBA1179CC156B0FF94C
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/lc1Snw7tepYIzFUB6kKSorB9-o4.roa
Signing time: Wed 01 Feb 2023 08:44:00 +0000
ROA not before: Wed 01 Feb 2023 08:44:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31376
IP address blocks: 217.119.16.0/20 maxlen: 28
213.108.32.0/21 maxlen: 21
91.215.252.0/23 maxlen: 23
94.125.8.0/21 maxlen: 21
91.190.80.0/21 maxlen: 21
93.92.192.0/21 maxlen: 28
109.71.176.0/21 maxlen: 28
185.42.60.0/22 maxlen: 28
91.219.180.0/22 maxlen: 22
80.79.240.0/21 maxlen: 21
80.79.248.0/22 maxlen: 22
80.79.252.0/23 maxlen: 23
91.215.254.0/24 maxlen: 24
91.215.255.0/24 maxlen: 24
80.249.176.0/20 maxlen: 28
185.155.112.0/22 maxlen: 22
80.73.192.0/20 maxlen: 20
188.93.240.0/21 maxlen: 28
93.190.224.0/21 maxlen: 28
193.110.237.0/24 maxlen: 24
193.110.236.0/22 maxlen: 22
2a02:16e8::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:25:aa:92:69:01:6c:ba:11:79:cc:15:6b:0f:f9:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Feb 1 08:44:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95cd529f0eed7a9608cc5501ea4292a2b07dfa8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6f:63:c5:93:d1:bb:4a:ce:50:6d:45:75:26:
9c:6c:b6:24:6f:ec:ef:fe:60:df:56:07:c3:b9:53:
72:a1:2b:80:33:7a:62:e1:61:64:de:a3:ca:0f:f6:
fc:5f:5f:05:21:63:81:8f:8c:23:da:f3:d1:06:95:
77:99:5a:d5:c1:c0:7c:a4:1d:8a:36:b8:99:10:e4:
19:73:c7:62:07:8b:69:49:54:2a:06:66:04:d9:13:
72:da:5d:cb:98:1e:3d:1d:87:39:4b:68:3d:6c:2e:
36:2e:da:08:fc:26:aa:13:6a:d5:c2:7a:ba:80:f6:
01:a9:4c:90:a3:a6:47:8e:4f:94:a2:57:6e:d6:49:
7f:d6:55:32:35:73:0e:84:f1:46:55:a2:f8:c0:2b:
f7:30:96:bc:78:57:37:81:61:c4:71:d8:87:3e:c8:
1d:ed:77:32:a7:96:43:47:13:8e:65:c9:98:cd:fd:
fb:f6:44:ac:03:c4:83:c9:b4:96:08:3c:91:87:13:
82:33:96:30:98:f7:c4:0c:b8:70:35:0f:ee:c7:68:
e8:a6:01:86:c7:ad:97:08:0a:d2:6b:3f:b1:5e:35:
e9:4f:65:55:49:83:40:6e:72:c1:5e:e3:f4:f7:09:
a2:29:72:8a:ff:72:3a:3e:ce:1f:0f:68:af:aa:46:
a6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CD:52:9F:0E:ED:7A:96:08:CC:55:01:EA:42:92:A2:B0:7D:FA:8E
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/lc1Snw7tepYIzFUB6kKSorB9-o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.192.0/20
80.79.240.0-80.79.253.255
80.249.176.0/20
91.190.80.0/21
91.215.252.0/22
91.219.180.0/22
93.92.192.0/21
93.190.224.0/21
94.125.8.0/21
109.71.176.0/21
185.42.60.0/22
185.155.112.0/22
188.93.240.0/21
193.110.236.0/22
213.108.32.0/21
217.119.16.0/20
IPv6:
2a02:16e8::/32
Signature Algorithm: sha256WithRSAEncryption
a9:bd:3e:e2:cd:a3:ca:a0:f8:fc:bf:00:d2:49:49:36:c5:6b:
ef:5e:3b:9f:d0:d4:b8:26:0c:78:07:e9:f7:f4:3b:18:e9:bd:
56:63:e1:ac:31:94:29:97:8e:01:b9:f3:02:92:e9:b5:1d:4c:
4a:c1:ce:53:1e:a2:6e:b6:09:6c:b8:a1:f9:a7:29:f4:94:e5:
15:10:da:dc:17:77:bd:de:a8:d4:30:62:d9:6c:5b:96:03:d0:
03:60:11:a0:26:db:af:e2:48:ac:ce:20:34:be:ac:4f:88:ec:
ec:4e:d8:ba:05:00:7a:c2:42:f2:b1:5b:a1:32:92:b2:c8:83:
f5:87:36:13:e3:fa:dc:ae:b5:2f:22:46:2e:8c:3a:b4:52:d2:
48:4f:47:de:f1:76:0e:1d:70:bc:60:28:e8:e8:10:0f:6e:47:
f5:91:ec:ec:26:99:cb:68:15:db:16:09:b6:5f:61:2c:37:fd:
24:f1:0c:c7:e8:2a:51:66:d4:c0:0f:65:7f:5f:b7:d4:9f:43:
16:7c:39:42:db:f0:79:69:2e:b1:0a:db:cf:db:00:2b:88:b0:
3f:98:a6:7b:7e:e9:37:8f:8d:5e:f6:be:ca:3d:ce:9e:8f:8e:
ce:bd:f1:c0:e4:b2:95:14:a2:47:d6:96:8b:a0:84:eb:12:a0:
bc:18:07:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:41 2024 by rpki-client on console-ams.rpki-client.org