Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/YqfJqTMwc3pK7PgfYRVAkDo_Vio.roa
File: YqfJqTMwc3pK7PgfYRVAkDo_Vio.roa (raw, json)
Hash identifier: szk3/YnRU/YJK+6zFGyIP3kI+Gvqt6UnhHKdFNG6rhQ=
Subject key identifier: 62:A7:C9:A9:33:30:73:7A:4A:EC:F8:1F:61:15:40:90:3A:3F:56:2A
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 018A743AEA94DAD23BCB368BD7FD8912FDC7
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/YqfJqTMwc3pK7PgfYRVAkDo_Vio.roa
Signing time: Fri 08 Sep 2023 09:58:52 +0000
ROA not before: Fri 08 Sep 2023 09:58:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.111.120.0/22 maxlen: 24
185.2.24.0/22 maxlen: 24
80.247.160.0/20 maxlen: 24
193.239.88.0/22 maxlen: 24
185.139.148.0/22 maxlen: 24
85.255.208.0/20 maxlen: 24
81.26.208.0/20 maxlen: 24
87.237.96.0/23 maxlen: 24
94.126.64.0/21 maxlen: 24
87.237.100.0/23 maxlen: 24
62.148.160.0/19 maxlen: 24
81.93.48.0/20 maxlen: 24
2a02:728::/32 maxlen: 48
2a06:5dc0::/29 maxlen: 48
2001:16e8::/32 maxlen: 48
2a00:f80::/32 maxlen: 48
2a02:4640::/32 maxlen: 48
2a02:4640:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Sep 2023 07:43:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:3a:ea:94:da:d2:3b:cb:36:8b:d7:fd:89:12:fd:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Sep 8 09:58:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62a7c9a93330737a4aecf81f611540903a3f562a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:29:21:99:3a:27:b2:a6:2c:e1:7b:bc:2c:1b:
c0:a3:39:3e:91:c0:00:97:e8:b8:57:d0:ef:78:0e:
3e:ac:0d:36:26:d7:17:5b:fd:77:7f:68:32:25:a9:
fb:9b:ed:ad:4d:3f:d6:19:27:37:f5:0b:ac:fe:37:
ff:3a:3c:85:06:2d:a3:65:3a:35:e4:41:15:63:c9:
86:61:da:83:ed:fd:0d:e4:72:a3:83:9f:1e:5e:3e:
cf:ce:b6:d2:ff:46:2b:9a:31:93:7d:12:f7:44:2a:
17:d1:7d:c2:e8:01:c8:0a:9d:d6:c9:1c:bd:ee:2d:
ab:b3:52:6f:f0:83:df:02:ad:96:ed:d2:c8:2b:40:
0f:07:6a:7d:a6:6a:00:2c:8b:9b:99:6b:4f:ce:5a:
05:71:c0:f5:da:fe:40:b2:6e:6b:60:34:3d:48:c5:
f5:ed:23:ab:4b:2c:4d:c4:72:95:95:46:11:4c:ab:
f5:5d:74:f2:a6:5d:0d:02:d8:40:c2:d2:86:1e:8e:
cc:bb:ac:a1:f6:47:92:ec:97:8f:07:63:75:a1:99:
e3:bb:7b:cb:51:aa:08:5a:79:4e:ac:0a:f3:2b:6b:
a5:25:05:8b:c3:4a:44:3b:ba:d3:36:ea:f6:9d:b8:
7a:8e:01:03:ce:d5:c0:3e:70:38:3f:a9:1e:8b:02:
f6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A7:C9:A9:33:30:73:7A:4A:EC:F8:1F:61:15:40:90:3A:3F:56:2A
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/YqfJqTMwc3pK7PgfYRVAkDo_Vio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/23
87.237.100.0/23
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
a7:ac:ef:6b:e8:40:ff:5a:ff:be:a4:8f:75:b1:0d:c3:31:24:
78:57:19:17:5a:2b:f8:64:31:9b:06:a1:46:15:3d:4f:63:f0:
bf:c2:b0:34:66:39:0b:8d:da:45:87:77:cd:bb:54:a6:9c:4e:
cf:11:ca:e4:13:63:2c:76:3f:47:4f:8b:d5:fd:94:14:4b:fe:
2f:f8:a2:83:0a:73:d7:b2:4e:d4:56:89:9b:7a:23:33:e5:ff:
76:46:ec:09:3d:fa:b0:f3:3b:df:6c:6c:1d:33:98:2a:31:15:
85:31:0d:b9:85:fa:b6:f8:50:95:54:ef:61:38:bc:f5:ff:c2:
be:72:e0:a5:d5:95:d9:ee:ee:9d:32:23:09:15:88:31:a8:61:
15:b4:d2:f4:67:d9:b9:ff:69:2f:03:78:07:14:0d:21:25:f5:
58:85:d8:a1:6d:cb:90:df:8a:f0:a4:93:6b:b8:67:d2:71:e0:
f1:56:f9:99:22:f4:30:40:de:e2:6e:1c:92:aa:ce:c8:9c:45:
c7:bb:88:cc:3c:7f:76:41:6e:c5:38:db:16:b4:1d:6b:cc:4b:
ca:03:0d:8f:4d:ef:45:24:17:90:a9:9a:1b:92:fd:c0:4f:fb:
d7:12:a5:81:2d:84:23:e7:47:e4:ba:65:9f:a6:0b:2a:ea:23:
21:9b:84:0e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:47 2024 by rpki-client on console-ams.rpki-client.org