Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6GmE27G5bHq-SZQFQbdvXA_cxcY.roa
File: 6GmE27G5bHq-SZQFQbdvXA_cxcY.roa (raw, json)
Hash identifier: zFqbMSdNwCRHw3CoR6VLTqZPKN+kDg2BXH+pSR3Dw0k=
Subject key identifier: E8:69:84:DB:B1:B9:6C:7A:BE:49:94:05:41:B7:6F:5C:0F:DC:C5:C6
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0186966A2B6817EAB5794374EB0BB25A0108
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6GmE27G5bHq-SZQFQbdvXA_cxcY.roa
Signing time: Tue 28 Feb 2023 05:06:25 +0000
ROA not before: Tue 28 Feb 2023 05:06:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197540
IP address blocks: 185.232.68.0/22 maxlen: 22
188.172.228.0/23 maxlen: 24
194.36.144.0/22 maxlen: 22
94.16.104.0/22 maxlen: 24
94.16.108.0/22 maxlen: 24
94.16.112.0/21 maxlen: 24
193.26.156.0/22 maxlen: 22
94.16.30.0/23 maxlen: 23
2a00:11c0:60::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 05 Oct 2023 11:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:96:6a:2b:68:17:ea:b5:79:43:74:eb:0b:b2:5a:01:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Feb 28 05:06:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e86984dbb1b96c7abe49940541b76f5c0fdcc5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:00:51:dc:02:de:8e:d0:cb:11:a9:db:b9:2d:
93:8e:38:cb:d8:74:f4:5b:93:6d:64:14:fe:98:38:
45:ec:d8:f4:e2:ae:2e:80:c8:7b:5a:77:b5:71:6e:
2d:78:92:d9:65:c5:fd:14:1b:e0:3a:df:b8:0c:49:
3a:ef:dd:4d:86:e2:7a:1a:44:38:12:72:9a:42:40:
8f:c6:0d:d6:7a:17:d1:33:b7:96:1f:2f:48:3d:59:
25:12:65:fc:cd:d9:96:40:05:72:83:13:1b:53:17:
18:6e:b6:d5:a2:d3:2b:06:44:aa:5b:79:01:75:57:
10:16:70:4c:09:2e:00:87:b7:d8:ea:a8:d2:fc:16:
68:f5:d9:4e:19:4f:e7:75:ba:81:f9:5a:1f:f1:7a:
a8:92:41:6c:d2:4a:f8:66:c7:62:2b:05:35:f9:22:
37:86:2a:98:2e:7b:24:4a:14:ef:82:65:37:27:01:
5b:87:99:68:12:25:c7:fe:a8:75:68:85:45:8e:8a:
b1:14:4f:9c:93:d3:00:e9:71:00:56:36:db:c0:08:
53:82:11:93:e7:55:e6:a4:f8:e8:26:97:15:fd:7f:
26:ce:a2:e6:42:b4:e6:2c:e9:65:36:a7:3f:f4:d2:
17:40:08:09:53:22:a6:f0:8b:7f:19:ab:30:c8:70:
2a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:69:84:DB:B1:B9:6C:7A:BE:49:94:05:41:B7:6F:5C:0F:DC:C5:C6
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6GmE27G5bHq-SZQFQbdvXA_cxcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.16.30.0/23
94.16.104.0-94.16.119.255
185.232.68.0/22
188.172.228.0/23
193.26.156.0/22
194.36.144.0/22
IPv6:
2a00:11c0:60::/48
Signature Algorithm: sha256WithRSAEncryption
23:7b:f4:5b:d1:f3:34:45:50:2f:7a:18:ee:a9:b6:af:98:1b:
97:39:22:c8:77:9a:01:01:98:a7:13:2f:a7:2e:e3:e7:f1:e6:
5c:b2:d3:cc:59:fa:4e:c7:a5:ae:de:2b:cd:55:43:32:fc:d3:
80:08:a8:fb:e6:9d:fb:42:73:be:50:2f:76:2a:bd:b6:7c:70:
1c:a2:ca:c1:01:a1:b4:c3:84:f2:fb:09:7b:23:17:34:76:63:
d3:b0:0c:f3:ee:05:77:f0:f1:5c:ac:3e:15:33:e3:70:e2:b2:
49:b2:b0:39:71:48:44:41:88:69:11:7f:f9:96:36:dc:7a:8e:
2b:ff:00:30:20:c8:e8:96:39:2a:fa:34:e3:0a:6d:93:74:79:
77:cf:98:46:24:be:ad:b6:2f:82:55:07:0f:7e:b2:c8:ba:d7:
7d:36:29:9f:9b:5c:41:f3:67:a3:1d:bc:5a:aa:aa:d9:2e:30:
dd:7a:ca:d1:24:56:4a:83:fe:aa:bc:2d:3b:2c:2c:86:69:9d:
6f:94:93:18:ff:fc:d8:f9:c3:33:3e:08:c1:57:be:e3:46:a4:
0b:a9:3b:23:9c:6b:af:35:91:fb:f3:35:b0:d0:a2:d5:eb:4b:
9b:24:a9:15:0b:da:78:5f:02:c8:de:bf:a1:25:1a:c8:10:e3:
99:bb:a4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org