Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rKaru1JtsUtOg0FYY4uRxbrIzJI.roa
File: rKaru1JtsUtOg0FYY4uRxbrIzJI.roa (raw, json)
Hash identifier: 9EhaIBjyAUKY9SR8ZMcknslx78q6K+MWdpyTAXU13qg=
Subject key identifier: AC:A6:AB:BB:52:6D:B1:4B:4E:83:41:58:63:8B:91:C5:BA:C8:CC:92
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C404C1CC29A188E49552E2B112022
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rKaru1JtsUtOg0FYY4uRxbrIzJI.roa
Signing time: Mon 02 Jan 2023 07:05:00 +0000
ROA not before: Mon 02 Jan 2023 07:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42388
IP address blocks: 144.208.214.232/29 maxlen: 29
213.227.160.0/24 maxlen: 24
188.172.248.0/24 maxlen: 24
213.227.191.0/24 maxlen: 24
217.146.18.0/24 maxlen: 24
217.146.26.216/32 maxlen: 32
188.172.219.64/32 maxlen: 32
185.81.208.0/24 maxlen: 24
188.172.235.188/32 maxlen: 32
217.146.22.170/32 maxlen: 32
213.227.168.222/32 maxlen: 32
2a00:11c0:e:ffff:1::1000/128 maxlen: 128
2a00:11c0:d::1a/128 maxlen: 128
2a05:8900:aa1::/48 maxlen: 48
2a00:11c0:aa1::/48 maxlen: 48
2a00:11c0:48:13::/64 maxlen: 64
2a00:11c0:63:350::1000/128 maxlen: 128
2a00:11c0:11c0::/48 maxlen: 128
2a00:11c0:1010::/48 maxlen: 48
2a00:11c0:82:359::1000/128 maxlen: 128
2a00:11c0:5:613::1000/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 07 Sep 2023 12:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:40:4c:1c:c2:9a:18:8e:49:55:2e:2b:11:20:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aca6abbb526db14b4e834158638b91c5bac8cc92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:9f:d6:d2:42:cb:84:e1:11:b7:be:5f:14:
39:37:5a:07:08:50:2b:bd:fb:6a:7f:df:db:da:6f:
83:fa:da:0c:27:58:d9:b1:f2:6d:05:0a:08:db:04:
a4:5c:90:71:a2:47:29:13:7b:b2:ac:01:fd:55:88:
00:65:70:89:8b:7f:d4:b8:93:6f:36:bc:f8:ef:a1:
b2:f6:fb:44:43:31:73:b0:19:c8:02:d2:01:b9:1b:
c1:82:3d:00:c7:c6:25:b8:25:05:2c:fb:51:d8:98:
26:f4:e6:58:b1:2f:da:b6:05:8c:cc:a4:87:ba:1b:
37:0e:08:b0:e2:56:1b:ab:39:28:25:25:a1:e6:27:
a9:dc:70:57:22:e3:26:f3:02:84:d1:fb:4e:d2:0d:
54:f6:7d:47:ea:33:00:4e:dc:84:f9:a0:f1:ae:ce:
a6:f5:a5:d7:6e:39:92:c1:8d:66:95:29:02:01:c3:
14:5e:3d:fa:56:d9:53:58:47:8f:69:31:17:c6:b9:
53:81:66:ac:6d:99:e0:4d:10:a5:4a:9f:8a:d8:1d:
51:a8:49:70:8a:fa:3f:e7:0b:c5:21:86:01:84:29:
0f:d0:16:95:26:aa:c1:ae:de:ad:b1:19:7f:2c:d5:
bc:94:aa:9a:f7:1c:a0:34:22:07:85:8b:76:7c:9e:
91:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A6:AB:BB:52:6D:B1:4B:4E:83:41:58:63:8B:91:C5:BA:C8:CC:92
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rKaru1JtsUtOg0FYY4uRxbrIzJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.232/29
185.81.208.0/24
188.172.219.64/32
188.172.235.188/32
188.172.248.0/24
213.227.160.0/24
213.227.168.222/32
213.227.191.0/24
217.146.18.0/24
217.146.22.170/32
217.146.26.216/32
IPv6:
2a00:11c0:5:613:0:0:0:1000/128
2a00:11c0:d:0:0:0:0:1a/128
2a00:11c0:e:ffff:1:0:0:1000/128
2a00:11c0:48:13::/64
2a00:11c0:63:350:0:0:0:1000/128
2a00:11c0:82:359:0:0:0:1000/128
2a00:11c0:aa1::/48
2a00:11c0:1010::/48
2a00:11c0:11c0::/48
2a05:8900:aa1::/48
Signature Algorithm: sha256WithRSAEncryption
cb:e6:0f:77:41:ed:ea:f8:19:34:d4:05:f5:ea:24:23:6d:3b:
ce:52:ac:ac:53:5a:e5:76:a5:d1:54:b7:27:51:ad:09:53:ef:
8a:60:8b:42:d9:dd:9a:c8:28:35:4e:36:53:08:1d:4f:fb:b9:
2a:da:29:37:68:4c:f9:96:ed:21:bd:fe:d5:8e:07:86:0f:17:
15:22:61:30:92:4f:46:5e:41:59:8b:89:bf:2d:90:d0:5f:2a:
f5:45:a9:7b:23:e1:5e:db:cf:85:d1:d4:e7:82:d5:0a:b2:42:
10:e2:3a:f2:47:12:73:ad:d8:a9:82:e0:b9:39:14:24:16:4c:
ce:6c:bc:9e:33:ac:4d:32:f7:50:13:23:36:74:14:df:25:fe:
dd:5d:32:c4:f9:1c:99:b1:74:cd:94:c7:7f:c2:43:02:34:88:
b9:8a:d3:f2:24:0f:e4:ef:69:07:37:7c:e7:c8:c5:55:cc:6e:
f1:8f:73:4b:ff:0e:e7:30:77:e7:9e:cc:ab:04:6f:9f:f1:9b:
8d:3c:cd:35:90:08:85:a7:0c:48:49:cc:97:30:4f:e5:c5:79:
6d:86:4a:d7:69:25:b6:2b:ec:f8:c4:04:89:0e:1d:d4:16:d2:
79:98:44:9a:24:2a:33:60:b6:1b:d6:bb:dd:f9:93:7d:c9:fe:
8c:b1:3d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org