Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/G506ln5ZhrNUGerxg75XjiYgsjM.roa
File: G506ln5ZhrNUGerxg75XjiYgsjM.roa (raw, json)
Hash identifier: 0Mp+56WLZZjx3UAyCLoaBhirf1zYx7bhfx+KoBar1Os=
Subject key identifier: 1B:9D:3A:96:7E:59:86:B3:54:19:EA:F1:83:BE:57:8E:26:20:B2:33
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 018A69AB4A00A08ABD7FB099282E728561F3
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/G506ln5ZhrNUGerxg75XjiYgsjM.roa
Signing time: Wed 06 Sep 2023 08:45:47 +0000
ROA not before: Wed 06 Sep 2023 08:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35676
IP address blocks: 178.213.68.0/22 maxlen: 24
178.213.64.0/22 maxlen: 24
194.5.88.0/23 maxlen: 24
185.16.252.0/22 maxlen: 24
2a03:6f82:100::/40 maxlen: 40
2a03:6f82::/32 maxlen: 33
2a03:6f81::/32 maxlen: 33
2a03:6f82:200::/40 maxlen: 40
2a03:6f81:200::/40 maxlen: 40
2a03:6f82:300::/40 maxlen: 40
2a03:6f81:700::/40 maxlen: 40
2a03:6f81:400::/40 maxlen: 40
2a03:6f81:100::/40 maxlen: 40
2a03:6f81:600::/40 maxlen: 40
2a03:6f81:300::/40 maxlen: 40
2a03:6f81:500::/40 maxlen: 40
2a03:6f81::/40 maxlen: 40
2a03:6f80:700::/40 maxlen: 40
2a03:6f80:600::/40 maxlen: 40
2a03:6f80:500::/40 maxlen: 40
2a03:6f80:100::/40 maxlen: 40
2a03:6f80:300::/40 maxlen: 40
2a03:6f80:800::/40 maxlen: 40
2a03:6f80:900::/40 maxlen: 40
2a03:6f80:400::/40 maxlen: 40
2a03:6f80:200::/40 maxlen: 40
2a03:6f80::/32 maxlen: 33
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:ab:4a:00:a0:8a:bd:7f:b0:99:28:2e:72:85:61:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Sep 6 08:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b9d3a967e5986b35419eaf183be578e2620b233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:dc:9d:fd:cd:ef:8a:15:5f:ab:de:83:7d:28:
29:a0:1e:03:bf:03:94:6a:18:40:7e:85:2f:ad:8f:
2d:39:b1:95:3b:17:af:92:5c:10:da:c9:a4:0b:59:
b8:9f:d2:36:eb:49:65:10:57:6d:bc:40:11:d3:4e:
97:71:e6:b4:47:86:2a:bf:16:83:d9:56:5b:0d:b9:
3c:e8:63:82:9d:5b:41:dc:b7:ad:8a:03:2f:3f:23:
8d:10:c1:1d:9b:0f:52:bb:0c:1a:1b:4b:40:04:92:
5f:05:2a:fb:e7:61:1e:94:2d:a6:66:78:6d:3e:b4:
cb:89:a1:a5:54:f2:2b:d7:e5:6d:07:bd:dc:12:de:
43:43:c1:3f:f0:26:a2:7d:f2:3c:c5:6f:bd:25:1d:
cc:4a:5f:5a:61:2b:4c:9c:89:2b:23:a0:b4:aa:7a:
39:9e:59:b1:d5:fd:1d:d6:95:35:61:d8:43:82:9b:
d6:f7:bf:23:c1:5e:2f:61:21:e9:d9:b8:53:e8:fe:
a7:92:94:3e:61:75:86:84:d3:36:37:50:e2:70:f0:
24:62:26:cf:85:65:a8:03:7d:74:25:b0:46:4c:14:
c6:93:2a:e9:8e:d6:bb:ef:f1:12:e2:8b:96:57:05:
c4:f4:89:8c:1e:a4:38:d4:78:d9:7d:37:09:19:ff:
ec:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9D:3A:96:7E:59:86:B3:54:19:EA:F1:83:BE:57:8E:26:20:B2:33
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/G506ln5ZhrNUGerxg75XjiYgsjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
194.5.88.0/23
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
87:96:64:27:93:07:7b:54:dd:90:aa:22:7c:71:1d:f0:95:43:
cb:76:4c:70:1a:3d:16:0d:dd:10:f2:68:37:4a:38:06:80:1f:
01:2d:d5:fe:2f:92:c4:40:f5:ef:fb:e9:76:84:8b:28:b2:09:
5f:34:4d:3f:31:90:a3:4c:f2:ca:72:6e:ff:8d:9a:a7:8e:9b:
86:22:2e:1d:a1:a5:d4:22:de:a5:18:35:72:38:70:8d:23:cf:
35:e9:e6:4a:e7:d3:0d:5c:26:2b:cf:59:80:a0:4b:e5:13:73:
b3:14:9f:0b:0b:5c:a1:9b:1f:68:3b:7d:66:cb:db:fb:02:49:
cb:d9:57:36:59:85:2c:e8:b0:3c:53:75:f6:7e:e6:a9:bb:0b:
56:54:3d:d4:75:7e:27:96:93:13:f7:6d:73:77:e8:10:98:1a:
67:ef:e6:63:5a:69:d0:bb:c5:59:b0:de:fe:ea:5f:33:df:b6:
88:4e:10:65:b2:2d:13:a9:b2:c2:6b:92:0c:bd:c1:bc:50:69:
69:12:bf:07:70:86:39:66:9c:8b:bb:f7:2f:42:fb:a2:d1:82:
84:cf:fe:c3:6a:71:6f:91:65:83:e1:9a:8b:79:64:85:a7:68:
a6:5e:94:1d:17:32:ea:90:b7:15:72:f7:d2:9c:1b:1c:20:f2:
6c:d6:f5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:15 2024 by rpki-client on console-fra.rpki-client.org