Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/31c267-f2e3-4fa9-9d41-336e5b3dd071/1/I1xP0NgSIf_RGsapNlVcFxTXZOE.roa
File: I1xP0NgSIf_RGsapNlVcFxTXZOE.roa (raw, json)
Hash identifier: ImgC4NIBbxEyRWqILWk9VyBrQo4XwSdkdKqZJxuFmm4=
Subject key identifier: 23:5C:4F:D0:D8:12:21:FF:D1:1A:C6:A9:36:55:5C:17:14:D7:64:E1
Certificate issuer: /CN=679252b9e21df8176cc538027895f7f4585666ab
Certificate serial: 018571D78829FC2460524102A18FA2D65E3E
Authority key identifier: 67:92:52:B9:E2:1D:F8:17:6C:C5:38:02:78:95:F7:F4:58:56:66:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5JSueId-BdsxTgCeJX39FhWZqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/31c267-f2e3-4fa9-9d41-336e5b3dd071/1/I1xP0NgSIf_RGsapNlVcFxTXZOE.roa
Signing time: Mon 02 Jan 2023 09:37:08 +0000
ROA not before: Mon 02 Jan 2023 09:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51468
IP address blocks: 91.221.196.0/23 maxlen: 23
193.202.110.0/24 maxlen: 24
104.37.32.0/21 maxlen: 21
195.206.121.0/24 maxlen: 24
185.164.12.0/22 maxlen: 22
185.10.10.0/24 maxlen: 24
77.111.240.0/22 maxlen: 22
185.10.11.0/24 maxlen: 24
91.198.169.0/24 maxlen: 24
185.10.8.0/23 maxlen: 23
195.47.247.0/24 maxlen: 24
46.30.208.0/21 maxlen: 21
2001:67c:28cc::/48 maxlen: 48
2a02:2350::/32 maxlen: 32
2a03:53c0::/32 maxlen: 32
2001:67c:3c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:88:29:fc:24:60:52:41:02:a1:8f:a2:d6:5e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679252b9e21df8176cc538027895f7f4585666ab
Validity
Not Before: Jan 2 09:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=235c4fd0d81221ffd11ac6a936555c1714d764e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:b7:00:01:3e:f3:24:e8:8f:c6:2a:9c:7d:
5a:1e:55:49:6a:4f:e1:c5:6d:f9:08:bc:ab:5d:66:
fa:cd:33:ce:39:e2:df:9d:8b:70:b8:09:ff:9a:32:
b6:49:c4:a7:f7:6b:8c:c6:c2:1a:10:70:1e:f7:27:
50:d9:8b:45:a4:0b:64:e7:f9:3f:24:5c:fe:a7:a8:
a9:fd:3c:ec:8c:11:e7:7f:ce:32:18:f5:57:c3:cf:
78:9d:55:6c:f6:ab:74:8a:d1:b4:f2:9b:97:0c:7a:
ee:12:4f:04:33:01:1a:71:b7:7c:c1:f9:ec:11:aa:
3e:29:13:f0:7a:11:84:4b:a3:13:1c:a8:46:85:39:
6e:64:0d:ff:65:23:1f:26:1c:95:43:e6:3b:f0:77:
bb:6e:91:7d:a0:b1:f8:67:99:c5:1b:f1:63:88:ad:
43:81:5c:df:83:2b:a7:f1:21:d1:2c:70:41:b6:ee:
d0:5f:4f:34:f8:98:af:8e:94:64:88:f9:ad:b1:94:
47:86:a5:dc:67:b5:27:cf:6c:d9:14:ab:fb:6f:b4:
f4:81:c2:48:cf:34:79:51:26:12:57:05:59:54:d8:
c4:16:3e:18:ba:7c:34:cd:7e:c4:c2:12:96:cb:ab:
e0:d5:c5:e7:8b:63:0f:1e:a2:c1:2d:e9:30:5c:10:
55:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5C:4F:D0:D8:12:21:FF:D1:1A:C6:A9:36:55:5C:17:14:D7:64:E1
X509v3 Authority Key Identifier:
keyid:67:92:52:B9:E2:1D:F8:17:6C:C5:38:02:78:95:F7:F4:58:56:66:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5JSueId-BdsxTgCeJX39FhWZqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/31c267-f2e3-4fa9-9d41-336e5b3dd071/1/I1xP0NgSIf_RGsapNlVcFxTXZOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/31c267-f2e3-4fa9-9d41-336e5b3dd071/1/Z5JSueId-BdsxTgCeJX39FhWZqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.208.0/21
77.111.240.0/22
91.198.169.0/24
91.221.196.0/23
104.37.32.0/21
185.10.8.0/22
185.164.12.0/22
193.202.110.0/24
195.47.247.0/24
195.206.121.0/24
IPv6:
2001:67c:3c0::/48
2001:67c:28cc::/48
2a02:2350::/32
2a03:53c0::/32
Signature Algorithm: sha256WithRSAEncryption
56:c2:7c:55:28:f2:63:6e:03:16:55:d1:65:f9:a1:99:6f:80:
9f:13:79:0f:a9:54:75:3f:9e:06:e2:fe:ee:20:1d:51:b0:25:
5e:71:8b:64:5c:2c:d6:ce:ba:79:30:c6:1c:a8:ea:bd:8d:45:
15:26:30:88:ac:11:4f:e3:8c:a5:c9:36:85:5d:2e:52:98:4a:
cb:e6:60:e1:64:67:9a:46:d6:f2:93:a7:88:a4:26:3a:97:e4:
60:eb:44:c6:15:eb:ce:e1:4c:1e:c2:2e:19:4d:7a:85:57:01:
fe:41:54:4d:74:6f:e6:ac:f7:d2:a9:ce:1c:e8:33:4e:48:13:
35:1d:8a:ae:06:d3:86:d6:31:d1:0d:31:c8:3d:bd:63:c1:b5:
f0:d0:cf:ee:23:95:80:8c:4f:13:04:7e:bd:bb:9a:6c:9c:c3:
a1:93:aa:57:22:0f:39:12:06:dc:61:a4:fe:0a:0e:bd:05:37:
5b:d4:10:1f:3f:ad:0d:80:d5:62:d7:62:2a:39:53:14:a6:e9:
65:a2:58:c7:b5:67:e2:b1:8b:d2:b5:64:79:7d:ca:e0:24:ff:
0c:f1:cf:89:f7:c3:90:78:a6:8f:a0:f5:6a:d9:4e:05:ef:bd:
6c:c3:12:94:67:3a:47:b0:16:16:52:3c:1b:9a:42:ed:1e:ea:
74:02:64:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:53 2024 by rpki-client on console-ams.rpki-client.org