Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/0zUh0gy1blyMA3zJ_nb-mJbwMJY.roa
File: 0zUh0gy1blyMA3zJ_nb-mJbwMJY.roa (raw, json)
Hash identifier: OCL/MMFyRaeNO6QGuRGWdNVnHDtrYZ2BRmqxcufQVds=
Subject key identifier: D3:35:21:D2:0C:B5:6E:5C:8C:03:7C:C9:FE:76:FE:98:96:F0:30:96
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0187758E8AE0A3CB5727763D3AF06839798D
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/0zUh0gy1blyMA3zJ_nb-mJbwMJY.roa
Signing time: Wed 12 Apr 2023 13:01:28 +0000
ROA not before: Wed 12 Apr 2023 13:01:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
185.81.174.0/23 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.173.0/24 maxlen: 24
185.81.186.0/23 maxlen: 24
185.81.184.0/23 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.110.130.0/24 maxlen: 24
185.110.128.0/24 maxlen: 24
185.110.129.0/24 maxlen: 24
185.110.131.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
185.111.27.0/24 maxlen: 24
185.96.83.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
185.96.36.0/24 maxlen: 24
185.104.151.0/24 maxlen: 24
185.89.108.0/22 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 09:58:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:8e:8a:e0:a3:cb:57:27:76:3d:3a:f0:68:39:79:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Apr 12 13:01:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d33521d20cb56e5c8c037cc9fe76fe9896f03096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4d:fd:7d:db:48:da:1d:04:fe:81:23:4d:7b:
0a:01:5a:ce:52:bb:46:ca:99:61:24:0b:72:56:a7:
18:12:41:09:3c:26:ea:cd:1b:d0:22:c7:af:b8:72:
ec:b9:ca:e9:5e:c1:52:e3:f2:4c:8c:7d:5d:57:9b:
a8:27:cb:e8:7a:f1:c8:8a:42:7a:0b:97:fb:93:ef:
88:00:b2:90:0d:0b:0e:f5:3b:3a:14:d7:c1:b1:a5:
7a:f9:ad:25:ce:b7:e0:9e:14:a9:d1:0b:c9:15:2e:
01:4d:3a:9e:c3:6d:3e:62:41:84:7c:4b:b0:35:86:
b7:77:ba:11:db:31:a5:55:78:7c:57:19:8e:6f:f3:
2d:31:74:24:15:27:1e:bf:b8:a0:b0:30:95:e0:72:
72:66:f0:a2:6f:66:f0:97:43:fc:6b:b7:da:b3:d5:
9c:d1:e5:9b:b2:60:de:ff:23:9a:f2:3c:97:7f:53:
14:c3:27:52:12:01:9b:31:a7:5f:d8:1e:e5:e3:e9:
fb:a0:4c:c5:93:a0:50:4c:dc:60:a3:45:8c:0e:f8:
d6:26:dc:0c:23:40:ee:ff:e7:85:68:b2:f7:b4:aa:
32:38:27:53:5a:0f:58:b0:47:c4:9a:fc:d4:69:fa:
e6:61:5c:8e:c5:92:9b:fa:46:58:50:f4:16:ae:12:
2a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:35:21:D2:0C:B5:6E:5C:8C:03:7C:C9:FE:76:FE:98:96:F0:30:96
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/0zUh0gy1blyMA3zJ_nb-mJbwMJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.81.172.0/22
185.81.184.0/22
185.89.108.0/22
185.95.100.0/22
185.96.36.0/24
185.96.80.0/24
185.96.83.0/24
185.97.1.0/24
185.97.3.0/24
185.104.151.0/24
185.110.128.0/22
185.111.27.0/24
185.112.56.0/23
185.175.224.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
30:30:07:45:a0:2e:7b:29:fd:23:5c:3f:6e:fc:93:28:d1:b0:
f5:ef:91:9b:76:03:ec:ad:45:4b:2f:30:65:f8:f1:f0:ac:0f:
a9:82:54:c9:de:07:b5:95:0f:02:1e:88:77:8e:f6:31:43:3a:
34:d5:7e:0d:2f:65:15:39:54:ef:93:94:89:c5:c7:74:80:fe:
36:a4:99:37:f5:09:04:67:4c:b7:b1:f2:bb:be:67:33:d7:56:
c5:44:85:c9:11:5e:b5:3e:96:17:86:46:4a:5d:47:6a:fe:3f:
de:55:35:7a:c9:eb:40:98:63:f4:55:44:3f:10:20:fb:f2:d6:
e5:47:dc:09:7b:dd:c2:d7:0f:a0:e4:20:9a:12:62:f0:2f:9c:
a2:35:c0:84:66:e4:51:98:d2:da:f7:6c:a3:97:3e:72:83:a6:
94:cc:dc:d9:b3:a4:46:1e:de:a2:f1:b5:30:62:10:78:5a:df:
0c:19:fe:37:fd:3e:4d:94:63:9d:b6:bb:35:b4:38:58:c4:4f:
dd:9a:97:ec:ef:d7:fa:de:65:97:e8:e8:45:c8:fc:c5:2c:49:
d9:dc:6e:36:be:c1:44:32:e2:ce:c7:22:54:65:21:90:a0:0d:
63:05:17:89:7b:d8:f3:c5:63:7d:02:ca:ab:30:24:bb:67:58:
2d:1e:30:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org