Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1-y-dg0_e1rP063pXBRvwRR-uTMY.roa
File: 1-y-dg0_e1rP063pXBRvwRR-uTMY.roa (raw, json)
Hash identifier: 36zJc9J08uBPuwhVS6nb0oHf/4ljeUKDWt26LCN2ZKc=
Subject key identifier: FB:2F:9D:83:4F:DE:D6:B3:F4:EB:7A:57:05:1B:F0:45:1F:AE:4C:C6
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 018A3CA45EEF6B2E4E98A88877B7A1DC5678
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1-y-dg0_e1rP063pXBRvwRR-uTMY.roa
Signing time: Mon 28 Aug 2023 14:55:19 +0000
ROA not before: Mon 28 Aug 2023 14:55:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51474
IP address blocks: 176.108.224.0/22 maxlen: 22
176.108.228.0/22 maxlen: 22
31.131.160.0/22 maxlen: 22
195.54.54.0/24 maxlen: 24
195.54.55.0/24 maxlen: 24
194.213.6.0/24 maxlen: 24
185.76.52.0/23 maxlen: 23
185.76.54.0/23 maxlen: 23
91.239.164.0/23 maxlen: 23
91.233.193.0/24 maxlen: 24
91.233.194.0/23 maxlen: 23
91.242.48.0/23 maxlen: 23
91.242.50.0/23 maxlen: 23
91.239.166.0/23 maxlen: 23
176.113.96.0/23 maxlen: 23
194.107.122.0/24 maxlen: 24
178.212.201.0/24 maxlen: 24
178.212.206.0/24 maxlen: 24
178.212.200.0/24 maxlen: 24
178.212.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 14:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:a4:5e:ef:6b:2e:4e:98:a8:88:77:b7:a1:dc:56:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Aug 28 14:55:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb2f9d834fded6b3f4eb7a57051bf0451fae4cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ab:99:13:0e:51:51:75:cf:b6:59:1e:94:0c:
da:ff:50:19:a1:3f:e4:56:cd:db:09:eb:fc:e4:fe:
b1:7e:e6:1f:e4:4a:e7:92:5f:89:d2:1e:62:d1:16:
22:99:da:0c:36:14:13:9e:e8:d5:ae:13:f8:aa:3b:
b6:16:ca:33:d6:14:db:28:f3:4e:72:27:06:44:47:
c4:f7:4c:8d:9b:03:3f:c9:56:11:62:49:43:ec:a8:
69:50:6c:d0:06:fb:cf:42:fc:be:95:cc:da:4e:4e:
2e:b8:2d:ed:7f:8a:4d:a7:31:79:36:0e:5a:b6:e3:
dd:80:ae:7a:eb:69:e7:4b:ee:8b:4d:fe:be:34:d6:
14:9a:c9:26:54:d1:db:a9:cf:62:21:67:01:ee:3e:
a8:e8:8f:9d:2e:d8:09:bf:26:b2:1b:7e:28:69:4e:
4c:09:fe:1f:01:64:ca:3a:b6:3f:d9:e7:e2:e2:d2:
45:5d:5d:3b:6f:80:32:e4:a7:75:c8:10:c5:78:fd:
e8:29:64:46:f8:31:05:d6:db:d9:64:01:66:0c:fe:
84:6c:a4:e8:07:38:2f:81:54:09:a7:ae:38:58:2e:
db:de:77:48:cc:eb:17:f2:bb:37:60:b9:dd:29:fc:
27:e9:2d:5e:9d:9f:8f:b6:5c:ba:53:d6:94:e7:ec:
00:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2F:9D:83:4F:DE:D6:B3:F4:EB:7A:57:05:1B:F0:45:1F:AE:4C:C6
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1-y-dg0_e1rP063pXBRvwRR-uTMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.160.0/22
91.233.193.0-91.233.195.255
91.239.164.0/22
91.242.48.0/22
176.108.224.0/21
176.113.96.0/23
178.212.200.0/23
178.212.206.0/23
185.76.52.0/22
194.107.122.0/24
194.213.6.0/24
195.54.54.0/23
Signature Algorithm: sha256WithRSAEncryption
69:df:fe:fe:a9:0d:de:63:07:e3:7e:45:54:64:2d:51:47:5d:
8c:1c:9d:6b:8e:4f:5e:9a:bf:90:f1:21:b5:6d:4b:14:3f:9b:
fe:c7:a1:8f:2e:07:d4:58:f0:3b:65:df:b4:5c:99:f9:da:6d:
95:8e:6b:cb:a1:8e:7a:0b:9c:9f:7c:fb:81:ed:58:0b:3c:65:
35:3a:e4:93:aa:70:fe:f6:07:da:28:65:cd:ba:1c:cf:88:7a:
ff:87:2d:ba:27:49:27:c1:84:a9:d5:65:e4:e6:5d:8d:94:ed:
5a:c9:c5:2c:ef:59:5d:28:ae:c5:30:55:e2:9d:28:a3:c8:18:
95:0c:e1:8f:68:3e:03:99:df:87:af:d3:52:ed:47:19:05:16:
8e:0b:bc:42:97:be:8d:62:a0:89:c9:ed:43:56:39:6a:3f:6f:
c6:5d:8a:49:d0:02:e6:9e:af:9b:cb:97:53:ce:35:c2:38:ab:
44:f9:51:b9:b4:0c:de:81:be:e8:df:10:19:f8:ff:40:8e:2f:
85:ea:4b:0e:9a:1d:4b:7a:2b:16:c5:fc:16:4a:ba:86:b1:a0:
81:d6:cd:fc:b8:95:6d:aa:b2:d1:46:13:78:53:0d:63:2a:c4:
90:f9:67:7d:1e:a9:b3:bb:23:cd:d6:e8:ce:09:a5:b7:c0:a0:
3a:75:02:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:07 2024 by rpki-client on console-fra.rpki-client.org