Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/pohj_f2FSNO7sBNeYVT5r6wqXrg.roa
File: pohj_f2FSNO7sBNeYVT5r6wqXrg.roa (raw, json)
Hash identifier: 4HoSADaMcyJmFEaAypeAjYaY3Esupx/T4s2dU+Tmdr4=
Subject key identifier: A6:88:63:FD:FD:85:48:D3:BB:B0:13:5E:61:54:F9:AF:AC:2A:5E:B8
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 018E7A67C66942BEFD1E99EB19BC158142EF
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/pohj_f2FSNO7sBNeYVT5r6wqXrg.roa
Signing time: Tue 26 Mar 2024 10:56:45 +0000
ROA not before: Tue 26 Mar 2024 10:56:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57324
IP address blocks: 79.132.195.0/24 maxlen: 24
79.132.196.0/24 maxlen: 24
79.132.197.0/24 maxlen: 24
79.132.198.0/24 maxlen: 24
79.132.199.0/24 maxlen: 24
86.111.144.0/24 maxlen: 24
86.111.145.0/24 maxlen: 24
86.111.146.0/24 maxlen: 24
86.111.147.0/24 maxlen: 24
109.230.112.0/24 maxlen: 24
109.230.113.0/24 maxlen: 24
109.230.114.0/24 maxlen: 24
109.230.115.0/24 maxlen: 24
109.230.116.0/24 maxlen: 24
109.230.117.0/24 maxlen: 24
109.230.118.0/24 maxlen: 24
109.230.119.0/24 maxlen: 24
109.230.120.0/24 maxlen: 24
109.230.122.0/24 maxlen: 24
109.230.123.0/24 maxlen: 24
109.230.124.0/24 maxlen: 24
109.230.125.0/24 maxlen: 24
109.230.126.0/24 maxlen: 24
109.230.127.0/24 maxlen: 24
122.102.116.0/24 maxlen: 24
122.102.117.0/24 maxlen: 24
122.102.118.0/24 maxlen: 24
122.102.119.0/24 maxlen: 24
185.113.105.0/24 maxlen: 24
185.113.107.0/24 maxlen: 24
202.164.192.0/24 maxlen: 24
202.164.193.0/24 maxlen: 24
202.164.194.0/24 maxlen: 24
202.164.195.0/24 maxlen: 24
202.164.197.0/24 maxlen: 24
202.164.198.0/24 maxlen: 24
202.164.199.0/24 maxlen: 24
202.164.200.0/24 maxlen: 24
202.164.201.0/24 maxlen: 24
202.164.202.0/24 maxlen: 24
202.164.203.0/24 maxlen: 24
202.164.204.0/24 maxlen: 24
202.164.205.0/24 maxlen: 24
2a03:c340::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 31 Mar 2024 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:67:c6:69:42:be:fd:1e:99:eb:19:bc:15:81:42:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Mar 26 10:56:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a68863fdfd8548d3bbb0135e6154f9afac2a5eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fd:d6:f3:4b:8b:89:c7:d6:8f:ca:20:31:e5:
47:ad:b3:f1:74:de:79:a2:53:4c:5a:32:5c:b8:38:
c7:4c:19:7d:83:f4:51:1d:3f:7f:60:31:33:9a:54:
eb:8c:8e:d8:57:7b:a7:6a:f9:2a:6b:95:0a:b8:a5:
d4:d9:22:5e:01:10:39:56:be:8e:73:ba:e6:9a:e5:
f1:3d:29:7d:db:21:93:57:e4:5e:eb:81:a2:86:a2:
97:55:3d:86:d7:21:f3:dc:ec:b0:53:b4:06:25:b7:
55:8d:09:c2:a1:a8:1b:28:0c:4b:79:2b:96:84:93:
75:a9:ac:10:b7:90:7f:53:31:3d:3b:c4:d4:ca:fa:
7f:4f:ba:16:70:4e:d3:ec:2a:38:5b:76:17:53:c1:
0e:a5:af:bb:a4:de:be:f7:5f:a2:be:cd:08:e8:af:
3a:03:f9:87:7d:8e:d6:75:8e:48:c5:e7:74:e7:c9:
f7:9b:24:59:fe:6b:1e:6b:c3:16:7c:55:e6:e1:e7:
95:39:f2:1b:44:9d:ef:d8:b4:12:c7:aa:d4:4d:75:
92:80:52:0c:5c:c3:3a:1a:b5:50:ab:3f:5a:57:f5:
5e:49:8b:ff:bc:a8:22:fe:79:6f:8a:ef:3f:0d:09:
f5:07:68:65:b2:67:b2:38:f0:36:51:db:3b:a7:59:
84:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:88:63:FD:FD:85:48:D3:BB:B0:13:5E:61:54:F9:AF:AC:2A:5E:B8
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/pohj_f2FSNO7sBNeYVT5r6wqXrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0-109.230.120.255
109.230.122.0-109.230.127.255
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0/22
202.164.197.0-202.164.205.255
IPv6:
2a03:c340::/32
Signature Algorithm: sha256WithRSAEncryption
49:9c:5d:b5:bf:cb:3d:ce:76:9a:41:6a:f1:0a:08:74:fa:07:
3f:f9:0a:cc:c2:e8:9f:b7:04:61:ba:43:0d:d9:f7:37:07:80:
73:a2:db:34:7f:f5:c3:09:99:52:43:44:8b:04:c7:65:d2:ff:
01:18:19:82:9d:de:6f:e0:2b:c5:f0:55:54:ec:69:e9:9c:30:
87:e1:e7:57:3b:fc:f4:c9:1f:38:f5:0a:76:ab:e7:82:e5:ea:
bc:fb:bd:be:14:aa:f0:89:f3:1c:f6:44:b7:79:c2:76:73:bb:
d2:03:c2:e1:82:bb:16:31:74:e3:a2:fc:92:29:38:3d:dd:03:
da:46:c2:64:ef:03:30:8a:b7:1f:4d:3f:db:f9:d2:69:26:96:
c3:bc:48:30:2e:97:2b:12:6d:39:4d:85:26:f7:de:bd:6c:35:
c4:bb:43:43:09:50:f1:8d:88:bf:17:00:68:2c:c3:90:cc:29:
c5:6b:03:ed:16:58:1a:3e:9d:5f:a8:34:35:80:82:93:47:4a:
73:75:62:a5:74:33:6b:67:de:cd:21:46:90:fe:27:ba:5a:e4:
9f:06:cf:d4:59:10:32:b0:b5:ff:13:8c:6d:5f:05:62:bb:88:
4c:a9:39:3e:a3:09:6c:f6:97:78:a0:06:7e:0c:95:97:0b:aa:
95:6f:ad:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:50 2024 by rpki-client on console-ams.rpki-client.org