Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wE_NgHnZ-kquGbyo72RIiX4KLNs.roa
File: wE_NgHnZ-kquGbyo72RIiX4KLNs.roa (raw, json)
Hash identifier: S3Bm8RQ4H8JpW0b1xMN3zh4JTUEj8+SESF85cuf8fA8=
Subject key identifier: C0:4F:CD:80:79:D9:FA:4A:AE:19:BC:A8:EF:64:48:89:7E:0A:2C:DB
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0185AA533B2A4F0CB9D4195568C2C86FB081
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wE_NgHnZ-kquGbyo72RIiX4KLNs.roa
Signing time: Fri 13 Jan 2023 08:50:59 +0000
ROA not before: Fri 13 Jan 2023 08:50:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 185.123.53.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Mar 2023 12:59:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:53:3b:2a:4f:0c:b9:d4:19:55:68:c2:c8:6f:b0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jan 13 08:50:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c04fcd8079d9fa4aae19bca8ef6448897e0a2cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:33:d3:96:a9:e9:6e:e8:ba:b1:af:ec:53:eb:
8f:7c:b0:d4:6a:da:4a:f3:4e:ca:ae:06:f6:5f:dc:
84:c3:fd:a7:61:6e:6e:57:76:48:0e:98:af:63:16:
43:af:54:d6:48:c8:dc:99:7f:48:3e:0e:3b:0b:71:
d8:f9:ee:88:64:e8:8a:d7:81:f1:60:7f:bd:e2:29:
d0:2c:03:fa:4e:a8:86:d1:e8:6f:15:c6:c9:e8:1c:
31:59:0e:ff:c1:00:b9:f0:97:28:6d:63:fc:5f:a4:
20:55:c8:10:e7:4d:54:67:61:f7:20:a7:ea:9e:92:
76:f6:41:b8:1e:5e:b4:50:97:f4:4a:77:9b:b7:70:
e4:0a:00:59:2b:ca:ab:97:8b:e8:da:7a:02:77:6d:
58:f2:02:19:8b:aa:d9:1e:83:d7:d5:fa:dc:bf:40:
19:1a:88:dc:2a:01:e0:8b:96:7a:24:c8:c7:14:56:
5a:fd:ac:34:3f:87:07:60:1a:1c:90:93:a4:41:33:
7e:80:3e:cd:53:33:70:2a:12:49:d2:99:e0:c8:3b:
ef:56:f7:f5:36:3d:b6:c8:b9:d3:1b:ef:1e:58:d8:
3f:e0:74:11:9c:09:b3:6a:cd:02:f5:7f:b0:2a:d0:
37:ca:cb:f5:34:c8:12:30:b1:f5:00:62:8f:fa:50:
53:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4F:CD:80:79:D9:FA:4A:AE:19:BC:A8:EF:64:48:89:7E:0A:2C:DB
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wE_NgHnZ-kquGbyo72RIiX4KLNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.234.0/24
185.123.53.0/24
193.109.120.0/24
194.61.121.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::/48
2a10:1fc0:10::/48
Signature Algorithm: sha256WithRSAEncryption
77:c2:b4:8a:89:90:96:d9:fe:ba:db:c8:89:e1:52:0f:82:bd:
51:ed:96:1b:0d:2d:f8:d8:0e:36:ba:a3:5a:ff:3d:61:51:c8:
49:d5:f5:9f:88:0f:5f:5d:1c:94:f7:9a:ff:d7:1b:81:c0:92:
6f:82:dc:c5:e9:e9:5a:e4:2e:18:f2:4f:96:29:3c:95:d3:d4:
12:36:77:b7:c0:56:c1:d7:44:ab:3e:0e:58:5f:36:93:b9:38:
24:ba:21:04:bf:29:15:87:7b:4a:3d:e0:cc:cd:56:db:8e:57:
1a:d9:56:46:fe:0b:53:13:5c:0c:e3:e4:94:06:9c:d3:d4:6d:
bf:15:40:79:8f:53:11:af:46:9d:7e:51:6d:d7:ef:a5:1d:9c:
39:d3:b5:7f:92:62:cc:b5:42:64:38:29:e0:c3:67:6d:86:b7:
b7:4b:93:f7:3c:55:a8:0f:49:b8:03:2a:04:6f:76:4e:49:c1:
6e:e5:46:dd:28:90:6a:3f:5b:25:c6:78:3d:1d:23:87:8c:09:
a9:09:d6:67:0d:eb:70:9e:2e:dc:de:b7:bc:90:bb:f4:58:10:
83:ac:03:7f:7f:0a:02:22:b1:9f:ff:67:d5:de:56:08:31:4a:
8e:c5:4f:6f:b7:37:f0:8d:b8:60:39:35:a5:f7:34:f3:cd:f9:
8d:7c:21:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:23 2024 by rpki-client on console-fra.rpki-client.org