Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/E6ah8ZxqLVX7sRnVuaJUvIComk4.roa
File: E6ah8ZxqLVX7sRnVuaJUvIComk4.roa (raw, json)
Hash identifier: g6Ll2GgJDm00BBSRYL02wCruYIU5wGSLcbIYupqyc+s=
Subject key identifier: 13:A6:A1:F1:9C:6A:2D:55:FB:B1:19:D5:B9:A2:54:BC:80:A8:9A:4E
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01889F52ECAD8EAB7F1159C59F6DA7A72950
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/E6ah8ZxqLVX7sRnVuaJUvIComk4.roa
Signing time: Fri 09 Jun 2023 08:43:11 +0000
ROA not before: Fri 09 Jun 2023 08:43:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3258
IP address blocks: 45.66.216.0/22 maxlen: 24
92.60.40.0/22 maxlen: 24
45.159.48.0/22 maxlen: 24
45.14.105.0/24 maxlen: 24
45.14.107.0/24 maxlen: 24
45.142.124.0/22 maxlen: 24
147.78.240.0/21 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
193.111.30.0/23 maxlen: 24
185.184.220.0/22 maxlen: 24
45.149.156.0/22 maxlen: 24
176.119.148.0/22 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
88.214.20.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
45.14.64.0/22 maxlen: 24
45.14.70.0/24 maxlen: 24
45.66.128.0/22 maxlen: 24
91.200.240.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a09:4::/48 maxlen: 48
2a09:3::/48 maxlen: 48
2a09:5::/48 maxlen: 48
2a09:1::/48 maxlen: 48
2a09:7:2008::/48 maxlen: 48
2a09:2::/48 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Aug 2023 03:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:52:ec:ad:8e:ab:7f:11:59:c5:9f:6d:a7:a7:29:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jun 9 08:43:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13a6a1f19c6a2d55fbb119d5b9a254bc80a89a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:04:27:95:cf:5f:1f:fc:37:db:c6:3e:08:2c:
c6:70:ae:06:04:bd:77:58:e6:1e:34:9d:21:2c:99:
6f:9d:79:bf:b4:e0:60:7a:8b:10:2b:f0:56:ee:56:
37:d3:8a:da:1f:95:5b:ad:37:ef:79:16:c7:32:d3:
48:2a:a4:de:cb:06:99:49:c2:22:e1:05:83:a7:71:
e7:27:18:f5:72:40:7e:cb:52:0d:70:d1:5c:c7:fb:
d4:6a:3a:5f:c5:40:37:9d:c6:dd:fa:22:ac:33:c6:
41:79:3c:8f:b2:79:5e:d0:46:7d:9c:36:9c:1c:52:
a0:c5:a5:f0:6c:1d:9f:26:d8:34:2a:95:d7:94:9d:
29:04:35:03:15:2b:d3:c6:fd:41:26:ed:3f:df:e3:
1e:ee:49:d1:2f:88:3f:66:ad:6c:9e:84:cb:e1:d0:
f0:dc:bc:59:b1:02:a6:fc:38:1b:88:33:f9:e4:57:
03:41:4e:66:1f:8d:1b:96:dc:45:86:97:12:15:31:
47:e6:0b:59:55:dc:cf:27:e6:b5:38:c6:76:1f:35:
9b:66:e7:29:15:dd:79:e1:3b:5e:9e:6b:31:af:6d:
de:eb:87:1e:8a:d6:47:cf:16:d4:5f:f3:fc:07:26:
1f:5b:43:4f:50:d5:b4:69:34:3d:34:62:a5:59:ed:
e9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A6:A1:F1:9C:6A:2D:55:FB:B1:19:D5:B9:A2:54:BC:80:A8:9A:4E
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/E6ah8ZxqLVX7sRnVuaJUvIComk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.64.0/22
45.14.70.0/24
45.14.105.0/24
45.14.107.0/24
45.66.128.0/22
45.66.216.0/22
45.142.124.0/22
45.143.232.0/22
45.149.156.0/22
45.159.48.0/22
88.214.20.0/22
91.200.240.0/22
92.60.40.0/22
147.78.240.0/21
149.62.44.0/22
176.119.148.0/22
185.184.220.0/22
185.200.64.0/22
193.32.148.0/22
193.111.30.0/23
195.245.241.0-195.245.242.255
IPv6:
2a09:1::/48
2a09:2::/48
2a09:3::/48
2a09:4::/48
2a09:5::/48
2a09:7:2008::/48
2a10:480::/29
Signature Algorithm: sha256WithRSAEncryption
6b:cb:f1:ba:79:de:03:54:22:4a:9c:af:34:3e:c6:02:01:0f:
9e:66:30:08:8f:ed:7c:3f:67:af:1a:75:f1:95:bb:d3:4e:f7:
e6:ef:bd:84:ed:76:21:a2:2f:5c:ab:c0:7c:f0:da:d2:1b:de:
76:be:42:8a:db:a9:2f:36:e3:6f:ad:dc:b6:05:d5:ad:2f:56:
78:de:83:03:ea:e8:88:6e:e3:30:b2:8f:96:f6:13:b2:9d:ab:
b9:66:9b:17:6a:a9:b6:27:53:d9:54:00:ca:46:b5:db:7a:f7:
03:b2:cb:8c:ce:ee:c5:b3:c2:ea:d5:32:a8:84:21:7e:e4:21:
a7:f9:3f:6f:2b:73:88:ba:ef:88:9a:05:52:a5:5b:c1:1e:70:
01:18:26:35:15:55:35:83:66:a3:68:21:d3:b7:d7:71:76:fa:
36:2a:52:ed:c3:6c:05:c3:ed:bc:0a:a7:08:7d:2f:af:10:d8:
79:44:b1:fb:ff:85:14:6d:1e:03:07:20:a1:01:18:a1:f6:3b:
6d:8b:26:a4:56:c5:74:9f:48:30:3f:5e:1a:b5:30:18:c8:5a:
7a:2b:24:c7:8f:74:09:24:3a:b1:eb:a2:0f:b6:45:fb:a0:64:
eb:f0:02:f2:e2:7a:9f:d4:cf:1f:84:2f:d5:1d:f3:47:52:46:
ec:82:cd:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:46 2024 by rpki-client on console-ams.rpki-client.org