Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/6z_yyUUGW2pWJk7zcO3_T3DH4NQ.roa
File: 6z_yyUUGW2pWJk7zcO3_T3DH4NQ.roa (raw, json)
Hash identifier: vR7mrQtHJNj2s/7+sxuvtkKA2Xolh2UWYjHLFfou+so=
Subject key identifier: EB:3F:F2:C9:45:06:5B:6A:56:26:4E:F3:70:ED:FF:4F:70:C7:E0:D4
Certificate issuer: /CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Certificate serial: 0192498643898E022DAAD770B41A53754350
Authority key identifier: DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/6z_yyUUGW2pWJk7zcO3_T3DH4NQ.roa
Signing time: Tue 01 Oct 2024 19:19:48 +0000
ROA not before: Tue 01 Oct 2024 19:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59675
IP address blocks: 31.220.150.0/24 maxlen: 24
128.0.144.0/23 maxlen: 23
128.0.146.0/23 maxlen: 23
128.0.148.0/23 maxlen: 23
128.0.150.0/24 maxlen: 24
128.0.151.0/24 maxlen: 24
128.0.152.0/24 maxlen: 24
128.0.153.0/24 maxlen: 24
128.0.154.0/24 maxlen: 24
185.5.8.0/23 maxlen: 23
185.5.10.0/23 maxlen: 23
213.185.78.0/23 maxlen: 23
213.185.80.0/22 maxlen: 24
213.185.80.0/24 maxlen: 24
213.185.84.0/23 maxlen: 23
2a02:45c0::/32 maxlen: 48
2a02:45c0::/48 maxlen: 48
2a02:45c0:1::/48 maxlen: 48
2a02:45c0:3::/48 maxlen: 48
2a02:45c0:7::/48 maxlen: 48
2a02:45c0:8::/48 maxlen: 48
2a02:45c0:9::/48 maxlen: 48
2a02:45c0:10::/48 maxlen: 48
2a02:45c0:13::/48 maxlen: 48
2a02:45c0:18::/48 maxlen: 48
2a02:45c0:19::/48 maxlen: 48
2a02:45c0:fffe::/48 maxlen: 48
2a02:45c0:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Oct 2024 13:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:49:86:43:89:8e:02:2d:aa:d7:70:b4:1a:53:75:43:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Validity
Not Before: Oct 1 19:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb3ff2c945065b6a56264ef370edff4f70c7e0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b3:39:47:fe:5a:60:50:c0:e6:6e:8e:89:41:
52:1a:fe:ca:08:61:0c:e1:3a:2c:9b:ad:ba:08:00:
b2:6b:b7:e3:7e:49:b1:4d:a8:cb:7d:5d:e5:13:cc:
52:fc:0e:cc:26:fb:b9:19:16:c1:19:91:9e:c4:dc:
28:4b:08:e8:aa:3a:d6:c9:1c:52:1c:7f:85:1a:41:
c2:15:4e:ac:6b:93:92:77:e0:96:e2:60:84:8c:9c:
0a:ea:b3:74:19:81:fb:65:5d:dc:5f:49:f8:bf:34:
92:e3:9d:18:4a:55:c5:1c:c6:68:e2:b4:6a:eb:69:
fe:67:68:2a:04:22:08:79:53:27:6d:95:33:d9:ad:
29:3c:11:8b:91:07:82:d0:67:c1:0c:a9:cc:28:75:
bb:7c:ad:d6:14:c9:a6:48:6e:93:b5:3e:9b:2e:f2:
c2:c4:13:f4:8d:4a:cf:ae:fe:46:38:e9:8b:7c:49:
6b:84:7a:ef:a4:7d:1c:20:05:19:60:a6:90:b6:da:
db:8b:8d:9c:08:25:a2:01:ec:cd:c1:7e:73:4b:d8:
97:08:5d:8d:e1:1e:e7:ee:38:5a:37:63:86:98:5f:
b0:7e:a9:fd:94:05:28:fb:86:3a:e4:f9:40:7d:bf:
d9:08:09:d9:19:6d:75:24:56:af:62:1a:56:8e:cd:
41:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3F:F2:C9:45:06:5B:6A:56:26:4E:F3:70:ED:FF:4F:70:C7:E0:D4
X509v3 Authority Key Identifier:
keyid:DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/6z_yyUUGW2pWJk7zcO3_T3DH4NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.150.0/24
128.0.144.0-128.0.154.255
185.5.8.0/22
213.185.78.0-213.185.85.255
IPv6:
2a02:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
28:4a:65:95:71:ff:84:d8:0b:c5:06:25:4b:f8:6d:2b:3d:33:
b3:e8:e8:ba:20:e7:e4:5b:4f:d5:6c:dc:29:72:31:84:66:af:
ac:74:14:2c:31:a9:ff:76:d4:49:d2:49:60:e5:cb:e3:5b:d7:
61:5c:eb:ba:7f:21:6b:19:1f:51:d9:df:82:6f:b3:35:a2:6c:
cd:5b:18:bb:b9:bf:f0:82:ac:e9:51:51:1a:f3:19:13:66:26:
a9:35:1c:77:5b:fb:44:31:e4:68:39:45:ba:cf:fc:9e:cd:e2:
a8:7c:07:53:83:6f:e6:9f:1c:ec:95:98:90:a0:58:fb:3a:7f:
a4:2e:fb:7b:29:57:53:6b:1e:f4:d6:72:b1:57:31:84:d3:10:
5c:fc:cd:a9:6d:de:f3:36:39:54:73:73:19:d2:8a:e2:e4:17:
22:8e:1f:07:bb:08:f5:21:93:15:1a:ac:a0:28:c2:e7:1b:ab:
a3:bc:90:44:8c:80:b9:7c:fe:07:6a:79:55:96:8e:2b:70:c5:
99:47:c6:01:b2:85:fa:f6:7c:0e:c4:b0:24:e7:4e:ec:74:3d:
ef:99:c4:93:f8:6c:df:7d:c6:7b:cf:0b:1e:a4:97:81:da:df:
d3:b3:2a:4c:94:2c:84:a1:9c:54:0d:0c:99:90:85:ce:d0:7e:
73:b7:68:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 17:15:46 2024 by rpki-client on console-fra.rpki-client.org