Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/e6B5t6jsaImU9jpPGvQr4lM4RJQ.roa
File: e6B5t6jsaImU9jpPGvQr4lM4RJQ.roa (raw, json)
Hash identifier: cHDwi4snZmfkrWG7Yjz5vPTKu91zR4SxSEjDopG093A=
Subject key identifier: 7B:A0:79:B7:A8:EC:68:89:94:F6:3A:4F:1A:F4:2B:E2:53:38:44:94
Certificate issuer: /CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Certificate serial: 018A84B1F7AAD0B970822BA07EF5E384142E
Authority key identifier: 5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/e6B5t6jsaImU9jpPGvQr4lM4RJQ.roa
Signing time: Mon 11 Sep 2023 14:42:50 +0000
ROA not before: Mon 11 Sep 2023 14:42:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29037
IP address blocks: 217.17.16.0/20 maxlen: 24
192.54.68.0/22 maxlen: 24
192.54.67.0/24 maxlen: 24
93.119.240.0/20 maxlen: 24
82.115.96.0/19 maxlen: 24
212.7.160.0/19 maxlen: 24
77.236.112.0/21 maxlen: 24
185.39.108.0/22 maxlen: 24
79.171.176.0/21 maxlen: 24
178.248.216.0/21 maxlen: 24
5.57.192.0/21 maxlen: 24
185.5.168.0/22 maxlen: 24
77.236.104.0/21 maxlen: 24
2a01:5580::/32 maxlen: 48
2a02:1628::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:b1:f7:aa:d0:b9:70:82:2b:a0:7e:f5:e3:84:14:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Validity
Not Before: Sep 11 14:42:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ba079b7a8ec688994f63a4f1af42be253384494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7d:d8:1a:2f:21:ec:47:a2:f4:0e:78:c9:6f:
e8:41:aa:52:27:b3:1a:24:45:d9:07:c1:3d:4f:fd:
e5:79:fb:58:11:f6:1c:7a:82:d6:41:e7:c8:91:83:
89:8e:13:75:fe:86:7a:19:2f:a5:d5:e2:b9:6d:8d:
f4:a4:41:4c:72:70:26:5e:e4:3a:6a:38:8f:bc:a5:
99:73:74:b7:7e:29:b7:eb:8d:65:88:d7:b0:be:14:
e1:0b:bb:6e:1b:a2:b8:2f:60:a9:21:b4:da:df:83:
01:55:a4:27:7d:97:4d:be:d0:3f:ec:24:6b:0c:a7:
4e:e8:e0:cf:c0:bf:8e:d6:2e:62:c2:61:9c:47:56:
53:e3:4c:71:c9:31:fa:91:08:42:4b:4d:43:5f:cf:
54:89:63:a9:c3:07:32:6c:df:c6:8f:0c:7a:ee:7f:
bf:f2:19:b5:d6:b2:4c:a2:ac:a3:f3:99:ac:52:65:
94:44:20:a2:25:c9:52:22:52:28:62:67:ba:9a:d0:
9f:a9:c0:d1:20:28:c4:d7:64:fa:61:0e:06:ed:99:
62:ce:66:7a:4a:36:15:5b:69:60:fd:17:d8:f6:79:
68:46:8a:11:26:24:3f:12:38:f9:2d:10:62:86:6d:
f3:96:32:59:00:20:23:b2:8d:37:67:59:3b:99:6b:
a0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A0:79:B7:A8:EC:68:89:94:F6:3A:4F:1A:F4:2B:E2:53:38:44:94
X509v3 Authority Key Identifier:
keyid:5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/e6B5t6jsaImU9jpPGvQr4lM4RJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.192.0/21
77.236.104.0-77.236.119.255
79.171.176.0/21
82.115.96.0/19
93.119.240.0/20
178.248.216.0/21
185.5.168.0/22
185.39.108.0/22
192.54.67.0-192.54.71.255
212.7.160.0/19
217.17.16.0/20
IPv6:
2a01:5580::/32
2a02:1628::/32
Signature Algorithm: sha256WithRSAEncryption
3f:5b:4f:f2:6b:f3:f3:52:10:10:b7:46:e2:c6:55:fc:b4:03:
08:9c:0c:4b:fe:d5:d9:71:3c:ac:31:26:63:45:57:8b:f8:80:
98:e5:d8:a1:cc:ae:fe:1e:0a:79:c0:8c:40:b3:47:a8:a9:84:
93:6b:7f:77:b1:1f:66:4c:71:36:81:5f:21:92:e2:0d:1e:6c:
e1:55:b3:28:78:dd:4f:fb:00:af:42:44:0c:11:e2:22:44:09:
c6:92:3b:63:b1:e8:4a:c1:0c:a9:d1:36:e1:9c:5d:cf:fd:13:
10:b5:aa:37:1e:a6:2e:f3:35:30:3b:ad:ce:e2:30:68:b2:a3:
ef:56:38:e1:06:5e:c9:8e:28:62:16:02:7b:96:9e:41:1f:88:
43:ed:cb:84:33:0a:82:7d:2c:70:a1:ee:f9:ae:b6:0c:f3:ce:
4a:ab:6c:6b:52:ae:1f:7b:f5:b1:fa:f8:be:37:20:fc:16:85:
35:61:bb:db:5a:be:6e:55:96:6b:bb:69:b7:7a:27:06:a0:1f:
2d:a4:b7:36:84:22:da:db:d9:95:d3:22:ab:f3:a4:dd:ca:e7:
60:56:d4:9d:28:e0:d7:a0:1a:4c:d5:59:b4:3d:7a:29:80:af:
88:77:b6:0c:91:d5:59:f7:5a:cb:67:e7:36:d4:f9:8d:ac:66:
fc:b1:7c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:28 2024 by rpki-client on console-fra.rpki-client.org