Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AQ54LJQOl0SVWIYaLG9iicwVmWU.roa
File: AQ54LJQOl0SVWIYaLG9iicwVmWU.roa (raw, json)
Hash identifier: etsXxrVUhivAiuHwbu3jAZX2j1ok6qGgXvIj2TMOncw=
Subject key identifier: 01:0E:78:2C:94:0E:97:44:95:58:86:1A:2C:6F:62:89:CC:15:99:65
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 01918A7A656AD776F1643FB78EF386A2F835
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AQ54LJQOl0SVWIYaLG9iicwVmWU.roa
Signing time: Sun 25 Aug 2024 16:59:22 +0000
ROA not before: Sun 25 Aug 2024 16:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 195.216.160.0/24 maxlen: 24
195.216.161.0/24 maxlen: 24
213.182.196.0/24 maxlen: 24
213.182.197.0/24 maxlen: 24
213.182.198.0/24 maxlen: 24
213.182.201.0/24 maxlen: 24
213.182.203.0/24 maxlen: 24
213.182.205.0/24 maxlen: 24
213.182.206.0/24 maxlen: 24
213.182.212.0/24 maxlen: 24
213.182.213.0/24 maxlen: 24
213.182.214.0/24 maxlen: 24
213.182.215.0/24 maxlen: 24
213.182.217.0/24 maxlen: 24
213.182.219.0/24 maxlen: 24
213.182.220.0/24 maxlen: 24
213.182.221.0/24 maxlen: 24
213.182.222.0/24 maxlen: 24
213.182.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8a:7a:65:6a:d7:76:f1:64:3f:b7:8e:f3:86:a2:f8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 25 16:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=010e782c940e97449558861a2c6f6289cc159965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:13:41:cc:84:a0:10:65:50:5d:51:e0:0b:79:
19:72:c7:50:1b:f6:af:7f:57:ac:b8:9c:20:fa:cf:
5c:57:cc:47:3c:49:d3:43:83:93:37:22:00:14:57:
4e:69:35:30:d6:e4:6c:29:03:14:2e:df:07:58:e5:
a3:6c:bb:56:90:2e:c2:b0:9c:1a:4b:9c:25:1b:e6:
e0:fe:77:a7:1d:60:ba:18:50:f5:2e:72:fe:ed:9c:
9c:bb:34:e8:02:60:16:b8:e0:b2:e9:33:6c:92:2c:
15:10:52:c4:86:40:f2:b8:5c:c7:5c:4c:ea:88:ff:
f4:9e:e8:0f:da:ed:83:9c:dd:b1:5c:94:12:84:6f:
7c:46:0d:6f:95:db:8c:84:f4:28:9d:31:b4:22:51:
56:94:36:f5:f3:7e:fd:3c:8a:44:29:a9:76:b1:19:
53:85:ed:60:eb:d7:8b:d5:61:40:31:d8:9c:f1:44:
8c:88:6e:84:55:54:4e:ff:4f:79:36:ea:72:4a:87:
1c:eb:23:fc:99:13:de:99:0f:62:82:a2:e5:27:dd:
4e:14:61:d5:99:f9:65:15:cf:e5:cb:2f:74:7e:c4:
98:74:20:20:51:60:3b:ca:6d:f3:8d:70:bd:eb:03:
74:5a:9d:29:89:57:e4:cd:ce:6d:8c:15:a8:fb:f5:
2e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0E:78:2C:94:0E:97:44:95:58:86:1A:2C:6F:62:89:CC:15:99:65
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AQ54LJQOl0SVWIYaLG9iicwVmWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.160.0/23
213.182.196.0-213.182.198.255
213.182.201.0/24
213.182.203.0/24
213.182.205.0-213.182.206.255
213.182.212.0/22
213.182.217.0/24
213.182.219.0-213.182.223.255
Signature Algorithm: sha256WithRSAEncryption
92:5d:4e:2c:39:c1:7d:a1:69:a8:61:2a:37:2e:6d:7e:75:37:
95:5c:3c:14:32:9b:25:47:3b:9a:f2:e2:2b:bc:4e:73:1e:16:
cc:d7:91:d0:6f:2a:23:fe:c2:45:57:d1:43:b4:25:0a:e4:a8:
9f:8a:b4:27:83:8d:57:6e:9f:c6:41:f6:01:df:d1:54:58:b6:
98:33:22:0f:cb:3c:d0:95:d3:04:4a:1c:80:8d:14:c9:be:9e:
08:1e:49:be:95:5a:ed:ef:97:38:25:1e:9b:90:f9:ea:dc:c5:
ca:5f:01:ba:95:8a:57:4f:de:95:8f:33:de:24:01:cf:1e:ca:
ea:7e:e1:33:4a:88:72:b8:cd:08:fd:bd:47:06:50:83:7b:8b:
88:70:93:99:9c:14:de:34:ab:5f:c7:3c:e2:43:12:61:98:a5:
5f:8a:b2:32:0f:1d:83:82:aa:a5:a4:25:6e:53:df:37:34:6a:
20:d9:8f:7b:28:e8:db:e4:d3:ed:b8:14:c4:93:75:bc:92:e9:
28:30:3c:2f:00:ba:03:8a:ba:7c:f3:09:d6:83:77:af:39:c7:
b9:b8:46:46:9a:1d:d8:ce:a7:bf:92:e4:42:89:6e:d1:08:a2:
c6:0c:9a:c9:e6:fa:ed:89:92:ec:3b:70:d9:b1:92:ab:b6:24:
e3:39:09:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 13:14:58 2024 by rpki-client on console-ams.rpki-client.org