Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5tWWNcbdtbiPd8203cAVb9cpVf0.roa
File: 5tWWNcbdtbiPd8203cAVb9cpVf0.roa (raw, json)
Hash identifier: r7LI29VQezOEybbzSW64OeOyO+V8h9OjdAaGiLwyhgU=
Subject key identifier: E6:D5:96:35:C6:DD:B5:B8:8F:77:CD:B4:DD:C0:15:6F:D7:29:55:FD
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018CC4938A7F479D9DD1479FF223ED78FB8B
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5tWWNcbdtbiPd8203cAVb9cpVf0.roa
Signing time: Mon 01 Jan 2024 10:30:52 +0000
ROA not before: Mon 01 Jan 2024 10:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 91.225.15.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
188.74.128.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.155.0/24 maxlen: 24
188.74.171.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 16:40:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:8a:7f:47:9d:9d:d1:47:9f:f2:23:ed:78:fb:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 1 10:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6d59635c6ddb5b88f77cdb4ddc0156fd72955fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ac:b1:67:b2:bf:ee:c1:43:b0:0c:c5:4e:70:
18:66:16:82:62:63:b1:75:65:be:cb:e6:5c:b5:90:
16:6f:24:67:de:be:89:02:c2:7b:10:f1:9f:87:9e:
75:b4:25:a5:49:ab:51:06:d6:75:78:1d:98:8d:b9:
d8:37:65:e5:ae:4f:0c:96:67:8a:a6:31:96:0f:0f:
82:f4:11:7b:7c:f7:5a:ac:ec:b3:9b:89:31:29:83:
00:d7:7c:74:3c:15:e1:fe:7f:03:1e:23:49:bc:e6:
75:c3:fe:66:07:7f:8a:26:6d:9c:65:80:ec:19:de:
56:d1:65:2a:cf:b9:ca:20:6a:f4:51:b4:7b:47:90:
ec:39:b8:4d:a6:84:94:03:6a:92:36:56:4f:09:36:
33:dc:86:c9:c4:13:c0:bd:57:c7:af:20:08:1c:e6:
07:5c:08:51:df:a3:80:87:88:76:54:1f:b3:9e:ed:
a6:e1:d7:a4:66:9d:56:20:9d:e7:6e:a0:9c:a6:8e:
91:8b:95:2f:ef:1f:fa:d7:ee:a2:98:da:03:c5:d2:
fb:25:d0:6a:4f:2c:82:8a:9f:8c:a2:da:5d:54:9e:
db:58:54:fa:f4:1e:ec:3c:68:13:38:0a:e6:6a:82:
59:19:01:11:28:e3:0d:39:59:ab:28:4c:1c:9a:92:
ea:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D5:96:35:C6:DD:B5:B8:8F:77:CD:B4:DD:C0:15:6F:D7:29:55:FD
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5tWWNcbdtbiPd8203cAVb9cpVf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
146.66.220.0/22
178.157.94.0/24
178.157.124.0/24
178.157.126.0/24
188.74.128.0/24
188.74.152.0/24
188.74.155.0/24
188.74.171.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f6:50:0a:d2:ea:b6:85:73:c1:d2:94:1c:fc:c7:4f:6a:40:
e9:38:dd:86:93:ec:7a:5f:c3:e2:2f:82:de:94:11:2f:13:8c:
95:b1:13:0a:ac:96:48:87:a9:1c:a1:99:f4:8a:27:24:de:45:
66:2a:9b:60:8a:7f:6a:a2:cd:37:98:28:17:06:c1:d2:2d:54:
b3:26:d4:12:77:63:46:5c:c0:02:93:73:bd:87:cc:67:09:5f:
66:39:77:47:62:b0:56:79:1e:e9:f1:0c:17:c7:81:26:fc:8d:
4a:af:04:44:07:42:7e:fc:4c:0c:c7:42:54:32:ff:3a:ab:50:
7d:dd:66:20:b2:2d:17:aa:7e:f4:8c:63:5c:90:c0:6d:12:78:
93:39:03:fc:4f:7b:c1:21:a1:a9:93:9c:3d:bf:e7:9c:fb:e2:
68:49:b8:4c:dd:60:8c:b2:1d:7f:83:e0:21:0d:46:21:b8:b8:
d6:62:6b:6a:04:0d:d3:3d:bb:94:9f:69:50:f1:f7:eb:4f:e6:
ae:31:53:86:10:3c:42:dc:b4:46:31:fc:3e:c7:53:4b:51:40:
28:66:47:cd:a7:16:d3:10:e7:aa:95:de:81:4d:e4:f8:bb:c6:
b3:ef:f5:4f:96:39:b2:84:0f:0e:54:f5:9f:6a:92:e6:64:5b:
87:cc:57:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 20:49:00 2024 by rpki-client on console-fra.rpki-client.org