Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/kNKtBp0GXYd0s9Y2I-MHWz7Y2So.roa
File: kNKtBp0GXYd0s9Y2I-MHWz7Y2So.roa (raw, json)
Hash identifier: eHgnzpqkbPJ9z3WfuUqLer+9zBELR5DBJNNh0Dm4JXM=
Subject key identifier: 90:D2:AD:06:9D:06:5D:87:74:B3:D6:36:23:E3:07:5B:3E:D8:D9:2A
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018659979AE4CF8A107766D40AA1198DC029
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/kNKtBp0GXYd0s9Y2I-MHWz7Y2So.roa
Signing time: Thu 16 Feb 2023 09:39:12 +0000
ROA not before: Thu 16 Feb 2023 09:39:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 91.225.15.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Feb 2023 19:15:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:97:9a:e4:cf:8a:10:77:66:d4:0a:a1:19:8d:c0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Feb 16 09:39:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90d2ad069d065d8774b3d63623e3075b3ed8d92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ff:fa:9a:0c:6d:3c:92:b0:5b:53:09:44:84:
bf:62:f6:55:24:da:bc:a2:f5:18:d1:27:84:62:ea:
bb:37:95:8b:14:4d:23:6c:bf:af:21:e0:6e:a2:48:
41:0c:2f:f2:51:5a:30:cd:52:3a:5e:5b:0e:69:c9:
1c:7f:3b:66:94:f1:5e:6f:44:9f:1f:0e:91:f4:5f:
e6:02:99:db:05:ef:d0:8e:cc:4c:31:6a:d8:5f:b9:
92:46:f1:aa:1d:dc:9c:ac:5b:63:b6:3e:79:4b:db:
1a:ae:83:4f:5f:1d:97:f9:d7:65:ed:1b:9b:67:91:
1f:ed:a6:cf:a2:e8:a6:c5:82:ca:7a:af:da:e1:ea:
c1:b0:29:72:3c:50:d6:4a:f3:14:a1:db:56:98:5a:
62:8d:8b:69:66:e0:d3:a9:ba:6f:ea:a1:4b:ce:e3:
a3:dc:3e:07:a0:7b:7c:51:61:d7:8c:e6:fa:5b:24:
13:47:74:69:e3:04:2e:e8:5c:10:ba:0b:88:55:72:
43:b5:d6:b8:a3:43:02:d3:dc:1d:cb:e2:81:dd:60:
39:c8:85:c6:d1:b8:cf:9f:eb:42:3e:3a:17:93:08:
96:b4:d1:f5:86:10:48:37:4d:12:f0:a0:ba:5f:bb:
a1:5e:80:b5:e3:97:cc:32:b4:dc:3e:b9:87:4c:62:
dc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D2:AD:06:9D:06:5D:87:74:B3:D6:36:23:E3:07:5B:3E:D8:D9:2A
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/kNKtBp0GXYd0s9Y2I-MHWz7Y2So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
178.157.94.0/24
178.157.124.0/24
178.157.126.0/24
188.74.152.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:4b:70:5c:c3:11:d3:4f:4f:8b:3a:28:a7:9c:35:a2:09:43:
3b:af:f4:db:17:2c:e2:10:e3:43:99:fa:f2:6c:71:47:af:49:
d6:36:ab:a7:8a:f3:c4:7a:55:ed:62:8b:b7:b2:78:4e:40:a9:
15:d0:03:c2:8f:4e:5d:b4:01:cd:99:63:c7:8d:b8:21:c2:f0:
40:71:fa:01:a2:57:09:54:33:cd:af:bd:61:e9:bf:1c:75:6d:
54:1e:ee:52:e5:97:57:80:62:b8:33:e0:c8:d0:f8:83:94:a5:
94:08:8d:6f:d0:79:f3:cd:84:01:20:b2:69:11:2b:a3:ca:6b:
7e:fa:2d:fc:f6:63:3a:b7:9c:73:80:a7:de:27:c5:05:5e:b5:
98:34:84:a6:b4:86:89:de:6c:19:63:f0:27:89:df:85:cd:18:
7d:1c:3a:32:ab:7a:4e:99:21:62:50:97:8a:d6:d1:63:13:a0:
e9:4f:31:98:a5:65:ea:11:c4:fe:e7:b7:af:49:e9:2e:60:8a:
88:06:b6:3a:ba:f3:c1:93:fe:4b:7b:bb:8d:59:7e:65:3c:c8:
0e:9b:ca:67:8a:a3:43:7d:be:e5:67:87:6a:d7:af:bc:89:52:
18:88:47:74:af:83:fc:cf:63:76:94:c2:35:23:e1:27:fe:fd:
04:38:a6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org