Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/zQv5QWU154FyuV4M1r6PvvWoX8M.roa
File: zQv5QWU154FyuV4M1r6PvvWoX8M.roa (raw, json)
Hash identifier: DgcF20rMEKNE09JMKshP8uZm38b5bLUOyrA+Z45ROGM=
Subject key identifier: CD:0B:F9:41:65:35:E7:81:72:B9:5E:0C:D6:BE:8F:BE:F5:A8:5F:C3
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018CC4938596C1EAE0A4F21CFA12BCDC8033
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/zQv5QWU154FyuV4M1r6PvvWoX8M.roa
Signing time: Mon 01 Jan 2024 10:30:51 +0000
ROA not before: Mon 01 Jan 2024 10:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49687
IP address blocks: 146.66.212.0/22 maxlen: 22
146.66.216.0/23 maxlen: 23
5.157.224.0/22 maxlen: 22
178.157.127.0/24 maxlen: 24
5.157.137.0/24 maxlen: 24
5.157.136.0/21 maxlen: 21
5.157.138.0/24 maxlen: 24
5.157.144.0/21 maxlen: 21
5.157.140.0/22 maxlen: 22
188.119.176.0/22 maxlen: 22
188.74.191.0/24 maxlen: 24
37.35.44.0/22 maxlen: 22
188.74.154.0/23 maxlen: 23
188.74.153.0/24 maxlen: 24
188.74.170.0/24 maxlen: 24
2a03:8800::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 23 Jan 2024 14:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:85:96:c1:ea:e0:a4:f2:1c:fa:12:bc:dc:80:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 1 10:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd0bf9416535e78172b95e0cd6be8fbef5a85fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5a:1d:24:2b:62:aa:46:10:e3:5c:59:58:02:
d3:1b:d8:2e:9b:19:46:c0:a4:dd:11:44:4f:60:84:
c2:3d:1c:75:c4:32:a5:cb:ea:00:d9:85:1c:aa:14:
9e:b3:e1:93:ce:71:d2:4d:d0:36:09:df:c3:71:13:
75:cf:6b:f6:6d:b9:1d:37:0c:25:2a:a9:f9:7b:94:
7b:49:70:72:1a:cb:9f:a6:9f:4c:99:96:30:3a:9b:
96:66:62:1f:f2:a5:94:3b:99:c4:3c:42:07:88:d2:
5b:9d:81:55:cf:8f:00:0b:c8:6d:cd:a7:6d:01:ff:
69:04:83:e4:80:8f:bb:a6:3d:56:c7:a3:32:da:82:
13:74:f0:2d:b8:7a:97:cd:ea:09:93:7f:5c:69:32:
f3:67:07:55:e5:c4:e4:76:ec:48:f1:14:e1:e8:ed:
fd:f7:e0:2c:c1:99:d9:7b:86:48:79:f3:dc:98:6a:
d0:c8:7d:67:86:61:8b:aa:a2:33:6a:a2:df:90:eb:
56:07:d2:53:10:d8:8c:8c:5f:2a:b7:8a:7d:be:31:
57:9b:93:a8:ae:35:e9:10:28:28:5d:c3:bd:56:3e:
75:62:88:65:d3:7d:4c:77:84:72:9e:43:0b:87:d6:
5f:9a:14:d7:fa:76:d6:2c:3f:03:f2:d7:90:dd:30:
f7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0B:F9:41:65:35:E7:81:72:B9:5E:0C:D6:BE:8F:BE:F5:A8:5F:C3
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/zQv5QWU154FyuV4M1r6PvvWoX8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.136.0-5.157.151.255
5.157.224.0/22
37.35.44.0/22
146.66.212.0-146.66.217.255
178.157.127.0/24
188.74.153.0-188.74.155.255
188.74.170.0/24
188.74.191.0/24
188.119.176.0/22
IPv6:
2a03:8800::/32
Signature Algorithm: sha256WithRSAEncryption
01:04:8d:79:1a:1d:b5:ca:ef:21:c0:6f:77:3f:2b:4a:b4:a7:
b5:56:a5:10:68:ef:0b:06:9b:1a:7e:4c:c5:d2:6c:b5:c6:0a:
a7:fc:fe:91:9f:6a:8f:49:e4:73:c7:09:8d:0c:7c:70:39:ad:
e3:22:e9:e8:ec:8f:0c:42:6c:90:48:0f:80:fa:4e:48:7f:5e:
04:b2:da:0c:90:98:b1:56:84:64:79:2c:93:bc:24:f5:b2:59:
5e:94:71:9a:c3:38:e2:fd:93:2e:2a:76:57:01:77:94:18:bb:
ba:a7:5b:8f:3b:da:37:50:a7:42:89:42:82:a5:0d:29:20:2d:
8c:f2:36:45:e9:7e:20:a8:8e:c4:cc:5d:68:01:04:ad:f9:33:
49:c9:f8:55:58:0b:f1:54:b6:8d:51:4e:e9:e2:6a:05:9f:5d:
56:a0:be:02:cc:38:f6:4d:90:c3:f2:1d:7a:f4:ca:2e:ad:c9:
49:33:fd:85:7b:dd:29:9b:5c:39:64:9e:c9:18:ee:75:6e:81:
5f:69:10:29:80:c8:92:03:ee:2b:1b:9a:b2:9b:31:ad:83:34:
dc:93:48:a1:d8:f5:8a:55:36:bb:7d:ae:0a:cd:75:f8:62:a8:
37:1f:7e:a6:8b:b0:af:99:5e:1f:5a:2e:a1:6a:df:76:d9:02:
d1:29:c5:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org