Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/bitJ-GAWozyj2AM-SuG9SwaYz6g.roa
File: bitJ-GAWozyj2AM-SuG9SwaYz6g.roa (raw, json)
Hash identifier: X7mSbVQSDCVtFFXee0uSoKX6qu4GOegUseBiEEzUeao=
Subject key identifier: 6E:2B:49:F8:60:16:A3:3C:A3:D8:03:3E:4A:E1:BD:4B:06:98:CF:A8
Certificate issuer: /CN=2347aaab2206c08128f543730064a145a3effa14
Certificate serial: 018571B0D86330FC7D6E2FE4322C82FDA337
Authority key identifier: 23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/bitJ-GAWozyj2AM-SuG9SwaYz6g.roa
Signing time: Mon 02 Jan 2023 08:54:53 +0000
ROA not before: Mon 02 Jan 2023 08:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 195.58.96.0/19 maxlen: 19
62.119.0.0/16 maxlen: 16
212.75.64.0/19 maxlen: 19
178.28.0.0/14 maxlen: 14
78.82.0.0/16 maxlen: 16
62.13.0.0/17 maxlen: 17
212.73.160.0/19 maxlen: 19
213.214.192.0/18 maxlen: 18
213.112.0.0/14 maxlen: 14
79.102.0.0/16 maxlen: 16
80.68.96.0/20 maxlen: 20
94.234.0.0/16 maxlen: 16
81.26.224.0/19 maxlen: 19
213.242.128.0/18 maxlen: 18
195.43.192.0/18 maxlen: 18
62.65.64.0/18 maxlen: 18
213.238.192.0/18 maxlen: 18
85.224.0.0/13 maxlen: 13
83.226.0.0/15 maxlen: 15
46.194.0.0/15 maxlen: 15
92.32.0.0/14 maxlen: 14
213.163.128.0/19 maxlen: 19
82.182.0.0/15 maxlen: 15
62.127.0.0/16 maxlen: 16
213.204.128.0/18 maxlen: 18
217.174.64.0/19 maxlen: 19
195.66.32.0/19 maxlen: 19
195.54.96.0/19 maxlen: 19
84.216.0.0/14 maxlen: 14
212.73.0.0/19 maxlen: 19
212.105.0.0/17 maxlen: 17
213.150.128.0/19 maxlen: 19
2a02:1400::/26 maxlen: 26
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:d8:63:30:fc:7d:6e:2f:e4:32:2c:82:fd:a3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2347aaab2206c08128f543730064a145a3effa14
Validity
Not Before: Jan 2 08:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e2b49f86016a33ca3d8033e4ae1bd4b0698cfa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ed:23:b9:f7:ee:17:4f:bc:6a:fb:c6:49:24:
ac:0c:79:4c:e3:69:c2:cb:e7:4d:43:7a:a0:b8:7f:
b8:11:72:6b:51:db:a8:26:31:ab:6f:43:60:39:ff:
7c:b7:0a:93:8d:17:4d:ae:7b:11:c8:be:d7:39:e3:
de:1d:d7:55:0a:a7:1c:0a:1e:a6:cf:85:71:a0:6a:
74:e3:d5:1b:b8:d1:90:74:d7:9d:ac:c6:21:d0:4c:
35:d9:23:4c:8d:fc:51:b2:c6:70:cb:a8:26:70:b6:
d4:8f:be:b5:0a:78:b0:07:89:f1:44:e5:09:7f:73:
79:1d:62:3e:db:65:8c:42:1c:95:eb:86:e7:40:f2:
97:2c:42:87:91:51:9c:6f:7f:22:7e:f0:74:62:5a:
84:41:20:af:48:df:4f:3a:83:31:04:ef:a8:18:8f:
50:be:66:2e:ef:5b:32:d2:38:bb:cd:8a:5e:81:4f:
62:bb:a0:58:5f:8b:f4:61:92:0b:86:59:2b:f0:01:
c6:4d:fe:8b:6e:2f:2f:cc:e7:61:f3:d6:ce:d3:49:
d6:1d:15:74:50:82:9b:66:84:cb:14:f1:f4:35:85:
31:3e:e9:a0:c9:a1:b8:9e:b9:79:fe:4d:c5:20:0d:
c8:a0:45:e4:30:f0:34:f5:78:92:71:2d:20:3b:7b:
60:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2B:49:F8:60:16:A3:3C:A3:D8:03:3E:4A:E1:BD:4B:06:98:CF:A8
X509v3 Authority Key Identifier:
keyid:23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/bitJ-GAWozyj2AM-SuG9SwaYz6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.194.0.0/15
62.13.0.0/17
62.65.64.0/18
62.119.0.0/16
62.127.0.0/16
78.82.0.0/16
79.102.0.0/16
80.68.96.0/20
81.26.224.0/19
82.182.0.0/15
83.226.0.0/15
84.216.0.0/14
85.224.0.0/13
92.32.0.0/14
94.234.0.0/16
178.28.0.0/14
195.43.192.0/18
195.54.96.0/19
195.58.96.0/19
195.66.32.0/19
212.73.0.0/19
212.73.160.0/19
212.75.64.0/19
212.105.0.0/17
213.112.0.0/14
213.150.128.0/19
213.163.128.0/19
213.204.128.0/18
213.214.192.0/18
213.238.192.0/18
213.242.128.0/18
217.174.64.0/19
IPv6:
2a02:1400::/26
Signature Algorithm: sha256WithRSAEncryption
90:95:12:34:de:e4:cb:92:00:60:45:e4:64:56:2c:54:12:c5:
be:de:77:c4:56:de:9c:6a:6e:c6:c2:af:91:d6:59:f6:c8:e0:
53:d4:b8:8d:b7:a0:a6:b0:61:26:d5:3f:80:cb:48:ea:3d:7c:
70:c1:c2:75:80:88:14:5a:8e:cc:77:17:dc:3b:30:92:4c:61:
26:b4:aa:d3:54:7e:a5:4d:c6:00:af:b6:96:5b:49:25:fc:eb:
0e:98:84:50:b6:c0:5e:66:51:91:ea:f2:72:3a:16:92:cc:36:
73:b0:93:6b:f1:9a:e7:b7:4e:f2:1d:74:ce:fc:ac:d4:87:12:
16:7e:64:70:6d:c2:32:ab:75:ad:fe:db:cf:21:04:70:88:8f:
08:48:8f:cc:3c:a9:a4:ad:8e:d1:f3:61:0a:df:d0:8b:28:5e:
8d:77:75:9b:12:85:89:6e:6f:6d:15:6b:c0:98:3c:9b:c3:b0:
79:23:a9:c8:5a:b3:4a:11:25:30:ab:dc:39:9d:65:28:89:1e:
d7:6a:0c:ed:1d:ce:67:cb:76:04:49:eb:fe:a3:30:b4:b0:50:
ee:00:41:b7:07:44:c5:59:ec:fc:f0:5d:f8:6f:24:de:9d:33:
ba:38:72:08:c7:69:b5:0a:ac:83:18:9c:a6:85:a6:72:fd:9f:
42:7a:7c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org