Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/6TPBmXdpAupcyU4YWndCvh-OTww.roa
File: 6TPBmXdpAupcyU4YWndCvh-OTww.roa (raw, json)
Hash identifier: zwNydVO/PbDjBlt5bbBxAE+/MhdZ/xrJibwQzBki8aQ=
Subject key identifier: E9:33:C1:99:77:69:02:EA:5C:C9:4E:18:5A:77:42:BE:1F:8E:4F:0C
Certificate issuer: /CN=9b2e6fd50ddc817abbac5a64f7c6a12546859ce2
Certificate serial: 0185712790C9AC0A62BFDB36AA50E1026BD7
Authority key identifier: 9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/6TPBmXdpAupcyU4YWndCvh-OTww.roa
Signing time: Mon 02 Jan 2023 06:24:56 +0000
ROA not before: Mon 02 Jan 2023 06:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47875
IP address blocks: 94.124.35.0/24 maxlen: 24
94.124.38.0/24 maxlen: 24
94.124.36.0/22 maxlen: 24
94.124.36.0/24 maxlen: 24
94.124.32.0/22 maxlen: 22
94.124.32.0/24 maxlen: 24
94.124.37.0/24 maxlen: 24
94.124.32.0/21 maxlen: 21
94.124.33.0/24 maxlen: 24
94.124.34.0/24 maxlen: 24
94.124.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:90:c9:ac:0a:62:bf:db:36:aa:50:e1:02:6b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b2e6fd50ddc817abbac5a64f7c6a12546859ce2
Validity
Not Before: Jan 2 06:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e933c199776902ea5cc94e185a7742be1f8e4f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3e:24:e6:cc:e5:3e:c1:3c:8c:83:84:7f:47:
9f:21:85:83:e1:65:d0:59:a7:68:59:22:31:cb:23:
72:db:b8:21:6d:14:76:e7:41:4f:12:5c:5a:80:dc:
1e:46:5c:59:ce:f9:cb:a1:0b:8d:58:ad:45:18:91:
04:f3:ea:2c:17:15:5d:66:b9:02:91:6f:64:72:7e:
ae:00:a5:6a:ee:57:5b:26:ec:21:7d:be:90:c9:1d:
ec:c3:fb:0e:16:43:70:ae:4f:07:2f:5c:a9:2d:e4:
5e:07:2d:12:4b:13:ee:e9:3f:f6:03:a8:38:fe:87:
70:1a:a5:81:8c:7f:59:2e:5d:f0:f3:01:e1:ce:34:
f7:3c:b9:ce:37:d2:1b:71:99:65:8f:db:5d:53:1a:
cf:02:39:74:1b:49:e8:7a:2d:6f:d2:60:13:77:0c:
d9:a2:bc:5b:30:b4:2e:94:61:0b:c7:43:31:a7:6d:
98:08:81:4b:09:c6:cf:3f:44:4c:6c:8f:a2:50:51:
1b:5c:95:f7:4e:a7:45:bc:1f:45:a2:5f:77:07:d2:
c4:c7:d2:b9:c7:e2:f5:8a:5b:15:7f:be:5b:84:8d:
50:69:76:df:fd:3f:99:f9:a8:99:3c:7f:13:2a:d9:
fc:b0:74:f4:d0:2f:2d:c7:44:b5:8d:3d:92:ef:49:
cd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:33:C1:99:77:69:02:EA:5C:C9:4E:18:5A:77:42:BE:1F:8E:4F:0C
X509v3 Authority Key Identifier:
keyid:9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/6TPBmXdpAupcyU4YWndCvh-OTww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.32.0/21
Signature Algorithm: sha256WithRSAEncryption
82:56:2a:5d:00:d8:9b:b1:cc:fb:10:1e:3d:95:ef:0e:0c:a1:
d1:8f:0b:c2:ea:25:d6:fb:10:ba:97:09:50:2e:0b:5a:4a:93:
2a:c1:63:75:fd:48:52:86:ff:3c:5c:c3:ca:cf:d3:0a:49:4e:
3a:e4:b5:db:5a:cd:98:a6:20:8b:1f:5f:f7:c2:15:4b:11:b2:
50:58:e2:7c:cc:0a:00:0f:10:9a:c9:8c:ae:29:e5:ce:da:76:
30:4f:33:05:e5:1a:98:d5:e7:0e:c5:bf:b1:94:e0:0b:0c:0b:
c1:a0:ef:94:dc:1f:a9:43:58:d2:d1:6f:c4:67:e6:4b:d1:3f:
b6:7f:d3:cd:f1:66:71:d5:70:5f:c9:c7:d6:7c:8f:e1:19:51:
9e:1b:52:fa:94:89:2b:06:99:db:39:a8:82:4c:e9:5a:19:be:
40:52:08:bf:dd:85:cb:96:cf:3d:93:96:be:e7:d7:81:85:68:
83:28:0b:a1:42:81:32:49:38:fe:bc:3c:a0:a9:9e:e6:a5:0c:
9b:9b:2b:e0:f9:bf:04:cb:4c:44:71:5d:19:6c:1f:4d:8d:76:
83:b9:3b:f4:10:c9:d9:ee:bb:9d:04:3c:43:02:8c:e9:fd:19:
2c:0d:81:71:a2:94:f9:ba:bf:58:09:ff:71:9f:e7:f5:3c:f8:
cf:e2:e6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:35 2024 by rpki-client on console-ams.rpki-client.org