Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0BWX4AEfNsQyX0T2RWs2wij3D9U.roa
File: 0BWX4AEfNsQyX0T2RWs2wij3D9U.roa (raw, json)
Hash identifier: woJxkZc1XsRClWL7vo9cHFQlgbFGTlM6s+Ia/CzHWo0=
Subject key identifier: D0:15:97:E0:01:1F:36:C4:32:5F:44:F6:45:6B:36:C2:28:F7:0F:D5
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0187123F8B08AD585A469A92079AB48A7FAB
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0BWX4AEfNsQyX0T2RWs2wij3D9U.roa
Signing time: Fri 24 Mar 2023 06:12:46 +0000
ROA not before: Fri 24 Mar 2023 06:12:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:202::/32 maxlen: 32
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 24 Mar 2023 08:44:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:12:3f:8b:08:ad:58:5a:46:9a:92:07:9a:b4:8a:7f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Mar 24 06:12:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d01597e0011f36c4325f44f6456b36c228f70fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:87:da:39:70:62:6c:e6:dc:81:3a:85:ff:2e:
6f:80:95:de:e2:88:02:fd:c5:f9:36:ba:5e:95:dc:
8b:ed:e5:2d:26:70:d0:f1:57:8c:3b:ca:07:50:f5:
bf:c6:af:e6:3a:67:15:5d:77:a5:4e:a4:5c:d0:0b:
eb:b9:d8:a1:6b:66:1c:cd:83:5a:60:0c:a4:70:f7:
de:e7:7b:0e:24:6a:ef:17:93:92:f7:2d:b7:da:e7:
e8:6e:10:d7:c3:81:dc:ce:85:1b:03:8a:a6:08:e6:
a2:e1:54:bc:b9:e1:e5:ab:18:59:09:3c:ac:42:94:
22:61:4d:39:4c:47:8b:2e:8a:c6:be:0f:e2:4b:6d:
13:6c:fe:09:32:e5:a6:59:d5:13:55:f6:26:36:c0:
db:21:e7:88:8e:96:e6:77:4e:0e:b2:a9:d4:25:8f:
27:f7:41:cb:76:7a:e9:81:d4:fd:2d:40:3e:30:dc:
3f:1a:41:28:9c:7e:94:cb:29:a7:84:c7:5b:2d:0a:
19:02:d3:4b:73:7b:c1:f5:cb:af:94:ae:6d:b1:f7:
96:b6:85:82:a7:dc:ce:2c:92:83:0f:87:75:78:58:
89:b0:8b:04:f0:14:7c:4a:ea:3a:c9:4f:67:9a:5c:
f0:b3:3a:1d:2b:ab:db:5e:be:9f:5f:07:2a:45:d1:
3b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:15:97:E0:01:1F:36:C4:32:5F:44:F6:45:6B:36:C2:28:F7:0F:D5
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0BWX4AEfNsQyX0T2RWs2wij3D9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a09:4e01:3000::-2a09:4e01:4fff:ffff:ffff:ffff:ffff:ffff
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9e:22:e4:7c:01:37:ba:5c:1e:aa:06:9f:ce:37:4b:53:c2:b6:
a1:63:c6:db:8a:15:48:eb:47:2d:05:d2:7b:85:d2:05:28:a4:
f9:e9:cb:b2:33:f3:9c:72:40:c9:cd:de:18:9a:18:f5:61:37:
e6:44:04:98:67:05:ad:ec:1c:e3:37:3f:80:2f:6e:58:3f:b2:
54:67:23:04:1e:8f:fa:4a:26:b1:c0:94:36:38:ca:9e:5f:60:
a4:c9:15:70:c4:02:06:dd:54:16:56:1c:6d:a1:b0:93:54:51:
6c:bd:c7:82:d3:04:24:af:23:bc:db:cd:71:55:e4:47:ff:27:
ee:d9:67:f9:da:d5:f9:d4:70:67:a0:52:ef:05:6a:47:55:fc:
01:31:0d:2a:81:91:3f:9c:77:47:cf:e2:bc:72:8f:cf:0d:e7:
e0:f6:a7:0b:1b:ef:89:b9:de:03:84:b0:8a:ea:b9:6f:97:ef:
44:4f:a6:53:84:ad:9f:7a:c2:f6:2b:db:66:49:7b:ea:c0:e3:
be:9c:e6:05:59:37:30:c6:f4:56:4e:ae:9c:43:f1:c5:a6:53:
e6:12:27:88:f4:dc:97:9b:bf:bc:bd:20:7d:04:a9:84:b5:35:
c0:2f:1b:4c:b5:84:d2:ed:8b:f4:e3:cd:25:53:ab:41:f4:fd:
cc:33:bc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org