Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/bHv-6vJpSGJ1UVIzMlm6ra4S6Ew.roa
File: bHv-6vJpSGJ1UVIzMlm6ra4S6Ew.roa (raw, json)
Hash identifier: znZsm44BWztyDDW4SqalSwlWWwp40DEZokjJyX/vs7g=
Subject key identifier: 6C:7B:FE:EA:F2:69:48:62:75:51:52:33:32:59:BA:AD:AE:12:E8:4C
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 01866DE4348E8847BC618C2F9D81813E0290
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/bHv-6vJpSGJ1UVIzMlm6ra4S6Ew.roa
Signing time: Mon 20 Feb 2023 08:15:17 +0000
ROA not before: Mon 20 Feb 2023 08:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50710
IP address blocks: 109.224.52.0/22 maxlen: 22
109.224.56.0/22 maxlen: 22
109.224.56.0/21 maxlen: 21
109.224.60.0/22 maxlen: 22
109.224.1.0/24 maxlen: 24
109.224.0.0/21 maxlen: 21
109.224.2.0/23 maxlen: 23
109.224.0.0/18 maxlen: 18
109.224.4.0/22 maxlen: 22
109.224.8.0/21 maxlen: 21
109.224.8.0/22 maxlen: 22
109.224.13.0/24 maxlen: 24
109.224.12.0/23 maxlen: 23
109.224.12.0/24 maxlen: 24
109.224.14.0/24 maxlen: 24
109.224.14.0/23 maxlen: 23
109.224.15.0/24 maxlen: 24
109.224.16.0/22 maxlen: 22
109.224.24.0/22 maxlen: 22
109.224.20.0/22 maxlen: 22
109.224.28.0/24 maxlen: 24
109.224.30.0/23 maxlen: 23
109.224.29.0/24 maxlen: 24
109.224.32.0/22 maxlen: 22
109.224.36.0/22 maxlen: 22
109.224.41.0/24 maxlen: 24
109.224.40.0/24 maxlen: 24
109.224.40.0/21 maxlen: 21
109.224.42.0/23 maxlen: 23
109.224.42.0/24 maxlen: 24
109.224.43.0/24 maxlen: 24
109.224.44.0/22 maxlen: 22
109.224.48.0/21 maxlen: 21
109.224.48.0/22 maxlen: 22
185.118.96.0/22 maxlen: 22
185.118.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 09:12:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:e4:34:8e:88:47:bc:61:8c:2f:9d:81:81:3e:02:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Feb 20 08:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c7bfeeaf2694862755152333259baadae12e84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:04:49:12:83:9e:45:1f:c5:2a:18:16:3a:1d:
53:e1:44:66:ae:aa:d6:8b:13:62:a9:90:6e:11:0f:
88:2c:13:45:c2:d3:6c:2a:44:d0:c8:ed:ec:e0:ce:
bb:58:dc:40:e7:b4:dd:e6:59:98:16:95:2f:a6:08:
d8:ce:7e:40:b4:e4:cb:48:da:fc:b3:5a:e6:62:c4:
1e:c5:5f:8b:28:4a:1f:ea:c6:47:58:d2:46:36:06:
4e:c4:a1:ed:bb:5f:a6:38:45:22:0a:2c:c9:8c:45:
6d:8e:c3:3b:8c:74:e8:44:f1:24:b4:29:d1:f2:55:
24:b4:9f:66:9e:6e:23:92:11:95:35:1b:b8:c9:38:
0a:94:4a:a7:de:59:4e:95:a5:f6:06:65:35:9f:4c:
5f:dc:12:46:34:2a:b2:36:a3:fe:59:7f:4c:5b:08:
c5:13:71:fc:ed:74:b7:dd:f8:ae:5c:b9:e6:90:c3:
1c:47:c8:16:c3:4b:0f:e5:b6:5f:e6:7f:e8:84:10:
3f:40:09:98:5c:a9:fe:54:1d:37:c4:7d:85:64:46:
cf:1e:47:f1:1c:88:42:2f:17:de:4e:3c:93:a1:4c:
69:a5:11:b1:e3:2f:54:ed:56:4e:f2:c5:9a:41:9f:
4d:12:11:93:fa:83:04:e8:10:41:1f:1c:88:5f:da:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7B:FE:EA:F2:69:48:62:75:51:52:33:32:59:BA:AD:AE:12:E8:4C
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/bHv-6vJpSGJ1UVIzMlm6ra4S6Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.0.0/18
185.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
de:e5:d1:62:90:2e:2d:20:29:ed:53:f2:60:06:5e:99:5b:a8:
e7:96:77:5f:d0:0b:18:82:c2:c4:63:41:57:c9:15:ae:99:49:
78:9c:1c:11:c9:94:6b:2c:35:f0:6a:21:4f:72:0f:47:f9:3c:
97:b0:59:17:d4:73:00:e0:ec:a4:b6:e9:f6:31:bc:81:72:0f:
dc:7b:67:4c:bf:c9:a8:32:f4:cd:de:8d:e1:05:6e:8a:ba:4b:
fb:4c:6e:d0:f2:f2:01:3f:9e:95:aa:3b:eb:28:2e:e3:b0:81:
e0:8a:61:60:57:b5:0d:0f:ca:1c:47:f2:ee:a8:69:32:42:bb:
64:4a:9d:1b:1f:81:05:01:8d:48:47:d0:88:5e:96:56:42:74:
03:2e:b3:f3:17:dd:ef:a3:e3:04:04:49:b5:54:84:3f:83:91:
db:f4:b0:e2:74:11:eb:5f:52:7b:49:c0:00:1c:9c:44:b0:76:
f3:46:d2:2b:00:68:1b:47:49:a9:4b:d7:af:11:de:21:97:b9:
e7:40:5e:04:26:29:90:23:67:89:6c:a1:b3:99:6a:41:c0:ab:
53:86:5b:1d:fe:96:f8:10:69:49:f9:9a:0c:59:bd:75:58:a7:
4b:fe:c6:7e:94:08:26:f9:6d:23:50:b9:b2:80:f9:01:55:d8:
04:76:62:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:11 2024 by rpki-client on console-fra.rpki-client.org