Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/b83jR1Osz7yR5KefH7WB9JSwQFI.roa
File: b83jR1Osz7yR5KefH7WB9JSwQFI.roa (raw, json)
Hash identifier: HppZQVtnuYeTwmiRljNJZ/7NSi/pJilsUGABAs4C48g=
Subject key identifier: 6F:CD:E3:47:53:AC:CF:BC:91:E4:A7:9F:1F:B5:81:F4:94:B0:40:52
Certificate issuer: /CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Certificate serial: 018CC8DE5FDF0BD9DB95C0BA3001E32200BA
Authority key identifier: 4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/b83jR1Osz7yR5KefH7WB9JSwQFI.roa
Signing time: Tue 02 Jan 2024 06:31:05 +0000
ROA not before: Tue 02 Jan 2024 06:31:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206873
IP address blocks: 185.173.178.0/24 maxlen: 24
185.173.179.0/24 maxlen: 24
185.173.176.0/24 maxlen: 24
185.173.177.0/24 maxlen: 24
194.150.214.0/24 maxlen: 24
194.150.215.0/24 maxlen: 24
194.150.214.0/23 maxlen: 23
194.150.235.0/24 maxlen: 24
194.150.234.0/24 maxlen: 24
2a0b:6900:7::/48 maxlen: 48
2a0b:6903:fdb::/48 maxlen: 48
2a0b:6900:2::/48 maxlen: 48
2a0b:6903::/48 maxlen: 48
2a0b:6900:185d::/48 maxlen: 48
2a0b:6900::/48 maxlen: 48
2a0b:6900:10::/48 maxlen: 48
2a0b:6900:1::/48 maxlen: 48
2a0b:6900:4::/48 maxlen: 48
2a0b:6900:daf::/48 maxlen: 48
2a0b:6900:5::/48 maxlen: 48
2a0b:6900:8::/48 maxlen: 48
2a0b:6900:3::/48 maxlen: 48
2a0b:6900:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 20 Feb 2024 11:42:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:5f:df:0b:d9:db:95:c0:ba:30:01:e3:22:00:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Validity
Not Before: Jan 2 06:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fcde34753accfbc91e4a79f1fb581f494b04052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:64:03:d6:5a:61:68:85:87:23:64:49:b7:
2c:c1:0b:ad:be:b1:77:56:b1:c3:43:65:68:d3:45:
97:bd:08:e7:e7:6b:5e:7e:41:cf:c4:ad:49:37:e9:
73:ea:4b:20:4d:31:c6:db:fc:ad:81:fb:c6:ab:3c:
66:de:c2:51:b3:a8:91:82:c7:bf:26:c4:26:53:b6:
5c:41:9d:fe:fe:f8:8e:d3:f8:c5:33:12:35:61:53:
80:9d:c4:bf:4e:0e:62:14:f3:c6:80:96:7f:fc:6f:
6e:3a:43:57:b4:43:90:e5:b8:aa:b1:38:ee:82:cb:
e3:f9:a5:49:6b:47:cb:47:b2:36:93:7c:19:cb:ac:
6e:95:38:65:83:f0:7e:41:3b:5c:8e:95:89:5e:5c:
72:4e:3a:8c:f0:3f:9c:66:c4:73:24:d9:81:a8:aa:
38:6f:f7:3f:eb:c1:23:b8:38:3a:f9:54:f7:50:6c:
24:19:ba:d0:7d:68:36:68:b8:bf:51:c9:00:f9:10:
cb:d9:69:0c:b7:96:f5:a8:50:9a:9b:73:f1:21:f9:
76:d8:56:62:37:fb:83:84:6b:2f:8d:1d:64:4a:7e:
d2:5c:a5:cc:14:98:f1:6c:b9:4b:92:44:76:1b:ed:
ca:ac:c2:a2:4e:8e:e9:78:23:15:ea:28:70:21:e0:
27:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CD:E3:47:53:AC:CF:BC:91:E4:A7:9F:1F:B5:81:F4:94:B0:40:52
X509v3 Authority Key Identifier:
keyid:4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/b83jR1Osz7yR5KefH7WB9JSwQFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.176.0/22
194.150.214.0/23
194.150.234.0/23
IPv6:
2a0b:6900::-2a0b:6900:5:ffff:ffff:ffff:ffff:ffff
2a0b:6900:7::-2a0b:6900:9:ffff:ffff:ffff:ffff:ffff
2a0b:6900:10::/48
2a0b:6900:daf::/48
2a0b:6900:185d::/48
2a0b:6903::/48
2a0b:6903:fdb::/48
Signature Algorithm: sha256WithRSAEncryption
31:a8:11:ee:66:10:ac:41:df:db:7f:f2:0f:6d:68:8a:75:7d:
7a:00:a2:83:48:08:96:62:06:79:24:f7:2b:ef:d4:b0:22:53:
b3:ee:14:19:93:3a:73:48:69:7e:cd:c3:ec:07:40:24:d9:41:
2e:1f:f3:50:f0:79:2c:66:53:62:0e:85:82:98:39:4a:5f:ee:
35:76:66:35:02:05:7a:ab:eb:4a:ae:53:0f:56:27:21:3b:31:
a5:a0:52:e9:7b:c8:d8:a4:39:8e:47:64:7a:8a:6c:29:ad:cb:
05:f0:87:f0:67:27:2c:01:e1:b4:4c:75:a5:59:95:4d:d2:94:
72:c2:8f:be:1b:c5:8f:c3:91:3c:b9:38:68:6b:30:05:55:3b:
48:7c:b5:0f:8e:c2:51:04:40:0a:c6:4e:1d:02:60:81:52:d4:
9f:42:11:06:c2:a2:b1:6f:1e:74:13:8e:83:06:cb:02:d9:d3:
83:52:43:c0:a0:d2:1c:e1:12:a4:66:1a:27:ba:e1:3f:76:b0:
19:e2:cf:01:0f:1f:cb:7b:8d:90:34:b0:a7:8e:ef:18:fa:8c:
a6:55:3f:cd:ad:af:7e:d3:8c:2b:18:7d:03:a7:cc:7f:bb:17:
02:df:08:69:85:7a:6b:41:4e:c5:3b:93:55:84:82:ce:af:3c:
39:61:cd:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:51 2024 by rpki-client on console-fra.rpki-client.org