Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vJCGb9Rf3M0b3Y9ZKYaqSNrXEiw.roa
File: vJCGb9Rf3M0b3Y9ZKYaqSNrXEiw.roa (raw, json)
Hash identifier: DqZ8zq/qcHNiPMVhGRP81Uheo4H4xUT8NtjdOBUPxnc=
Subject key identifier: BC:90:86:6F:D4:5F:DC:CD:1B:DD:8F:59:29:86:AA:48:DA:D7:12:2C
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01877A2906CAF9302C1AA4623991C490DDD5
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vJCGb9Rf3M0b3Y9ZKYaqSNrXEiw.roa
Signing time: Thu 13 Apr 2023 10:28:41 +0000
ROA not before: Thu 13 Apr 2023 10:28:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 195.149.87.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c41::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 27 Apr 2023 13:10:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:29:06:ca:f9:30:2c:1a:a4:62:39:91:c4:90:dd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Apr 13 10:28:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc90866fd45fdccd1bdd8f592986aa48dad7122c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:42:9b:ac:27:bc:41:5a:51:a7:92:99:0b:df:
34:d5:1d:41:64:c7:2c:c9:ee:cc:d1:39:08:3a:f1:
db:70:18:d1:3d:7b:04:1d:56:74:82:d3:81:b0:1f:
02:08:31:1f:49:92:ea:d7:31:0a:b7:a0:21:30:56:
ba:f6:94:7c:af:24:8a:fe:bc:1d:e4:8d:93:dc:a3:
10:55:43:9b:df:26:c3:99:04:3d:3f:02:32:ac:78:
34:78:9d:0b:fa:68:4d:f4:d8:49:b4:84:e3:48:d4:
5f:98:86:06:d0:b4:56:bb:47:e0:ac:53:f2:97:ce:
01:9a:82:cd:1a:66:3c:76:f6:dd:0b:c2:10:fb:7b:
9c:9f:cd:d1:95:86:1e:b5:f8:90:76:23:2e:e0:b9:
9c:e7:31:58:37:81:ac:2a:77:ac:32:0f:cf:2b:a4:
51:18:51:03:1c:db:aa:65:29:8b:74:e1:3f:c3:35:
27:d2:4c:f5:3d:9e:dd:34:a5:e9:91:ac:77:82:fc:
bf:1b:77:67:54:4e:2c:6d:5c:73:73:fa:f2:af:fb:
c2:80:7e:3d:4f:59:ff:9d:d0:be:d6:ab:6d:04:11:
cb:af:7b:ab:d4:c8:83:8b:4c:f1:7e:da:6b:90:4d:
fe:87:88:64:88:f7:af:81:ed:87:fb:36:53:79:6d:
05:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:90:86:6F:D4:5F:DC:CD:1B:DD:8F:59:29:86:AA:48:DA:D7:12:2C
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vJCGb9Rf3M0b3Y9ZKYaqSNrXEiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
74.119.192.0/24
74.119.194.0/23
80.92.204.0-80.92.206.255
185.242.84.0/22
185.250.148.0/23
185.250.151.0/24
195.149.87.0/24
IPv6:
2a09:7c40::-2a09:7c42:ffff:ffff:ffff:ffff:ffff:ffff
2a09:7c44::/32
2a09:7c46::/31
Signature Algorithm: sha256WithRSAEncryption
4e:a7:39:80:06:aa:16:65:d6:ee:5c:ac:e8:92:f4:c3:8b:e3:
60:ba:51:e9:8c:c6:37:a0:8c:89:31:29:f4:ac:71:9f:75:7e:
9d:26:90:2c:f5:95:47:37:c3:6e:11:63:f5:9a:0a:eb:3d:6b:
92:91:00:80:6f:37:3d:03:7a:10:01:f5:4e:01:4e:7b:fe:5a:
e4:61:70:0f:f6:ea:80:70:ee:38:ef:c4:dd:9c:ba:93:e0:83:
37:5a:63:e2:43:f1:cf:78:cf:be:90:ac:ac:69:d9:53:7c:31:
41:03:bb:e5:dc:46:f2:97:cc:89:c0:28:cb:f0:2c:af:98:42:
6a:ff:28:60:96:09:f4:cf:27:1e:6c:e7:49:3a:e0:25:12:01:
28:32:e8:22:71:2a:4a:10:78:aa:a6:f2:96:6d:99:d3:ba:bd:
c3:6a:96:28:b0:42:c7:63:5a:bc:09:d1:85:9c:f4:b6:2d:8b:
cd:39:40:8b:ab:a7:eb:ec:c6:80:a7:96:51:b5:3c:79:a4:04:
01:e7:d0:ad:4e:d3:80:37:da:26:96:5b:b9:cb:ab:8c:8c:b3:
e9:a6:ab:8c:7d:56:53:fb:c3:79:b1:c5:78:eb:19:33:5d:5d:
15:48:bb:57:b7:35:89:61:25:16:64:4d:f4:16:3f:e0:bf:0e:
be:6c:ee:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org