Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/cDsHoskRGNMyP4Mcdj_u3Vf7awI.roa
File: cDsHoskRGNMyP4Mcdj_u3Vf7awI.roa (raw, json)
Hash identifier: bHl/5/2URorzwjDJDMVUpIFLmkE/2beTy8ZlJNPpCeM=
Subject key identifier: 70:3B:07:A2:C9:11:18:D3:32:3F:83:1C:76:3F:EE:DD:57:FB:6B:02
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF3CC2F2AC93BD369C574027916018
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/cDsHoskRGNMyP4Mcdj_u3Vf7awI.roa
Signing time: Sun 01 Jan 2023 09:35:01 +0000
ROA not before: Sun 01 Jan 2023 09:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15440
IP address blocks: 195.14.160.0/19 maxlen: 19
185.65.48.0/24 maxlen: 24
185.216.209.0/24 maxlen: 24
217.117.16.0/20 maxlen: 20
77.241.192.0/20 maxlen: 20
79.142.112.0/20 maxlen: 20
185.11.26.0/24 maxlen: 24
45.82.32.0/22 maxlen: 24
5.133.66.0/24 maxlen: 24
5.133.65.0/24 maxlen: 24
92.62.139.0/24 maxlen: 24
92.62.138.0/24 maxlen: 24
92.62.137.0/24 maxlen: 24
92.62.136.0/24 maxlen: 24
92.62.135.0/24 maxlen: 24
92.62.143.0/24 maxlen: 24
92.62.142.0/24 maxlen: 24
92.62.141.0/24 maxlen: 24
92.62.140.0/24 maxlen: 24
89.249.80.0/20 maxlen: 20
92.62.132.0/23 maxlen: 23
92.62.131.0/24 maxlen: 24
92.62.130.0/24 maxlen: 24
92.62.128.0/20 maxlen: 20
92.62.129.0/24 maxlen: 24
92.62.128.0/24 maxlen: 24
213.197.128.0/18 maxlen: 18
2a0d:5000:2::/48 maxlen: 48
2001:1ab8::/32 maxlen: 32
2001:1ab9::/32 maxlen: 32
2001:1ab8::/31 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:3c:c2:f2:ac:93:bd:36:9c:57:40:27:91:60:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=703b07a2c91118d3323f831c763feedd57fb6b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:14:93:df:db:60:d2:87:bf:31:5d:e0:b5:4e:
9f:6b:e8:7c:de:e5:4f:53:1d:5d:06:7b:27:7e:8f:
ed:32:b7:62:98:b4:58:a3:67:49:a0:92:8f:2f:e8:
28:b5:79:c9:20:af:53:2a:bf:77:ce:c4:24:2a:d9:
16:13:6b:ce:2f:67:84:aa:62:4c:aa:f4:b3:14:65:
b4:ab:40:63:67:e8:9d:3e:b8:9d:19:92:0a:f0:13:
af:e0:46:4a:9b:de:ce:32:d6:0b:bb:d3:d1:66:51:
20:75:1b:72:26:83:d2:ac:80:fc:49:2a:fb:28:5a:
9b:50:37:fe:bb:fd:98:25:62:b2:2c:9e:1d:c9:5d:
43:2a:91:8b:31:55:ec:95:b6:17:c5:d1:b4:9b:ce:
80:6d:f1:11:af:84:a2:fb:90:00:d1:ed:dd:c6:51:
24:6e:6b:0e:46:04:99:de:4e:d0:75:da:1f:7a:8f:
c2:7b:14:1d:13:f5:94:29:86:62:f0:3f:31:b3:cd:
7d:93:3e:fb:6b:d4:a3:4e:e8:e8:f6:48:3e:dc:21:
01:6d:f5:23:c3:fe:a8:bf:1d:67:c7:56:73:da:73:
84:46:b6:d1:95:39:71:69:0a:f2:99:f2:2e:ed:30:
0f:90:46:c4:80:0a:08:ef:09:52:0e:24:92:0a:45:
fe:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3B:07:A2:C9:11:18:D3:32:3F:83:1C:76:3F:EE:DD:57:FB:6B:02
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/cDsHoskRGNMyP4Mcdj_u3Vf7awI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.65.0-5.133.66.255
45.82.32.0/22
77.241.192.0/20
79.142.112.0/20
89.249.80.0/20
92.62.128.0/20
185.11.26.0/24
185.65.48.0/24
185.216.209.0/24
195.14.160.0/19
213.197.128.0/18
217.117.16.0/20
IPv6:
2001:1ab8::/31
2a0d:5000:2::/48
Signature Algorithm: sha256WithRSAEncryption
3c:22:94:0f:be:65:f7:41:70:c8:59:0a:40:d6:4d:ae:05:44:
46:65:1e:0f:aa:08:13:d0:69:14:2a:a1:34:ac:f0:7d:b4:ba:
2d:3e:a7:2b:08:ae:23:1d:2c:63:04:78:ab:71:02:d2:13:ec:
e2:a5:f6:39:a2:8c:69:c3:5a:9a:66:02:b4:ed:c9:42:a2:bd:
cc:a8:8e:85:98:7e:5c:62:73:64:75:b3:44:58:fd:36:6e:ae:
85:67:df:a5:31:66:02:41:81:25:f1:25:0d:f1:d5:6f:22:3e:
f5:7a:72:04:e1:0c:32:82:ad:bf:52:85:c7:ed:51:53:36:a0:
b8:65:34:d3:31:f7:db:06:a0:b7:5d:a3:e9:af:db:b6:19:62:
a8:76:a8:f5:e8:23:0d:e2:2c:ed:f0:98:d4:d0:5c:3e:15:46:
05:06:43:28:68:ed:6b:06:f8:c9:d1:71:29:a4:a3:17:fe:f5:
88:f7:48:dc:ea:be:81:0a:4e:a3:0d:e9:ac:de:1b:cc:fd:c3:
36:c9:0c:e9:0a:f2:62:6a:b4:6f:9e:de:e1:0a:a7:88:44:25:
0b:a6:47:94:84:e7:9e:8a:d8:b6:01:98:61:d5:ae:13:79:14:
c4:dd:c7:bd:ce:e8:f7:31:8d:20:96:c5:55:de:b7:ef:47:91:
a1:3d:42:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org