Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/ARsyaRU2Lqub20gbp0TfD19_TnI.roa
File: ARsyaRU2Lqub20gbp0TfD19_TnI.roa (raw, json)
Hash identifier: 8OZ1Mu5Vix7Rd5bajRfJGGRNNjArrOIT6XFhJfNZFvk=
Subject key identifier: 01:1B:32:69:15:36:2E:AB:9B:DB:48:1B:A7:44:DF:0F:5F:7F:4E:72
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 0185715E48CA5534C2C03BC59A24DDDA4738
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/ARsyaRU2Lqub20gbp0TfD19_TnI.roa
Signing time: Mon 02 Jan 2023 07:24:42 +0000
ROA not before: Mon 02 Jan 2023 07:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 83.149.64.0/18 maxlen: 18
212.7.208.0/22 maxlen: 22
37.48.64.0/18 maxlen: 18
212.32.224.0/19 maxlen: 19
185.17.184.0/22 maxlen: 22
81.171.0.0/19 maxlen: 19
178.162.164.0/22 maxlen: 22
178.162.168.0/22 maxlen: 22
212.7.192.0/20 maxlen: 20
178.162.176.0/20 maxlen: 20
89.149.192.0/20 maxlen: 20
89.149.192.0/18 maxlen: 18
94.75.192.0/18 maxlen: 18
95.168.160.0/20 maxlen: 20
82.192.64.0/19 maxlen: 19
81.17.51.0/24 maxlen: 24
81.17.49.0/24 maxlen: 24
81.17.47.0/24 maxlen: 24
81.17.55.0/24 maxlen: 24
81.17.54.0/24 maxlen: 24
81.17.53.0/24 maxlen: 24
81.17.52.0/24 maxlen: 24
62.212.64.0/19 maxlen: 19
5.79.64.0/18 maxlen: 18
213.227.128.0/19 maxlen: 19
85.17.0.0/16 maxlen: 16
178.162.128.0/18 maxlen: 18
95.211.0.0/16 maxlen: 16
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/36 maxlen: 36
2001:1af8:8000::/40 maxlen: 40
2001:1af8:8110::/44 maxlen: 44
2001:1af8:8100::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 22 Feb 2023 09:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:48:ca:55:34:c2:c0:3b:c5:9a:24:dd:da:47:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Jan 2 07:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=011b326915362eab9bdb481ba744df0f5f7f4e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:5f:6c:4e:0f:55:8c:0f:94:19:29:26:3a:
aa:d4:1c:59:27:77:b7:69:66:77:c8:ed:1a:cb:ad:
c6:2b:b1:18:17:31:f4:02:8a:7a:b8:a4:15:54:4f:
d5:b3:65:6d:15:7c:04:48:71:7d:ac:61:b5:26:f4:
74:25:1b:f5:0d:98:f0:0b:9f:01:5c:e3:90:4c:7f:
71:8b:0d:d9:2a:c8:b7:ba:2c:88:79:65:3c:41:34:
c7:03:5b:33:82:4d:e9:94:6d:d7:dc:00:b0:b5:df:
51:74:5c:cc:b7:a3:61:79:f0:98:95:da:99:73:6a:
ed:82:99:fe:6b:1c:5d:b5:90:ab:a5:ed:34:2d:1a:
6c:fc:3f:3a:b1:e8:0d:7a:3c:f9:df:a1:45:db:46:
d5:24:74:95:bb:3b:bf:5a:de:fa:3f:62:bc:fa:70:
13:e1:e7:a6:fe:5f:92:53:2c:92:5d:1f:65:e2:9f:
e0:d5:0b:38:fe:6e:e1:f7:5b:b1:32:5e:c1:b4:68:
9a:33:09:b4:88:43:00:b1:55:bb:c7:72:39:c3:99:
3f:46:88:8a:0c:75:0f:0f:3b:f4:68:96:7c:bd:c6:
65:97:fb:f8:45:82:fa:25:f9:04:9b:23:7f:3c:a5:
68:19:12:9c:d0:98:a2:d7:f2:44:4d:f6:72:d0:00:
d5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1B:32:69:15:36:2E:AB:9B:DB:48:1B:A7:44:DF:0F:5F:7F:4E:72
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/ARsyaRU2Lqub20gbp0TfD19_TnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.79.64.0/18
37.48.64.0/18
62.212.64.0/19
81.17.47.0/24
81.17.49.0/24
81.17.51.0-81.17.55.255
81.171.0.0/19
82.192.64.0/19
83.149.64.0/18
85.17.0.0/16
89.149.192.0/18
94.75.192.0/18
95.168.160.0/20
95.211.0.0/16
178.162.128.0/18
185.17.184.0/22
212.7.192.0-212.7.211.255
212.32.224.0/19
213.227.128.0/19
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
65:77:fe:7a:a3:26:5b:03:2b:7c:ff:5d:94:8f:79:8a:44:73:
cb:d7:fd:3f:43:e5:c9:df:9f:72:45:78:5f:a0:ee:45:af:fc:
49:5b:35:87:1d:22:e5:03:3d:86:98:8a:db:9c:9e:63:c9:9e:
93:92:2d:03:f5:7b:9c:d9:72:64:c3:10:d6:04:8e:8a:35:a5:
63:cc:9b:3e:34:ab:51:e5:76:0e:c8:17:17:c7:ea:a5:a4:0e:
dc:b8:dd:f4:b3:0f:fb:69:30:d4:6b:f2:97:23:62:fd:d7:bf:
7c:27:22:54:d7:04:25:8f:2a:76:3c:6e:25:64:b3:94:cb:f8:
b0:f3:4f:6d:a0:80:7a:f1:7d:6f:24:78:9b:11:b4:e4:fc:e2:
af:0b:8a:32:d5:ab:0c:6d:0a:4f:0f:db:2e:e2:d5:02:ad:f5:
ac:fb:d6:59:bb:d4:0b:2b:b1:d2:5e:94:ab:1a:d0:a7:6a:14:
d2:9a:63:ca:1e:56:ab:f4:7c:40:23:05:ac:8f:2e:a1:5e:a4:
60:ee:28:e7:92:6f:3f:d1:a0:83:b6:06:95:39:16:36:e6:c4:
d5:a9:e6:f9:84:51:56:14:01:9a:5b:3a:4f:a9:51:5a:82:ad:
14:14:7e:f2:3d:c4:d3:4b:21:98:7e:40:ba:11:57:33:9d:b1:
aa:53:05:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:50 2024 by rpki-client on console-ams.rpki-client.org