Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/xDVm1TsH2vJbFU1nSEcAKo9YuHI.roa
File: xDVm1TsH2vJbFU1nSEcAKo9YuHI.roa (raw, json)
Hash identifier: SegDY2GaqWd6BlBYbay4Tyq11iJfOATKWfyWlSbWgIg=
Subject key identifier: C4:35:66:D5:3B:07:DA:F2:5B:15:4D:67:48:47:00:2A:8F:58:B8:72
Certificate issuer: /CN=e4db0301fe2461c6de3f718d847cb5dc7c00b2d2
Certificate serial: 018A50A85887EDCCA665EE8CCCFE9B87A53D
Authority key identifier: E4:DB:03:01:FE:24:61:C6:DE:3F:71:8D:84:7C:B5:DC:7C:00:B2:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NsDAf4kYcbeP3GNhHy13HwAstI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/xDVm1TsH2vJbFU1nSEcAKo9YuHI.roa
Signing time: Fri 01 Sep 2023 12:12:04 +0000
ROA not before: Fri 01 Sep 2023 12:12:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29107
IP address blocks: 91.216.176.0/24 maxlen: 24
193.201.80.0/23 maxlen: 23
77.87.144.0/22 maxlen: 22
195.69.84.0/23 maxlen: 23
195.69.84.0/22 maxlen: 22
195.69.86.0/23 maxlen: 23
194.0.88.0/23 maxlen: 23
194.0.88.0/22 maxlen: 22
194.0.90.0/23 maxlen: 23
194.0.90.0/24 maxlen: 24
92.249.64.0/18 maxlen: 18
77.87.148.0/22 maxlen: 22
178.54.4.0/24 maxlen: 24
178.54.0.0/17 maxlen: 17
178.54.5.0/24 maxlen: 24
178.54.6.0/24 maxlen: 24
178.54.7.0/24 maxlen: 24
178.54.8.0/24 maxlen: 24
178.54.9.0/24 maxlen: 24
178.54.10.0/24 maxlen: 24
178.54.11.0/24 maxlen: 24
178.54.79.0/24 maxlen: 24
178.54.120.0/24 maxlen: 24
178.54.121.0/24 maxlen: 24
2001:67c:2b14::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:a8:58:87:ed:cc:a6:65:ee:8c:cc:fe:9b:87:a5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4db0301fe2461c6de3f718d847cb5dc7c00b2d2
Validity
Not Before: Sep 1 12:12:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c43566d53b07daf25b154d674847002a8f58b872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f8:08:85:f1:ae:19:28:8c:87:14:46:0f:ea:
65:b2:fa:6a:43:c8:db:87:89:16:f5:e5:d4:89:a7:
2d:d5:e8:11:ad:c5:83:02:ec:ce:11:1d:8a:b4:11:
b2:ee:26:d3:c9:18:51:4a:3a:48:f5:32:68:44:d3:
26:32:05:1f:4a:3d:7b:f6:18:c6:ab:34:26:ad:03:
f5:5e:5d:1e:64:11:e7:a1:5e:3f:9c:4a:8e:94:05:
d7:e4:fe:90:8e:a9:1c:eb:36:50:38:63:6e:09:9a:
eb:7a:41:7d:40:37:23:fd:12:51:1a:8c:35:08:a2:
bc:c0:58:a0:26:f6:a4:67:0a:b8:0f:13:87:b5:15:
a8:23:9b:7e:b1:09:5b:ca:ea:bf:89:3f:ac:14:0b:
ec:d2:7f:9b:b7:90:c0:d2:fe:8e:83:77:20:09:6d:
c3:b9:a0:bf:fa:39:f8:b3:35:22:da:49:42:0f:90:
e0:a5:d0:b7:8c:60:3a:c4:5b:22:65:55:7f:ab:7c:
ad:9e:68:80:81:de:2e:07:7c:88:33:ae:8d:8c:8e:
14:0d:ec:a0:3b:99:a9:03:5b:d5:76:98:53:e5:1c:
5c:73:ce:a1:1e:ee:ee:74:53:22:fe:94:70:ba:93:
d0:e9:ac:78:48:9c:38:0b:cd:47:9e:f7:8e:d7:6e:
12:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:35:66:D5:3B:07:DA:F2:5B:15:4D:67:48:47:00:2A:8F:58:B8:72
X509v3 Authority Key Identifier:
keyid:E4:DB:03:01:FE:24:61:C6:DE:3F:71:8D:84:7C:B5:DC:7C:00:B2:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NsDAf4kYcbeP3GNhHy13HwAstI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/xDVm1TsH2vJbFU1nSEcAKo9YuHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6e6405-dbe7-42b2-887c-ffdebec8f505/1/5NsDAf4kYcbeP3GNhHy13HwAstI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.144.0/21
91.216.176.0/24
92.249.64.0/18
178.54.0.0/17
193.201.80.0/23
194.0.88.0/22
195.69.84.0/22
IPv6:
2001:67c:2b14::/48
Signature Algorithm: sha256WithRSAEncryption
44:6a:2c:35:71:fb:75:e3:bd:76:c0:c3:f7:1a:5f:53:d7:4f:
da:91:93:b5:3e:a4:0b:83:da:6f:04:0e:7a:6c:45:e6:fb:fe:
ef:a7:3f:13:f2:eb:3e:5a:41:8c:42:b4:78:75:51:27:5a:3b:
59:30:b1:6b:46:bf:54:6c:4b:9b:95:ec:95:87:90:2b:b7:23:
3a:9a:eb:e5:76:29:5c:3f:3a:d5:0a:84:6f:c8:8d:78:59:18:
a8:f4:f6:f7:cc:51:8a:01:96:b1:36:2f:69:96:df:90:d3:58:
57:1e:d7:e7:26:e4:c1:b9:b5:41:dd:1e:81:8c:0b:82:cb:4a:
91:a3:6e:35:3a:fa:c8:8e:88:85:32:63:3e:96:98:2b:0a:aa:
a8:26:d1:86:2f:a7:bf:ac:8a:9f:78:30:d0:10:74:a5:31:4a:
c6:d3:f8:14:2d:e0:aa:e9:80:a6:4f:82:a2:e5:d4:87:ab:62:
f8:71:1f:53:e0:47:6c:db:0c:e6:8f:e6:ff:15:4a:aa:34:38:
af:af:06:d8:d2:2f:ca:06:1d:cb:40:7e:81:9e:e6:ef:5c:1d:
5b:f5:dc:08:ee:30:2d:c8:90:6d:05:4e:8f:56:48:b2:a0:13:
78:58:95:74:73:b8:8b:14:73:89:54:d9:9a:6d:32:ea:16:54:
9b:85:4a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org