Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/58zBIGbsWaJqXL_eo_a0cY_0xTk.roa
File: 58zBIGbsWaJqXL_eo_a0cY_0xTk.roa (raw, json)
Hash identifier: eJo19NqBA2rko6FSMEmXPHVHl+BQXIDl5lez8PFHtBU=
Subject key identifier: E7:CC:C1:20:66:EC:59:A2:6A:5C:BF:DE:A3:F6:B4:71:8F:F4:C5:39
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 018A2123D9E51596AF5F102C61248668D754
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/58zBIGbsWaJqXL_eo_a0cY_0xTk.roa
Signing time: Wed 23 Aug 2023 06:45:12 +0000
ROA not before: Wed 23 Aug 2023 06:45:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1901
IP address blocks: 194.152.160.0/19 maxlen: 19
195.230.32.0/19 maxlen: 19
213.240.64.0/18 maxlen: 18
195.64.0.0/19 maxlen: 19
212.60.160.0/19 maxlen: 19
213.157.128.0/19 maxlen: 19
194.96.0.0/16 maxlen: 16
193.80.0.0/15 maxlen: 15
195.170.64.0/19 maxlen: 19
194.166.0.0/16 maxlen: 16
212.16.32.0/19 maxlen: 19
194.118.0.0/16 maxlen: 16
212.124.128.0/19 maxlen: 19
193.154.0.0/16 maxlen: 16
212.88.0.0/19 maxlen: 19
212.197.128.0/18 maxlen: 18
193.83.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 30 Aug 2023 05:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:23:d9:e5:15:96:af:5f:10:2c:61:24:86:68:d7:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Aug 23 06:45:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7ccc12066ec59a26a5cbfdea3f6b4718ff4c539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:33:89:06:ee:fe:5c:1e:4e:90:20:ec:b5:b6:
e2:73:d2:ab:79:ae:89:7d:78:99:07:08:9d:d9:0f:
5b:5e:23:f0:4a:79:9c:8f:29:90:7b:ed:a0:36:df:
9f:44:7e:9a:f7:b6:2b:e2:bc:6f:c3:7d:d3:72:c5:
e6:3a:8d:88:69:ac:79:1c:e4:88:4b:c6:a8:88:45:
e0:e3:6c:1b:ea:44:31:7e:4c:93:b1:4a:c8:2e:e6:
03:05:fa:82:72:aa:e0:9a:15:ad:b5:ae:4c:f0:8b:
bc:53:3f:6e:b9:78:46:6e:7e:e4:81:1f:36:7c:ba:
88:2e:a2:9c:8a:19:2a:f6:bd:40:28:d2:e6:7d:6b:
69:7d:5b:13:81:45:48:e2:6b:7b:54:f0:94:c9:0c:
7b:c2:69:ae:d2:ce:cf:a0:7a:e1:9c:36:e5:ac:50:
c2:e0:0b:1a:15:e5:47:3a:61:c2:74:be:d7:9c:d8:
85:ac:38:fa:bb:56:19:8d:d3:df:b6:01:56:c8:df:
2c:9d:d0:d7:f2:55:98:c4:09:8a:a1:99:45:06:39:
be:05:a0:1b:06:13:7b:ba:38:af:a6:ee:43:a4:43:
65:27:f2:10:d4:d1:fb:6e:e4:b4:c5:72:bc:ab:af:
e4:18:0d:31:3d:21:22:9e:fa:33:06:cb:e4:8e:65:
e3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CC:C1:20:66:EC:59:A2:6A:5C:BF:DE:A3:F6:B4:71:8F:F4:C5:39
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/58zBIGbsWaJqXL_eo_a0cY_0xTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.80.0.0/15
193.83.0.0/16
193.154.0.0/16
194.96.0.0/16
194.118.0.0/16
194.152.160.0/19
194.166.0.0/16
195.64.0.0/19
195.170.64.0/19
195.230.32.0/19
212.16.32.0/19
212.60.160.0/19
212.88.0.0/19
212.124.128.0/19
212.197.128.0/18
213.157.128.0/19
213.240.64.0/18
Signature Algorithm: sha256WithRSAEncryption
c3:5d:10:59:a5:e9:f7:16:2f:46:96:6b:68:e2:37:53:3f:57:
af:7a:f3:55:1e:30:e6:86:bb:e1:5e:82:b3:e1:30:3b:e4:5d:
85:cd:3a:41:06:21:8a:d0:89:33:6d:62:4e:cc:05:13:75:1c:
8b:06:a2:b0:cb:6b:2d:ff:33:bc:2e:d1:da:0a:7c:1c:64:a1:
d5:22:ae:34:59:a1:3d:02:92:c9:3b:43:f4:ab:46:c3:8a:9c:
d6:fb:f8:89:21:a9:5f:ff:3b:85:79:9a:28:f2:bd:5e:de:08:
e6:b9:a3:46:9a:21:95:fe:04:c2:ae:3c:39:2d:ec:ae:7f:b0:
7f:51:2c:6c:5c:b0:a7:b4:33:45:c2:23:4c:37:ab:e1:97:b5:
d7:68:2c:2a:f2:5d:c1:22:6a:61:01:2f:26:03:88:f3:89:f1:
43:5f:cf:1b:a5:dd:c8:bd:94:94:65:31:93:b8:6f:68:38:c4:
ac:df:9f:e0:20:a3:16:32:da:68:7e:98:46:7e:a5:7e:3b:68:
d2:da:cb:7f:f0:b9:4e:75:b9:68:55:fa:53:0c:20:b5:c6:14:
67:c6:21:85:3e:95:d9:57:6b:39:c8:91:85:95:e3:07:64:f8:
12:f9:a7:a1:22:48:45:58:d2:dd:38:2f:6c:6b:52:63:30:f3:
13:ed:99:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org