Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kU_7huMRE-aACZyYS3Q8kT-PVv0.roa
File: kU_7huMRE-aACZyYS3Q8kT-PVv0.roa (raw, json)
Hash identifier: wZ6GDLAGdAAeCZVjTVWSLM8AJC/LdXaPbzG8UlTAdOk=
Subject key identifier: 91:4F:FB:86:E3:11:13:E6:80:09:9C:98:4B:74:3C:91:3F:8F:56:FD
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A6F6350D98CA22E205061FD3BE3AB2676
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kU_7huMRE-aACZyYS3Q8kT-PVv0.roa
Signing time: Thu 07 Sep 2023 11:24:54 +0000
ROA not before: Thu 07 Sep 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 2.56.172.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
2.56.117.0/24 maxlen: 24
2.56.118.0/23 maxlen: 24
2.56.120.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.128.56.0/24 maxlen: 24
185.106.97.0/24 maxlen: 24
185.106.98.0/23 maxlen: 24
139.28.233.0/24 maxlen: 24
139.28.234.0/23 maxlen: 24
45.128.74.0/24 maxlen: 24
45.92.165.0/24 maxlen: 24
45.92.164.0/24 maxlen: 24
171.22.138.0/24 maxlen: 24
171.22.136.0/23 maxlen: 24
194.76.136.0/22 maxlen: 24
185.153.180.0/22 maxlen: 24
171.22.110.0/23 maxlen: 24
171.22.112.0/22 maxlen: 24
171.22.109.0/24 maxlen: 24
171.22.116.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 11:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:63:50:d9:8c:a2:2e:20:50:61:fd:3b:e3:ab:26:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 7 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=914ffb86e31113e680099c984b743c913f8f56fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:40:4a:ab:3d:f9:83:6b:5f:a8:2e:2c:48:
f5:a2:0c:9d:4a:4a:77:5d:c1:e9:76:70:ec:3a:bd:
af:d3:9a:8e:7c:e5:e4:71:d1:8a:31:f1:94:f7:19:
67:ab:53:49:cb:bc:79:8a:e7:2c:4a:cd:68:40:c5:
ae:b3:b7:04:59:86:ce:6b:76:f1:66:96:ed:38:a9:
12:01:c4:1f:26:f7:f2:0b:b5:72:56:58:03:f4:19:
ff:83:89:ec:d2:e2:98:10:8d:fe:e1:1b:95:51:8b:
63:74:1b:6c:c3:86:ac:82:c0:48:39:53:69:81:6e:
f8:8c:73:4a:76:57:79:1d:51:7b:ce:07:bb:69:d4:
03:9f:4b:14:77:8a:0b:18:66:ea:e4:59:c6:20:f1:
32:e0:a1:1d:ca:46:82:64:a0:d0:89:b3:64:66:08:
48:15:52:47:0d:5f:62:0c:6e:5b:2d:64:92:f6:c0:
bc:50:77:d2:b0:b1:b0:c2:9d:2d:2a:b4:3e:8a:d3:
c0:4d:2c:98:a0:73:68:8c:38:72:26:67:9e:57:d7:
80:aa:47:3d:c5:31:08:5e:80:c4:0c:f3:c8:ad:0e:
1b:1d:3d:14:54:9a:22:bd:b3:62:7b:19:af:d2:3a:
ef:70:3f:b8:53:62:08:b5:e8:e1:ea:e7:6f:d6:c2:
cd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4F:FB:86:E3:11:13:E6:80:09:9C:98:4B:74:3C:91:3F:8F:56:FD
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/kU_7huMRE-aACZyYS3Q8kT-PVv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.117.0-2.56.127.255
2.56.172.0-2.56.179.255
45.92.164.0/23
45.128.56.0/24
45.128.74.0/24
139.28.233.0-139.28.235.255
141.98.160.0/21
171.22.109.0-171.22.138.255
185.106.97.0-185.106.99.255
185.153.180.0/22
185.156.108.0/22
185.166.152.0/22
185.203.4.0/22
194.76.136.0/22
Signature Algorithm: sha256WithRSAEncryption
72:13:de:97:5d:cd:c1:d3:6b:59:97:30:dd:42:a1:50:1c:4a:
12:8f:79:e6:93:13:fe:1a:9e:0e:62:20:91:b5:7b:d5:e0:b0:
8f:d7:84:af:af:96:3b:d1:95:5c:7f:92:76:23:04:82:fc:db:
7e:66:f0:41:e9:09:67:76:0b:b1:cc:d6:16:a6:1c:12:83:e4:
a7:e3:0f:e2:ed:49:da:3d:b8:50:2d:55:da:7b:d7:c0:ba:40:
49:75:48:3d:e6:d0:8b:fd:85:ca:d1:a0:7f:57:85:c5:1f:fb:
58:d1:e5:84:7b:d9:17:37:5c:9c:d1:0f:53:30:e6:80:ad:e4:
21:ca:f9:c7:4e:de:99:79:b9:f8:39:68:26:7e:25:d9:e1:e7:
e1:96:ba:cd:ff:12:f7:a9:62:4d:19:4a:91:dd:c4:70:ff:31:
43:bc:63:6b:ec:b6:b0:62:33:cf:c0:98:ce:17:0c:be:6e:39:
aa:76:50:76:e2:a7:b1:5b:d0:75:89:c2:d5:67:93:61:b0:d0:
60:70:9b:be:f7:04:d7:8d:23:7b:54:2f:e1:4e:e9:e7:b4:d1:
95:51:53:1c:df:fa:7b:6e:95:94:c2:1c:95:75:c4:b8:77:8d:
26:dc:4a:5f:53:e8:55:f3:66:ed:0c:22:62:04:9a:61:60:35:
76:ab:1f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org