Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/jj2hK-SGSZMU0EWXjHmYIyLjCtk.roa
File: jj2hK-SGSZMU0EWXjHmYIyLjCtk.roa (raw, json)
Hash identifier: 2O6WyooWDy3Cr66xReUp5GeoMez6NuBMuJ0Dv6UDqtM=
Subject key identifier: 8E:3D:A1:2B:E4:86:49:93:14:D0:45:97:8C:79:98:23:22:E3:0A:D9
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 018925584AF60A5321A10DA087657DFCE690
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/jj2hK-SGSZMU0EWXjHmYIyLjCtk.roa
Signing time: Wed 05 Jul 2023 09:18:10 +0000
ROA not before: Wed 05 Jul 2023 09:18:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13193
IP address blocks: 213.41.128.0/17 maxlen: 24
213.215.0.0/18 maxlen: 24
185.33.40.0/22 maxlen: 24
185.43.68.0/22 maxlen: 24
194.146.224.0/22 maxlen: 24
194.79.128.0/18 maxlen: 24
80.248.208.0/20 maxlen: 24
62.212.96.0/19 maxlen: 24
80.65.224.0/20 maxlen: 24
178.132.16.0/20 maxlen: 24
79.170.216.0/21 maxlen: 24
194.242.112.0/22 maxlen: 24
5.23.40.0/21 maxlen: 24
93.184.32.0/20 maxlen: 24
171.25.208.0/22 maxlen: 24
78.40.48.0/21 maxlen: 24
2001:7a8::/32 maxlen: 32
2a01:68::/32 maxlen: 32
2001:7a8:3440::/44 maxlen: 44
2a01:6460::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:58:4a:f6:0a:53:21:a1:0d:a0:87:65:7d:fc:e6:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jul 5 09:18:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e3da12be486499314d045978c79982322e30ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:1e:9e:f4:93:ef:23:7f:41:f0:9a:01:e4:
47:dd:e7:75:65:0d:50:cb:25:7f:8b:ff:c5:85:b1:
be:65:db:ee:49:aa:30:f3:d0:3c:86:9e:6c:b3:3b:
a7:60:76:be:d7:10:36:bb:ea:9c:14:2e:a3:17:83:
2c:e5:60:1e:16:cb:84:44:b4:3d:d6:e8:79:8a:67:
e2:be:bb:98:b6:0b:5d:f9:e1:18:a3:d3:0d:b4:6d:
d9:58:3f:2c:fd:23:38:37:9c:38:fe:88:22:27:d4:
01:10:7b:81:31:5d:ff:47:ad:e4:ce:b1:3d:8e:a3:
cf:c8:60:5a:51:5a:49:b9:27:6d:0e:1c:d6:e2:46:
6b:07:10:82:6d:22:00:36:9b:c6:54:aa:55:12:1f:
f4:5c:ed:81:14:3a:c1:0b:e1:f2:0f:15:66:49:1d:
5b:a2:77:80:92:1d:6e:a7:3c:0b:bf:78:71:de:5c:
fc:cf:b9:0b:01:81:89:0d:6c:dc:d5:f9:73:ed:6c:
60:7f:5c:bd:db:45:a4:90:a6:80:b6:da:dd:ba:eb:
c1:e0:a5:c2:3e:54:ec:05:28:4c:fc:48:c0:2a:39:
ab:4b:9a:f6:c7:15:b2:09:b4:39:ce:ba:84:37:ba:
e3:fd:4a:b1:5c:9f:82:64:41:23:35:01:09:d1:86:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3D:A1:2B:E4:86:49:93:14:D0:45:97:8C:79:98:23:22:E3:0A:D9
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/jj2hK-SGSZMU0EWXjHmYIyLjCtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.40.0/21
62.212.96.0/19
78.40.48.0/21
79.170.216.0/21
80.65.224.0/20
80.248.208.0/20
93.184.32.0/20
171.25.208.0/22
178.132.16.0/20
185.33.40.0/22
185.43.68.0/22
194.79.128.0/18
194.146.224.0/22
194.242.112.0/22
213.41.128.0/17
213.215.0.0/18
IPv6:
2001:7a8::/32
2a01:68::/32
2a01:6460::/32
Signature Algorithm: sha256WithRSAEncryption
4b:8a:66:be:42:a4:27:5e:24:c5:9d:6b:bb:5d:00:e7:f6:ec:
4f:8f:0c:f2:9b:25:32:52:d4:0d:65:54:9f:01:57:2a:71:9c:
b5:b6:a7:bf:fb:cf:83:e2:cb:b8:b4:05:e0:bf:c9:f4:22:ee:
9d:b0:95:5e:b7:37:ef:50:61:cb:a1:9f:17:c5:2b:61:52:f5:
5b:45:1e:57:da:ee:59:f9:fa:a1:10:73:48:37:65:5d:0c:22:
42:60:66:17:41:db:84:ee:6f:05:6c:fe:44:ce:06:b4:bc:c6:
e9:9b:45:e3:6e:21:d1:af:3b:2e:23:c4:cd:b2:ed:6d:fa:c7:
41:b7:a2:3d:7c:2a:45:09:66:12:8c:ea:5f:e1:2f:1e:5e:eb:
a3:3c:6e:42:a2:41:e6:39:2e:1b:fc:9a:eb:a2:15:8f:6c:da:
23:0b:80:00:b5:9a:67:e5:f5:5c:3e:4c:72:fd:8f:6d:24:14:
dd:6c:02:64:cc:58:01:79:df:e9:62:db:ab:29:d4:e0:86:1d:
99:5f:b2:b1:c4:72:5a:20:e5:75:88:b9:b5:98:68:5a:7d:33:
6e:a5:16:1a:b3:ac:57:65:c2:57:6f:72:4d:a9:f7:d4:52:b9:
34:b3:0f:da:c0:ee:62:61:48:37:9d:40:e8:b4:20:26:5c:84:
01:3a:f4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:27 2024 by rpki-client on console-fra.rpki-client.org