Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/m7edP4oUuYlSwnuUvG5N7q11fMA.roa
File: m7edP4oUuYlSwnuUvG5N7q11fMA.roa (raw, json)
Hash identifier: BEVLt1yUZI7LTWMO/vqeN1pr+moeD3fPRHeR0F2i/hI=
Subject key identifier: 9B:B7:9D:3F:8A:14:B9:89:52:C2:7B:94:BC:6E:4D:EE:AD:75:7C:C0
Certificate issuer: /CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0
Certificate serial: 01857321E8A154EB2EE106CA3437D8E22EAD
Authority key identifier: 6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/m7edP4oUuYlSwnuUvG5N7q11fMA.roa
Signing time: Mon 02 Jan 2023 15:38:00 +0000
ROA not before: Mon 02 Jan 2023 15:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39642
IP address blocks: 45.14.140.0/22 maxlen: 22
185.37.84.0/22 maxlen: 22
45.80.92.0/22 maxlen: 22
85.218.128.0/17 maxlen: 17
62.107.0.0/16 maxlen: 16
89.184.128.0/19 maxlen: 19
46.32.32.0/19 maxlen: 19
94.138.64.0/19 maxlen: 19
178.132.224.0/20 maxlen: 20
86.52.0.0/16 maxlen: 16
78.157.96.0/19 maxlen: 19
95.154.0.0/18 maxlen: 18
212.10.0.0/16 maxlen: 16
31.185.64.0/19 maxlen: 19
37.128.208.0/20 maxlen: 20
5.206.192.0/21 maxlen: 21
212.37.128.0/19 maxlen: 19
212.112.128.0/19 maxlen: 19
178.155.128.0/17 maxlen: 17
185.5.164.0/22 maxlen: 22
2a02:2b98::/32 maxlen: 32
2a02:6940::/32 maxlen: 32
2a03:7400::/29 maxlen: 32
2a00:1b70::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:e8:a1:54:eb:2e:e1:06:ca:34:37:d8:e2:2e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0
Validity
Not Before: Jan 2 15:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bb79d3f8a14b98952c27b94bc6e4deead757cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:30:f8:d7:d4:cf:4b:66:00:f8:dc:82:0a:4e:
bd:63:8b:94:2b:77:3c:8b:97:3e:ec:b3:08:3f:0f:
ef:12:29:ee:79:9f:b6:e5:74:48:86:07:fc:08:f2:
a9:e4:93:f0:00:8a:fd:3b:5b:bb:e5:9f:87:98:79:
ba:86:c2:26:97:9c:51:f9:78:a7:fe:d6:f9:78:4a:
94:ce:75:49:1c:8d:e5:3d:26:94:6e:12:49:53:94:
87:ea:b7:cc:29:86:d8:cc:47:e4:30:5d:88:57:4f:
cb:da:60:10:27:f1:02:43:e4:fd:d2:9b:14:2d:6e:
82:b3:be:d7:16:48:2b:ea:8e:94:d0:2a:f7:60:73:
a7:2d:b2:1d:00:1f:b9:72:41:5b:c3:c8:c4:6e:25:
e5:d8:ef:82:08:f0:19:4f:29:ae:07:0a:2d:fa:e6:
e4:4e:1a:6e:9c:4e:54:1d:35:39:c8:c9:bf:3d:dc:
bf:a1:0c:bd:b2:53:f9:e6:8f:a9:1e:37:47:b2:df:
5a:73:c3:8c:a7:a6:be:e2:eb:63:43:7a:3b:25:f6:
21:2b:14:eb:6f:b2:07:ba:f5:2c:2f:6e:84:ac:57:
16:29:20:c9:6e:5d:6b:ab:b6:30:ff:72:5e:c3:04:
dd:ea:06:77:96:e0:df:d0:02:f9:8f:14:79:42:32:
fb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B7:9D:3F:8A:14:B9:89:52:C2:7B:94:BC:6E:4D:EE:AD:75:7C:C0
X509v3 Authority Key Identifier:
keyid:6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/m7edP4oUuYlSwnuUvG5N7q11fMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/bfpKH_x0mxxPo7bagZttu5rohaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.206.192.0/21
31.185.64.0/19
37.128.208.0/20
45.14.140.0/22
45.80.92.0/22
46.32.32.0/19
62.107.0.0/16
78.157.96.0/19
85.218.128.0/17
86.52.0.0/16
89.184.128.0/19
94.138.64.0/19
95.154.0.0/18
178.132.224.0/20
178.155.128.0/17
185.5.164.0/22
185.37.84.0/22
212.10.0.0/16
212.37.128.0/19
212.112.128.0/19
IPv6:
2a00:1b70::/29
2a02:2b98::/32
2a02:6940::/32
2a03:7400::/29
Signature Algorithm: sha256WithRSAEncryption
1d:e0:87:cd:8a:db:2e:a6:6b:a8:2b:c7:70:80:ce:a1:1a:dc:
dd:0a:88:a7:9a:f1:b8:b0:ce:88:3d:2b:fa:41:c0:64:4f:64:
4f:72:20:7f:ee:2a:3c:00:94:03:0f:57:e7:37:72:96:f8:0f:
94:6e:98:07:ff:f8:bb:3a:e5:18:e4:67:49:08:bb:a2:e0:1c:
91:a2:69:bf:4e:96:d6:75:da:2f:6f:6b:20:82:2d:0e:5a:a6:
4f:b7:52:33:ec:cc:86:d7:03:b6:1d:c3:d4:cf:e0:2f:84:7f:
a4:de:09:97:34:9d:af:30:b7:b8:b4:12:17:f4:e3:69:2a:14:
33:bd:5b:58:41:0e:3f:03:1c:e1:7d:99:d9:73:62:da:06:e2:
c0:12:5e:ad:90:d3:5b:fd:5f:5f:c7:c9:8d:60:15:98:b0:76:
45:c0:a5:7b:8b:cc:c3:46:82:ca:9d:a0:4d:0d:96:c2:67:1e:
df:f4:8a:ce:23:71:02:76:ce:5f:45:4f:92:d8:7a:20:af:a5:
5c:77:31:74:10:f8:fd:21:23:8e:de:2f:d3:13:00:3e:61:f6:
9c:3a:5e:12:75:a7:25:c2:63:fc:8c:1b:c1:40:85:1b:fd:bf:
f4:2b:03:27:0d:62:fd:ed:1d:39:b1:47:97:d9:29:2a:c2:0a:
5e:ec:ad:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:53 2024 by rpki-client on console-fra.rpki-client.org