Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/_vaBamvBRQg6c2XvTU__LCtl2Ik.roa
File: _vaBamvBRQg6c2XvTU__LCtl2Ik.roa (raw, json)
Hash identifier: WNXhzIwDkCPUlJJ8mZH2W+aS/tWeqU+JeuMmdSPn7yQ=
Subject key identifier: FE:F6:81:6A:6B:C1:45:08:3A:73:65:EF:4D:4F:FF:2C:2B:65:D8:89
Certificate issuer: /CN=57c1fe8083646749816ad3fa64098345fb61e9f5
Certificate serial: 01856F1DB755A3F2E52B389B48C334536BE9
Authority key identifier: 57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/_vaBamvBRQg6c2XvTU__LCtl2Ik.roa
Signing time: Sun 01 Jan 2023 20:54:56 +0000
ROA not before: Sun 01 Jan 2023 20:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57099
IP address blocks: 164.138.80.0/21 maxlen: 21
146.255.104.0/21 maxlen: 21
185.16.224.0/22 maxlen: 22
185.47.216.0/24 maxlen: 24
185.47.217.0/24 maxlen: 24
185.47.218.0/24 maxlen: 24
185.47.219.0/24 maxlen: 24
91.229.222.0/24 maxlen: 24
91.229.223.0/24 maxlen: 24
185.56.40.0/24 maxlen: 24
185.56.41.0/24 maxlen: 24
185.56.42.0/24 maxlen: 24
185.56.43.0/24 maxlen: 24
2a04:3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 22 Nov 2023 12:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:b7:55:a3:f2:e5:2b:38:9b:48:c3:34:53:6b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c1fe8083646749816ad3fa64098345fb61e9f5
Validity
Not Before: Jan 1 20:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fef6816a6bc145083a7365ef4d4fff2c2b65d889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cb:bf:9e:f9:c1:84:a7:10:59:46:70:42:00:
d5:38:02:3b:f0:5a:ed:39:80:55:7e:30:68:1b:59:
56:5f:e2:58:06:ec:b8:18:8a:c5:bd:12:03:a9:f5:
dd:4a:f2:4f:bb:3b:7d:a2:cd:61:a8:e2:5c:64:2f:
2c:51:47:2c:f8:6e:f7:3d:98:74:2b:fa:70:ed:4a:
62:f8:a7:2a:de:3f:c6:76:1f:1d:41:00:79:00:c0:
a7:d9:6c:2e:10:8e:93:e8:78:ec:b0:7b:a1:d6:d3:
3e:37:2c:7a:3e:d5:5f:9d:f4:2b:f0:da:a8:40:03:
b2:83:e5:df:4c:10:c5:7d:15:3c:3f:af:44:d4:a6:
7b:a8:46:1d:ee:a2:be:c5:12:4c:f4:7b:6e:d7:63:
ae:3c:06:d9:32:63:06:a6:d9:3c:48:26:00:40:6f:
00:3c:cf:b6:e2:da:a9:1b:b5:ab:02:b0:cf:1a:df:
bf:99:87:d8:3c:84:43:24:9e:43:05:44:44:69:a3:
e6:d7:1c:80:7f:e8:65:b5:df:49:81:47:e5:b5:ad:
58:b3:46:43:1b:ae:8a:58:85:b6:09:f9:29:ff:fd:
8c:4b:f2:d2:55:06:ff:b7:23:e0:ec:38:17:33:7d:
8d:7f:cb:2c:d1:dd:59:c8:1c:53:e1:a0:ae:74:c7:
51:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F6:81:6A:6B:C1:45:08:3A:73:65:EF:4D:4F:FF:2C:2B:65:D8:89
X509v3 Authority Key Identifier:
keyid:57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/_vaBamvBRQg6c2XvTU__LCtl2Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/V8H-gINkZ0mBatP6ZAmDRfth6fU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.222.0/23
146.255.104.0/21
164.138.80.0/21
185.16.224.0/22
185.47.216.0/22
185.56.40.0/22
IPv6:
2a04:3c0::/29
Signature Algorithm: sha256WithRSAEncryption
a5:ff:39:48:4a:dd:9a:60:48:45:90:97:fb:8a:0d:59:e6:c9:
62:b8:13:7d:26:06:c7:d2:2d:12:fd:f0:62:4c:b0:9b:18:6b:
31:cd:9a:cb:90:d4:20:7d:47:8a:55:aa:76:0a:ad:13:b3:a7:
14:7d:9b:0d:bc:13:f2:9b:1d:f3:3d:5e:f5:7e:26:30:75:b6:
ab:50:81:22:14:ce:68:3c:1d:6d:24:77:97:29:f9:a3:fe:b9:
4a:80:ed:5b:a4:6d:48:50:6d:05:7a:d9:e2:c2:33:b3:3d:9c:
c6:ba:74:d7:53:7f:16:43:37:fd:71:d0:39:a7:4f:72:fe:db:
78:d2:44:98:57:a1:07:61:84:7f:83:56:a5:2c:69:6e:c2:2d:
dd:92:82:79:20:39:c6:5d:2e:ed:90:be:2a:31:6a:9b:ef:01:
db:28:a1:4c:d7:11:8a:d2:69:bf:e7:8c:85:b9:a5:f5:d1:d7:
41:ee:54:5c:6e:6c:dd:07:69:55:4b:a0:d6:0f:e2:c3:60:63:
fb:35:a7:26:a3:05:08:15:32:7f:ba:60:ac:e3:b6:4d:fd:56:
81:88:a1:57:7e:f7:62:11:34:9f:97:89:8d:73:5a:17:ec:a0:
bc:25:34:af:b6:0d:60:9f:1c:e8:8c:f0:0b:ca:e0:e5:d1:db:
59:f1:10:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:54 2024 by rpki-client on console-fra.rpki-client.org