Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/9B4dPQu8oErt6i3MjHlU5tvOi0c.roa
File: 9B4dPQu8oErt6i3MjHlU5tvOi0c.roa (raw, json)
Hash identifier: ziHH6zlDU+fu24IEYz7WhLXswTh9uXaMkRJnIKVhblM=
Subject key identifier: F4:1E:1D:3D:0B:BC:A0:4A:ED:EA:2D:CC:8C:79:54:E6:DB:CE:8B:47
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01869C3BBC4547BAFA15460F7DD1809A149D
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/9B4dPQu8oErt6i3MjHlU5tvOi0c.roa
Signing time: Wed 01 Mar 2023 08:13:25 +0000
ROA not before: Wed 01 Mar 2023 08:13:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 24
62.220.124.0/22 maxlen: 22
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 21
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 21
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 11:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:3b:bc:45:47:ba:fa:15:46:0f:7d:d1:80:9a:14:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Mar 1 08:13:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f41e1d3d0bbca04aedea2dcc8c7954e6dbce8b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:d3:5e:7c:4e:14:d2:07:e4:3b:06:16:28:
13:d9:ee:c7:04:27:5e:a4:0f:ef:bb:6b:f2:e7:96:
01:3c:ea:a2:5f:57:7b:c8:53:fd:91:02:46:38:32:
1f:14:99:fe:30:04:95:c8:b4:ab:27:53:97:94:6b:
61:cf:ab:3b:f4:43:0d:0a:5c:d9:a4:b2:49:12:8e:
8f:c3:0b:e3:28:ba:ea:69:16:9d:6f:34:d8:42:60:
50:c5:10:39:56:aa:82:b0:ee:76:08:15:c3:5c:8c:
83:4f:1b:31:5c:8f:f5:40:ee:71:e2:ea:2c:5a:4c:
08:f1:5d:f0:2b:46:a5:67:89:e2:ea:b6:b2:2c:09:
77:6e:3b:b2:01:8a:ff:06:84:a0:6b:2a:3f:b1:a1:
fb:37:0c:9d:d3:a0:68:41:ce:d7:d6:91:0a:a2:80:
64:8b:df:a9:0d:4d:83:15:db:ca:1f:48:6a:49:82:
55:b1:cd:49:59:c7:36:e0:2c:73:73:4f:f2:6c:db:
5f:13:34:6d:40:01:63:82:f3:02:10:a3:72:70:10:
25:94:49:3e:e4:fa:fe:a3:68:88:1a:f5:85:cb:8c:
6b:c7:94:e1:d0:3b:79:c9:35:20:49:2f:7d:91:93:
e9:3b:70:94:59:19:bd:5f:1d:22:e6:3f:e6:b9:52:
fb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1E:1D:3D:0B:BC:A0:4A:ED:EA:2D:CC:8C:79:54:E6:DB:CE:8B:47
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/9B4dPQu8oErt6i3MjHlU5tvOi0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0/21
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
19:0b:3c:31:cb:c0:6f:f8:0f:a9:af:38:75:56:aa:0f:ee:51:
58:9e:cb:b6:13:65:ad:69:65:2e:f1:01:ed:12:52:a5:a1:0f:
8f:66:71:61:0e:df:85:8d:37:c5:71:3a:d4:fb:3f:77:00:38:
3a:e9:f7:7d:2b:00:00:ed:dd:7e:b9:07:13:55:48:f6:65:8b:
28:ed:18:fc:32:8e:b8:4a:e9:2c:c2:cf:e2:dd:46:17:1c:3d:
7c:df:7e:25:ba:81:41:e5:70:a6:e8:6a:5b:35:aa:91:a6:ac:
23:d8:92:98:29:b6:6d:57:2d:7e:8c:7f:a2:09:a0:c4:68:d9:
7a:ae:c8:fe:1c:a0:7e:b7:f4:79:2f:ac:b8:70:b6:e1:33:6e:
fb:59:bc:0c:ee:52:ba:52:04:5a:27:51:30:1f:72:ad:af:7e:
ab:c9:26:6d:4f:52:b9:5a:76:87:4e:a6:df:81:fd:3d:ce:7e:
1a:18:30:dc:9a:b6:7a:b8:69:49:bc:50:33:6a:9d:75:32:1b:
49:93:4d:ea:0d:88:e6:95:e9:91:17:04:c9:3d:f5:df:ff:fc:
b4:e1:96:7a:b5:09:a2:7f:eb:a3:53:ec:1f:b1:75:e7:c5:88:
58:b7:9b:03:b7:1f:9b:b7:77:4f:59:1e:20:2b:c1:6f:6e:34:
05:3c:16:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:59 2024 by rpki-client on console-ams.rpki-client.org