Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/G5AgbJ6g6HYIEJwdI_boWKP66W0.roa
File: G5AgbJ6g6HYIEJwdI_boWKP66W0.roa (raw, json)
Hash identifier: vnCtyP+vVaPjYcnH1Kgb95/gAgyMAhXLhApE+wRr2Cw=
Subject key identifier: 1B:90:20:6C:9E:A0:E8:76:08:10:9C:1D:23:F6:E8:58:A3:FA:E9:6D
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01869C296B324385645E29726250ED7DFC74
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/G5AgbJ6g6HYIEJwdI_boWKP66W0.roa
Signing time: Wed 01 Mar 2023 07:53:25 +0000
ROA not before: Wed 01 Mar 2023 07:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 21
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 21
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Mar 2023 08:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:29:6b:32:43:85:64:5e:29:72:62:50:ed:7d:fc:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Mar 1 07:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b90206c9ea0e87608109c1d23f6e858a3fae96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9b:fd:9e:18:09:0c:f3:43:11:eb:3e:79:8e:
fb:dd:1e:4d:57:4f:f4:fc:9a:fc:d1:9b:3b:fd:e8:
56:d8:c0:7c:06:51:16:a4:f6:b1:64:a1:be:77:a5:
84:c9:4e:3c:ce:6c:a8:f5:aa:d9:1a:68:c2:f6:61:
f5:a5:c2:6c:b0:30:bf:0d:02:22:73:37:0b:1b:dc:
5e:df:ae:b8:8a:b3:1c:bc:b1:2f:bb:db:55:9d:99:
61:64:e5:9f:d9:f7:7b:91:10:05:37:95:6f:f8:f4:
8c:6c:b0:df:06:f3:99:34:4e:85:25:03:e4:a5:c4:
3b:74:cf:97:36:f9:03:be:79:18:5b:41:14:bf:27:
94:f1:1e:de:6a:73:da:16:e0:d5:ef:e0:26:f0:05:
a2:84:62:fe:b9:f2:7b:41:90:83:e6:f5:cb:18:c5:
91:14:8c:7f:1c:d0:e9:be:4a:a4:ee:dc:8b:17:96:
6e:8b:d2:b2:d0:6f:f7:c0:34:dc:b4:08:a7:7b:f7:
d6:70:62:bd:3b:01:c6:ca:a2:ca:ff:76:97:b8:70:
7a:5b:ac:5a:b3:4e:5d:f2:67:7a:82:3f:54:e1:d3:
e2:05:03:59:56:6b:0b:88:b0:8d:b4:7d:5e:e0:fa:
a3:76:4e:0a:1d:81:08:5b:6d:6e:59:de:05:40:a8:
5f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:90:20:6C:9E:A0:E8:76:08:10:9C:1D:23:F6:E8:58:A3:FA:E9:6D
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/G5AgbJ6g6HYIEJwdI_boWKP66W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:62:c2:76:d6:17:8d:51:2d:61:e9:d8:96:af:3a:1c:9d:31:
83:39:3a:86:af:77:6b:d3:4f:0a:c8:f9:22:9d:c7:37:7f:ae:
88:cd:36:b0:45:85:93:15:5d:d0:6c:fd:ed:81:75:0f:b9:8c:
da:45:a6:58:ec:bb:09:cb:17:0b:7e:ec:58:06:b8:53:a8:37:
b1:96:0b:00:43:68:23:9a:9b:5e:0c:c6:c1:54:7b:90:8d:50:
49:10:c6:15:59:6d:f9:7f:3a:7c:ce:cd:b7:0a:11:71:2b:79:
97:87:c0:5a:d9:b5:16:2e:65:0d:f2:75:ec:20:2c:04:06:d9:
d6:6f:10:96:fc:ac:91:79:43:e3:7d:14:7b:bd:d3:22:a4:1b:
41:66:70:da:22:5f:25:20:83:e5:b5:4a:11:e9:7a:4c:69:27:
a6:21:a4:61:be:85:24:b0:49:f8:03:b8:16:1f:4f:25:b5:17:
91:8e:e8:37:f5:ca:da:23:9a:0c:e4:c8:53:3c:3b:b8:c7:58:
87:67:a7:b8:d3:31:25:d3:16:0b:a1:bc:c6:28:5c:23:c6:5f:
87:8d:b1:94:a6:10:27:2a:1d:ef:73:e4:a8:94:92:2e:2a:a0:
60:8f:3e:e5:ee:a0:03:57:10:a6:bf:46:7c:09:ee:e3:36:3a:
71:44:f9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org