Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kJkxmI2kcQ0aXareckKjFnHcnnQ.roa
File: kJkxmI2kcQ0aXareckKjFnHcnnQ.roa (raw, json)
Hash identifier: PINL3U10w3sEtg6h2jDLnxAHpCe3Jd9EBBi5RrWklvU=
Subject key identifier: 90:99:31:98:8D:A4:71:0D:1A:5D:AA:DE:72:42:A3:16:71:DC:9E:74
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01882FE76BC791C7D2103F8767F479D812A2
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kJkxmI2kcQ0aXareckKjFnHcnnQ.roa
Signing time: Thu 18 May 2023 17:27:55 +0000
ROA not before: Thu 18 May 2023 17:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.56.0/21 maxlen: 24
87.107.64.0/22 maxlen: 24
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
87.107.148.0/22 maxlen: 24
87.107.156.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
87.107.176.0/21 maxlen: 24
87.107.184.0/22 maxlen: 24
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.60.0/22 maxlen: 24
81.12.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:e7:6b:c7:91:c7:d2:10:3f:87:67:f4:79:d8:12:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 18 17:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=909931988da4710d1a5daade7242a31671dc9e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0a:ab:92:5f:f1:df:d2:77:4f:cd:1a:f9:d5:
e0:57:eb:97:e2:b9:48:53:8d:43:99:ab:36:e8:37:
ae:6d:11:c5:d6:85:0a:45:88:92:99:39:8c:36:6c:
5c:60:62:a6:b1:69:5e:a1:18:d5:45:63:c2:da:10:
a6:08:cf:58:21:47:07:d2:90:51:6d:cb:1d:0b:43:
9e:77:df:39:2a:16:4c:08:2f:01:c5:ac:93:a0:ca:
fc:db:67:84:5b:45:4e:42:47:21:d3:0c:57:61:35:
b2:fe:89:42:5a:d4:4e:e5:e7:39:b6:ad:90:f1:e2:
ac:cb:90:38:af:07:26:35:4f:28:91:09:27:44:31:
c6:2a:30:81:ed:33:83:93:f3:fd:fd:c2:76:90:5f:
88:bb:81:02:8a:f5:75:ac:9a:33:41:e8:34:3d:07:
43:6f:4b:1d:a8:99:d3:19:1f:23:12:de:bc:38:fd:
36:53:46:ed:04:67:0b:e1:d2:c5:f7:1a:19:ce:1a:
74:be:db:c0:52:9d:94:cc:e4:f7:f3:a9:7f:ba:8c:
a8:8e:00:6b:b7:58:41:2e:b6:17:53:23:10:53:3a:
63:32:14:3c:8e:cd:53:93:d2:96:c6:5f:f5:ce:f7:
69:36:b0:e7:56:c1:16:6f:67:52:69:08:f0:14:55:
85:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:99:31:98:8D:A4:71:0D:1A:5D:AA:DE:72:42:A3:16:71:DC:9E:74
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kJkxmI2kcQ0aXareckKjFnHcnnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.56.0-87.107.67.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0/22
87.107.136.0/21
87.107.148.0/22
87.107.156.0/22
87.107.176.0-87.107.187.255
Signature Algorithm: sha256WithRSAEncryption
3c:ef:21:a2:57:96:cc:f5:38:fe:32:28:70:72:03:56:83:4e:
d1:f5:45:cc:62:99:3e:54:cc:69:de:d7:f8:6f:51:73:82:ab:
8e:08:d5:20:31:1b:47:ab:a4:82:b8:d1:98:13:c2:0c:3b:d2:
0b:53:99:56:4c:35:71:35:95:c1:d2:02:0a:ef:71:c1:7e:ff:
33:6d:e8:73:37:9d:60:68:8e:de:9f:bf:44:c2:cc:0f:6e:2b:
60:f8:47:4d:1f:64:6f:f5:68:a1:7b:0f:f5:51:21:18:d4:22:
2c:00:d1:d6:2d:b4:10:66:cd:b4:25:f7:bc:5b:bf:fe:72:b7:
2b:89:e2:82:dd:d5:a8:bd:43:6c:19:68:6a:4a:22:3f:04:15:
3a:53:a9:08:85:d9:4e:fe:25:ad:91:ba:2b:7b:a5:1a:ef:1c:
ef:c7:9e:39:02:d0:71:55:98:0e:d5:82:43:ac:8a:35:ef:12:
70:76:94:d6:a5:31:dc:b3:4f:fd:a1:f8:01:58:ce:b9:e0:28:
d4:7d:5a:b7:c4:0a:ca:7d:6c:2f:4c:f8:57:64:f8:77:cd:bc:
7f:f6:f8:fc:69:4b:07:75:c5:d4:8b:51:42:ff:9b:25:83:06:
f7:33:83:d6:ca:ec:c1:8a:1c:c7:26:4a:5b:29:42:1a:ad:d2:
17:fc:ab:b4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org