Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/5f4518-82e9-4292-a54e-15cc9dc7bd87/1/6tTqQ_9XJStmvgSvgXkmu5p0XcU.roa
File: 6tTqQ_9XJStmvgSvgXkmu5p0XcU.roa (raw, json)
Hash identifier: Y3EaEenc1gCiYHgOTAmdWg16Dw4Ulc037WQibp9iP4o=
Subject key identifier: EA:D4:EA:43:FF:57:25:2B:66:BE:04:AF:81:79:26:BB:9A:74:5D:C5
Certificate issuer: /CN=a16b0d8ab49436550b6abf45b79035aec6aff23c
Certificate serial: 0189F842B3EAB1AC7A3E243159DB735278D2
Authority key identifier: A1:6B:0D:8A:B4:94:36:55:0B:6A:BF:45:B7:90:35:AE:C6:AF:F2:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWsNirSUNlULar9Ft5A1rsav8jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/5f4518-82e9-4292-a54e-15cc9dc7bd87/1/6tTqQ_9XJStmvgSvgXkmu5p0XcU.roa
Signing time: Tue 15 Aug 2023 08:14:28 +0000
ROA not before: Tue 15 Aug 2023 08:14:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34971
IP address blocks: 188.164.128.0/21 maxlen: 24
95.157.96.0/24 maxlen: 24
195.88.4.0/23 maxlen: 24
185.34.136.0/24 maxlen: 24
37.247.48.0/21 maxlen: 24
2a00:dcc7:d000::/38 maxlen: 48
2a00:dcc0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:42:b3:ea:b1:ac:7a:3e:24:31:59:db:73:52:78:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a16b0d8ab49436550b6abf45b79035aec6aff23c
Validity
Not Before: Aug 15 08:14:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead4ea43ff57252b66be04af817926bb9a745dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cb:72:49:e6:26:09:a1:9c:b8:a4:50:4b:2e:
8e:8e:7a:2d:eb:ff:bf:fd:86:86:e4:d5:53:45:03:
8e:9b:ab:4b:3b:11:77:d7:d4:23:28:df:0a:41:77:
13:ab:cc:b8:32:a1:3e:7e:f2:78:6d:1d:03:5d:05:
a6:a9:ca:68:cb:69:cc:ee:af:f4:02:dc:4e:c2:52:
13:79:5d:63:1e:97:2a:8d:9b:ed:bf:d1:41:27:a1:
b2:7c:a1:be:4b:c8:ff:3e:f7:37:eb:f2:21:72:79:
05:a2:70:a5:cd:cd:79:19:97:91:d4:0f:bd:1c:9d:
00:22:75:1c:5c:04:98:9a:07:1a:6a:55:7e:94:9b:
a1:72:dc:f3:7f:49:87:64:b2:16:37:d8:1b:72:04:
13:a9:af:83:6c:a0:8b:e4:99:be:79:fa:9e:a3:7d:
24:e0:eb:76:16:16:11:40:c9:f6:5a:d0:19:b5:60:
88:31:82:47:5c:f9:c6:4a:d4:4c:5d:91:97:54:23:
38:4a:2a:47:04:eb:b8:7a:f4:d8:90:18:98:71:25:
39:a6:7c:a7:4d:51:43:b9:0f:0f:0a:d4:d4:26:14:
90:34:ec:05:ad:83:07:a2:4c:df:95:1f:7e:30:6a:
23:48:f8:00:9f:18:62:05:c5:51:33:fc:52:93:ae:
e7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D4:EA:43:FF:57:25:2B:66:BE:04:AF:81:79:26:BB:9A:74:5D:C5
X509v3 Authority Key Identifier:
keyid:A1:6B:0D:8A:B4:94:36:55:0B:6A:BF:45:B7:90:35:AE:C6:AF:F2:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWsNirSUNlULar9Ft5A1rsav8jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f4518-82e9-4292-a54e-15cc9dc7bd87/1/6tTqQ_9XJStmvgSvgXkmu5p0XcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f4518-82e9-4292-a54e-15cc9dc7bd87/1/oWsNirSUNlULar9Ft5A1rsav8jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.247.48.0/21
95.157.96.0/24
185.34.136.0/24
188.164.128.0/21
195.88.4.0/23
IPv6:
2a00:dcc0::/32
2a00:dcc7:d000::/38
Signature Algorithm: sha256WithRSAEncryption
5f:f7:ae:93:26:ae:8d:19:9e:40:47:e1:39:0a:3f:53:fa:f6:
80:01:f2:70:55:2b:ce:26:e7:4f:d6:30:10:11:73:88:d9:76:
f4:0d:12:90:33:10:d8:c0:0d:a6:01:af:6a:b5:c0:69:e1:a0:
0d:c4:ac:53:b3:63:91:99:8d:75:d6:f9:fa:9b:1b:8e:5e:b2:
90:88:41:f5:a3:bf:65:0c:9a:53:f7:9d:01:f9:e1:b0:8a:32:
bd:cb:46:98:3c:ab:7e:1f:1d:00:7b:25:0f:d8:bb:cf:45:ba:
6d:92:eb:11:2f:c6:19:11:5e:bd:06:60:12:e9:34:06:e3:17:
24:c8:61:77:7e:58:f6:d2:13:16:34:da:db:54:16:a8:9b:42:
ea:40:e0:46:eb:53:55:19:9f:d5:e9:db:4f:c4:41:f8:e2:0a:
9d:9f:0f:9d:98:fc:77:4b:ee:c1:fb:30:87:06:ae:21:2f:a0:
23:6b:41:6f:0c:cd:e2:ec:d1:33:80:80:da:a3:1f:57:e7:12:
56:d1:1e:74:8e:ec:26:76:84:4d:c6:9e:04:10:06:08:23:ab:
6d:ac:fc:45:2f:37:14:28:0e:e1:5b:d4:50:0b:d0:4a:48:e7:
53:84:66:47:20:91:32:90:30:b4:de:ec:ec:61:b4:5a:b1:15:
99:56:21:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org