Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/zeQkM8Qp0tcrwfMq2XOCfI9VqQk.roa
File: zeQkM8Qp0tcrwfMq2XOCfI9VqQk.roa (raw, json)
Hash identifier: QBUIIcFN2wjSJuaj4Gu0MzI/IvcQ6zBNjnSv8EQLWME=
Subject key identifier: CD:E4:24:33:C4:29:D2:D7:2B:C1:F3:2A:D9:73:82:7C:8F:55:A9:09
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 018B854249D990555F6B32B2693471BECD8B
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/zeQkM8Qp0tcrwfMq2XOCfI9VqQk.roa
Signing time: Tue 31 Oct 2023 10:23:15 +0000
ROA not before: Tue 31 Oct 2023 10:23:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206316
IP address blocks: 195.242.177.0/24 maxlen: 24
195.242.178.0/24 maxlen: 24
5.183.97.0/24 maxlen: 24
5.183.98.0/24 maxlen: 24
5.183.96.0/22 maxlen: 22
5.183.96.0/24 maxlen: 24
5.183.99.0/24 maxlen: 24
195.238.248.0/24 maxlen: 24
195.238.252.0/24 maxlen: 24
185.219.130.0/24 maxlen: 24
185.219.131.0/24 maxlen: 24
185.219.128.0/22 maxlen: 22
185.219.129.0/24 maxlen: 24
185.219.128.0/24 maxlen: 24
2a0e:bc04::/30 maxlen: 64
2a0b:e640::/30 maxlen: 64
2a0e:bc00::/29 maxlen: 29
2a0e:bc00::/30 maxlen: 64
2a0b:e640::/29 maxlen: 29
2a0b:e640:1::/48 maxlen: 64
2a0b:e644::/30 maxlen: 64
Validation: Failed, certificate revoked on Fri 24 Nov 2023 19:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:42:49:d9:90:55:5f:6b:32:b2:69:34:71:be:cd:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Oct 31 10:23:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cde42433c429d2d72bc1f32ad973827c8f55a909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d5:b8:4b:08:63:59:ea:12:1f:8f:f7:60:a9:
3d:8e:49:3c:94:1a:58:4a:49:9d:92:6d:d6:74:9c:
d8:4d:11:cb:46:13:9f:89:8d:3e:a8:2b:43:53:b0:
38:bc:42:3a:d3:3c:1c:1c:e1:46:07:37:b7:45:4d:
1b:41:79:a7:db:f8:b5:3c:4f:fb:6b:1b:f1:7c:ed:
3c:48:37:d3:6a:63:e7:e4:c6:62:4e:bb:8d:e7:44:
1d:ce:b4:06:32:d2:63:9d:ae:6b:a5:31:4b:e1:f6:
b2:63:f2:dc:dd:b1:05:a7:00:8f:c0:09:73:fe:34:
aa:d1:c9:8f:15:d0:83:ee:da:a9:8e:29:c1:75:30:
a8:e2:41:68:cb:d6:f8:8a:b7:39:e8:10:6d:0a:27:
07:61:d5:bc:58:47:81:8b:5f:0d:e5:8d:d3:aa:df:
0c:94:55:7d:6d:6a:a3:cb:08:c5:e9:d2:c1:5c:df:
27:f6:dd:44:5d:98:da:8a:07:15:52:84:94:6a:03:
b2:90:46:31:ca:17:de:7e:d1:c5:03:eb:28:86:44:
e8:bb:0a:ff:20:8e:04:b0:52:14:d5:c6:1e:c3:11:
3f:32:2b:ea:3a:7e:1a:99:d9:4d:f5:29:03:e0:e1:
b0:a3:54:6b:74:2f:46:81:37:ef:9f:68:2b:3b:fc:
a8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E4:24:33:C4:29:D2:D7:2B:C1:F3:2A:D9:73:82:7C:8F:55:A9:09
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/zeQkM8Qp0tcrwfMq2XOCfI9VqQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.96.0/22
185.219.128.0/22
195.238.248.0/24
195.238.252.0/24
195.242.177.0-195.242.178.255
IPv6:
2a0b:e640::/29
2a0e:bc00::/29
Signature Algorithm: sha256WithRSAEncryption
51:f8:77:b0:13:57:33:de:24:ae:a5:4a:ab:20:d5:cc:22:1f:
16:7c:be:1a:20:3d:14:76:b1:39:1f:ef:df:dc:c7:a6:87:ea:
ed:29:38:56:56:8f:9e:3a:97:69:91:89:6e:49:54:89:69:3d:
f5:cc:4c:78:d0:63:7c:ec:63:0e:5d:0b:da:c4:13:e0:89:44:
54:c5:ae:00:49:21:1e:35:49:54:7b:f0:2a:65:af:07:46:07:
74:eb:53:8f:df:17:b5:f2:8e:06:81:6c:0b:84:41:7b:97:33:
a7:e9:4d:b1:08:4c:b8:d5:bf:17:f5:b3:2d:4f:9b:3e:c3:74:
f7:c1:18:b8:7c:f0:60:99:fa:e1:92:90:74:ad:c5:4c:1d:71:
1e:ad:b7:79:a0:3b:f9:f0:8a:eb:41:67:08:07:0c:bd:82:b0:
0e:0e:ae:05:b3:0a:2e:9d:33:02:c7:da:0f:79:ef:4d:45:f9:
08:ad:77:39:b5:ae:53:2c:1f:d8:a1:6f:a0:64:72:70:57:48:
df:4e:7e:68:b2:67:5c:59:55:ad:c3:8e:bd:db:2a:3a:2c:3f:
e6:64:1e:f7:0c:d0:ed:3b:58:86:e9:02:fe:92:b6:88:37:81:
e3:21:6c:81:c4:8e:13:d8:69:10:7b:5f:4a:5e:45:21:68:d3:
0b:83:b2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org