Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/AzHxD_mM9jnf_QDfREgRi4U-wyY.roa
File: AzHxD_mM9jnf_QDfREgRi4U-wyY.roa (raw, json)
Hash identifier: 05RCwvm/DKrN8TV2glCN63DztYsaQDnlo8oPZU52eak=
Subject key identifier: 03:31:F1:0F:F9:8C:F6:39:DF:FD:00:DF:44:48:11:8B:85:3E:C3:26
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018A98141F2FAA6DD3C789969DFAAD57B449
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/AzHxD_mM9jnf_QDfREgRi4U-wyY.roa
Signing time: Fri 15 Sep 2023 09:02:50 +0000
ROA not before: Fri 15 Sep 2023 09:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5518
IP address blocks: 80.233.140.0/24 maxlen: 24
80.233.146.0/24 maxlen: 24
80.233.168.0/24 maxlen: 24
80.233.232.0/24 maxlen: 24
62.63.159.0/24 maxlen: 24
194.19.224.0/24 maxlen: 24
194.19.246.0/24 maxlen: 24
62.63.191.0/24 maxlen: 24
62.63.190.0/24 maxlen: 24
185.87.204.0/24 maxlen: 24
78.28.223.0/24 maxlen: 24
78.28.229.0/24 maxlen: 24
78.28.228.0/24 maxlen: 24
78.28.240.0/24 maxlen: 24
213.175.117.0/24 maxlen: 24
78.28.234.0/24 maxlen: 24
78.28.244.0/24 maxlen: 24
78.28.252.0/24 maxlen: 24
78.28.250.0/24 maxlen: 24
78.28.197.0/24 maxlen: 24
78.28.195.0/24 maxlen: 24
213.175.75.0/24 maxlen: 24
78.28.212.0/24 maxlen: 24
78.28.211.0/24 maxlen: 24
2a02:16d8:104::/48 maxlen: 48
2a02:16d8:107::/48 maxlen: 48
2a02:16d8:102::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Sep 2023 09:27:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:14:1f:2f:aa:6d:d3:c7:89:96:9d:fa:ad:57:b4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Sep 15 09:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0331f10ff98cf639dffd00df4448118b853ec326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:96:85:30:10:ca:23:d1:06:ce:04:47:13:6d:
c1:1a:62:3a:ad:42:9e:8f:f8:7d:7c:0e:78:bb:d7:
ea:ff:b5:8e:eb:56:f3:38:fb:ce:e1:bc:54:d6:fa:
31:a1:7f:17:58:7c:c3:68:76:a4:2f:5d:45:37:aa:
bf:cb:36:27:aa:a3:4f:1d:04:24:2c:42:b8:87:e2:
16:c2:3b:74:75:af:98:93:ec:a3:81:35:d8:18:ef:
67:91:9e:39:63:8d:92:98:50:b8:5e:02:9b:68:96:
22:50:40:5d:ff:1c:83:38:6f:a3:e4:0b:53:40:b5:
dd:e6:b0:81:30:c5:e7:5e:e7:d5:84:8a:09:f3:75:
29:ac:c9:c4:e6:a8:e4:8a:30:77:e9:b7:ae:af:30:
ff:95:ac:f5:70:03:31:a9:9d:80:f2:78:8d:12:24:
e4:e7:06:83:9f:24:d1:35:fa:b7:f4:fe:78:c5:c6:
be:ae:8b:01:85:d3:14:83:23:b0:51:de:1c:87:12:
97:25:9b:31:94:a4:22:bc:6f:fb:cf:b8:c1:8e:c0:
fd:28:16:59:54:42:63:ca:ae:84:c5:b3:bc:10:1d:
76:e2:c6:df:9a:7c:c1:60:66:fe:c6:e3:31:1e:fd:
38:c8:8f:5c:48:da:42:d6:fe:ba:13:ea:ac:1d:1b:
61:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:31:F1:0F:F9:8C:F6:39:DF:FD:00:DF:44:48:11:8B:85:3E:C3:26
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/AzHxD_mM9jnf_QDfREgRi4U-wyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.63.159.0/24
62.63.190.0/23
78.28.195.0/24
78.28.197.0/24
78.28.211.0-78.28.212.255
78.28.223.0/24
78.28.228.0/23
78.28.234.0/24
78.28.240.0/24
78.28.244.0/24
78.28.250.0/24
78.28.252.0/24
80.233.140.0/24
80.233.146.0/24
80.233.168.0/24
80.233.232.0/24
185.87.204.0/24
194.19.224.0/24
194.19.246.0/24
213.175.75.0/24
213.175.117.0/24
IPv6:
2a02:16d8:102::/48
2a02:16d8:104::/48
2a02:16d8:107::/48
Signature Algorithm: sha256WithRSAEncryption
29:e5:fd:67:d8:19:2e:d5:f0:d6:24:83:27:cc:1c:de:33:80:
b4:74:03:9e:c1:f5:7e:68:40:77:e3:80:f4:14:c8:a3:e9:c6:
b0:24:4e:93:ea:b9:b4:fc:47:d1:d6:e6:2b:8e:8c:03:63:44:
ca:32:58:a5:51:d4:ab:71:39:e3:53:4d:cb:28:b6:64:da:be:
c3:ce:b7:85:79:1d:32:22:70:72:ed:ee:ac:d3:9d:f2:51:1c:
00:1c:c3:aa:c7:8c:2d:97:f0:b9:93:f5:ce:53:b7:41:12:64:
51:ee:f7:06:ca:26:ac:07:2d:6c:91:da:6d:19:4f:f2:9a:88:
f9:39:4a:94:41:32:79:e2:0a:c5:f1:5f:b7:72:e5:5d:f5:d5:
d5:73:25:c0:7b:da:2c:ca:53:ab:c0:06:bd:7b:2e:37:d5:a5:
14:30:b0:df:47:af:44:6d:4d:74:cf:da:2c:fb:4b:6e:66:38:
b6:45:bb:c7:b4:de:2b:63:c8:c1:b6:00:ec:b2:6c:33:61:63:
7d:76:79:6f:99:d3:4a:22:21:a7:bd:9e:99:5a:a6:c0:1e:01:
66:08:c9:cc:bf:e1:5c:71:02:11:dd:8d:e9:05:96:0b:37:d2:
9f:d9:ad:bf:2d:ca:aa:43:e2:b7:48:20:87:ae:74:15:7b:99:
63:01:5e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:47 2024 by rpki-client on console-ams.rpki-client.org