Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/K-cs0tclQ9p3RDUXJTr3yKGXszs.roa
File: K-cs0tclQ9p3RDUXJTr3yKGXszs.roa (raw, json)
Hash identifier: MLovCchi8ZWExlhGRpmHxp/rL6D21BiSTinu9caRPJk=
Subject key identifier: 2B:E7:2C:D2:D7:25:43:DA:77:44:35:17:25:3A:F7:C8:A1:97:B3:3B
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018C19D7CABD28183A9BB72B8F9E738DBB76
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/K-cs0tclQ9p3RDUXJTr3yKGXszs.roa
Signing time: Wed 29 Nov 2023 06:50:21 +0000
ROA not before: Wed 29 Nov 2023 06:50:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12578
IP address blocks: 185.38.56.0/22 maxlen: 22
46.109.0.0/16 maxlen: 16
195.122.28.0/24 maxlen: 24
195.122.29.0/24 maxlen: 24
195.122.26.0/23 maxlen: 23
81.198.0.0/16 maxlen: 16
78.84.0.0/16 maxlen: 16
195.114.32.0/19 maxlen: 19
81.198.95.0/24 maxlen: 24
194.8.16.0/21 maxlen: 21
194.8.24.0/22 maxlen: 22
195.13.201.0/24 maxlen: 24
195.13.200.0/24 maxlen: 24
80.232.150.13/32 maxlen: 32
80.232.195.0/24 maxlen: 24
195.13.215.0/24 maxlen: 24
84.237.128.0/17 maxlen: 17
195.13.128.0/17 maxlen: 17
80.232.128.0/17 maxlen: 17
80.232.150.0/24 maxlen: 24
80.232.147.0/24 maxlen: 24
95.68.0.0/17 maxlen: 17
87.246.144.0/20 maxlen: 20
195.2.96.0/19 maxlen: 19
195.122.0.0/19 maxlen: 19
87.246.160.0/19 maxlen: 19
62.85.0.0/17 maxlen: 17
195.13.228.0/24 maxlen: 24
195.13.237.0/24 maxlen: 24
195.13.245.0/24 maxlen: 24
195.13.253.0/24 maxlen: 24
195.13.251.0/24 maxlen: 24
195.13.249.0/24 maxlen: 24
87.110.0.0/16 maxlen: 16
91.105.0.0/17 maxlen: 17
2a02:2330::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 30 Nov 2023 08:22:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:19:d7:ca:bd:28:18:3a:9b:b7:2b:8f:9e:73:8d:bb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Nov 29 06:50:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2be72cd2d72543da77443517253af7c8a197b33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:07:74:f3:fb:4b:73:25:0f:bf:e9:3d:9d:8d:
32:b1:a5:fd:20:c8:f5:2b:e9:c9:92:d5:41:a1:90:
da:49:7b:c5:83:af:40:2f:70:d6:09:97:ae:9c:50:
83:84:ec:cc:dd:80:4b:58:c6:70:87:35:e0:6e:c2:
3d:80:08:d4:ab:cf:a0:df:a8:65:75:76:96:52:61:
60:d4:6b:b1:b4:c7:2d:b6:87:a7:97:c8:03:67:33:
08:b6:ff:57:99:7b:3c:0b:67:ed:da:03:8f:64:ae:
9d:c3:71:01:db:c3:76:c6:9c:19:b7:7a:cd:b1:77:
a3:96:09:56:c4:64:5f:9c:de:cb:d3:cf:5c:7b:f5:
d4:23:ba:9b:e5:d2:b6:31:4d:9c:ec:3a:36:1e:01:
96:6f:49:e7:86:0c:9d:29:f0:9a:86:bb:d7:23:7e:
ba:40:8b:fb:17:25:c7:9e:f3:fe:43:6d:55:a8:20:
63:87:b8:d3:58:5a:16:cf:7b:11:47:a4:7f:d0:54:
78:95:c7:48:c2:03:4d:e8:cc:0c:86:89:46:56:81:
18:42:7f:a9:e9:3a:16:c4:44:4a:66:75:5d:2c:78:
46:24:bd:9f:81:84:06:0f:8e:9c:14:e8:be:62:21:
86:a8:18:8f:51:89:5b:9b:fd:a8:50:8f:1e:f3:75:
6d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E7:2C:D2:D7:25:43:DA:77:44:35:17:25:3A:F7:C8:A1:97:B3:3B
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/K-cs0tclQ9p3RDUXJTr3yKGXszs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.109.0.0/16
62.85.0.0/17
78.84.0.0/16
80.232.128.0/17
81.198.0.0/16
84.237.128.0/17
87.110.0.0/16
87.246.144.0-87.246.191.255
91.105.0.0/17
95.68.0.0/17
185.38.56.0/22
194.8.16.0-194.8.27.255
195.2.96.0/19
195.13.128.0/17
195.114.32.0/19
195.122.0.0/19
IPv6:
2a02:2330::/29
Signature Algorithm: sha256WithRSAEncryption
61:a2:d9:ce:53:ba:80:3b:d1:79:0f:44:b7:3c:ad:73:2a:4b:
12:68:a9:47:94:0b:f2:47:44:95:c3:5e:d8:a2:9d:f2:ce:0a:
7f:a6:49:27:ed:3c:e3:43:97:c3:b3:49:ab:e9:0e:00:83:e7:
27:13:c2:21:e9:6d:cf:b1:6d:fe:fd:1a:45:32:69:6a:9b:7b:
7f:89:f7:b1:8c:84:ca:f8:4e:af:25:53:ba:d6:6a:49:a8:a4:
2b:a3:a3:06:9b:f2:84:de:21:89:cb:6c:f0:c1:a0:fc:e0:51:
b7:ce:06:88:c3:67:0f:e6:1d:82:8a:f4:78:a5:12:76:b3:50:
3a:88:7c:16:47:d2:67:a2:84:8b:1d:99:ea:92:a6:60:52:0c:
87:51:1c:c7:ea:cd:c8:0b:b5:a4:00:ef:96:36:6c:50:65:a4:
6b:fe:cf:6f:52:73:99:74:f3:cf:32:4d:6a:df:07:19:ce:50:
de:21:8b:c4:c5:6e:40:e4:e0:dd:2c:f1:a9:9d:1e:c9:0b:2c:
26:6c:09:86:b0:01:8c:9e:35:7a:80:97:55:94:56:cd:68:f0:
9d:f9:25:36:b1:a9:b5:29:f3:4b:6a:09:8b:92:e9:42:a9:69:
fa:3e:ec:11:26:59:8f:0a:9d:5c:2e:5f:92:08:2c:05:90:30:
b9:50:dd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org