Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/yM4SmYesrv2wV6HJD4MgqwZWZUQ.roa
File: yM4SmYesrv2wV6HJD4MgqwZWZUQ.roa (raw, json)
Hash identifier: SekZ3h7c8CwMjm4i0VhhA1Q/+2wWJ3Fvv4R98K3o+7Y=
Subject key identifier: C8:CE:12:99:87:AC:AE:FD:B0:57:A1:C9:0F:83:20:AB:06:56:65:44
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 01884E62E8538CC2A91ACA4FCF6B50C8E6E0
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/yM4SmYesrv2wV6HJD4MgqwZWZUQ.roa
Signing time: Wed 24 May 2023 15:31:24 +0000
ROA not before: Wed 24 May 2023 15:31:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198193
IP address blocks: 5.61.208.0/23 maxlen: 23
84.247.19.0/24 maxlen: 24
185.88.202.0/23 maxlen: 23
185.88.200.0/23 maxlen: 23
85.204.170.0/23 maxlen: 23
85.204.168.0/23 maxlen: 23
185.86.208.0/23 maxlen: 23
185.75.22.0/23 maxlen: 23
185.66.172.0/24 maxlen: 24
185.66.174.0/24 maxlen: 24
46.251.250.0/24 maxlen: 24
158.255.239.0/24 maxlen: 24
217.61.240.0/24 maxlen: 24
37.252.98.0/24 maxlen: 24
37.252.100.0/24 maxlen: 24
37.252.101.0/24 maxlen: 24
89.32.64.0/24 maxlen: 24
89.32.65.0/24 maxlen: 24
89.32.66.0/24 maxlen: 24
89.32.67.0/24 maxlen: 24
89.44.36.0/22 maxlen: 22
89.44.35.0/24 maxlen: 24
162.33.204.0/22 maxlen: 22
162.33.200.0/22 maxlen: 22
95.156.203.0/24 maxlen: 24
5.187.35.0/24 maxlen: 24
5.187.36.0/23 maxlen: 23
31.214.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 10:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4e:62:e8:53:8c:c2:a9:1a:ca:4f:cf:6b:50:c8:e6:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: May 24 15:31:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8ce129987acaefdb057a1c90f8320ab06566544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f3:74:18:67:78:d7:32:2e:23:22:d2:46:f3:
7b:df:80:0f:37:71:df:d2:3a:6c:52:73:e9:0c:30:
68:74:78:13:28:73:ca:d4:f0:6a:cf:45:1e:e7:5b:
ac:ce:24:fa:d2:c2:f6:5d:5a:d4:f7:43:64:ef:69:
85:98:62:03:7b:ff:bd:61:e1:01:99:95:2b:88:2b:
d8:03:a3:ae:d2:15:91:23:a4:52:7b:cd:29:42:de:
49:f4:bd:4b:52:9e:ff:20:27:14:46:38:c0:8a:4c:
b3:b7:cc:63:0b:3c:c2:89:76:39:06:b8:d6:09:2a:
af:6f:83:04:80:56:7a:ad:63:fa:bc:a2:d6:58:8e:
ed:23:8a:ec:70:2d:8f:a5:95:17:4a:18:2f:31:85:
1b:5a:61:67:fc:c8:a8:c3:0a:86:0d:b9:17:42:30:
8b:d5:92:8c:28:f7:42:4f:fd:33:1a:c7:b8:f5:d3:
f5:93:35:96:b9:92:01:17:3b:7d:94:dd:90:52:5d:
10:ca:c7:27:6f:a5:63:fb:87:62:02:de:39:24:27:
0c:5d:64:68:ac:41:9f:a3:f1:b4:70:1c:38:3a:3e:
fd:dc:4b:d8:19:6a:3d:2d:24:bc:8f:bc:21:0a:fc:
5d:f8:a5:5c:e4:13:c9:3a:40:3d:d1:6e:67:52:ca:
55:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CE:12:99:87:AC:AE:FD:B0:57:A1:C9:0F:83:20:AB:06:56:65:44
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/yM4SmYesrv2wV6HJD4MgqwZWZUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.208.0/23
5.187.35.0-5.187.37.255
31.214.155.0/24
37.252.98.0/24
37.252.100.0/23
46.251.250.0/24
84.247.19.0/24
85.204.168.0/22
89.32.64.0/22
89.44.35.0-89.44.39.255
95.156.203.0/24
158.255.239.0/24
162.33.200.0/21
185.66.172.0/24
185.66.174.0/24
185.75.22.0/23
185.86.208.0/23
185.88.200.0/22
217.61.240.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:5b:88:16:ca:93:57:a4:2f:b6:da:7c:de:ee:0c:23:d0:86:
4b:43:fb:87:47:e0:bd:05:d3:b0:96:a8:71:2d:9d:4a:9d:83:
40:79:5c:da:5b:ed:4d:a2:da:92:a7:1c:50:d9:ca:4e:1b:1e:
6f:5d:38:dc:8d:de:92:b1:61:b1:fe:a6:da:34:c1:3f:85:7f:
7e:f0:02:0c:6a:b8:87:82:10:6b:9a:f9:3b:75:d0:0b:57:58:
e2:bb:1d:24:49:ea:85:89:9e:89:37:6b:af:01:fb:58:23:79:
bb:1d:b2:31:dd:4f:6d:c9:cf:15:97:03:a8:38:54:66:30:e7:
3f:46:e4:88:0b:d0:73:93:0a:c5:1d:43:53:05:81:6b:76:cf:
ab:31:52:a4:ad:45:44:57:30:b4:bd:d6:1b:bd:a3:ee:ca:9e:
c0:67:a1:d4:1c:dd:3a:c2:a9:34:c2:c5:62:45:39:f9:ca:61:
f7:f9:57:6a:31:1e:17:48:fd:17:ab:20:99:f8:c1:30:c2:46:
12:44:c1:f8:51:ee:8b:1f:cb:f2:e7:fb:ad:f5:49:f1:aa:74:
82:c8:73:7f:e6:30:e2:8f:ca:15:78:3e:61:63:fc:89:8e:ac:
19:3f:a3:20:a4:45:55:95:aa:ca:d1:58:77:1e:da:87:f0:23:
ea:64:fa:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:54 2024 by rpki-client on console-ams.rpki-client.org