Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VXknSygPH9tfzMs7F9cPIrRy0Ew.roa
File: VXknSygPH9tfzMs7F9cPIrRy0Ew.roa (raw, json)
Hash identifier: g1927tZ9JcKGkpnCeJulgZYf2c3fn76oHipY4Gx2Bas=
Subject key identifier: 55:79:27:4B:28:0F:1F:DB:5F:CC:CB:3B:17:D7:0F:22:B4:72:D0:4C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0190DA3622C516935DF35A068862F64D20F9
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VXknSygPH9tfzMs7F9cPIrRy0Ew.roa
Signing time: Mon 22 Jul 2024 11:31:39 +0000
ROA not before: Mon 22 Jul 2024 11:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 62.197.144.0/24 maxlen: 24
62.197.147.0/24 maxlen: 24
62.197.148.0/24 maxlen: 24
62.197.150.0/24 maxlen: 24
62.197.152.0/24 maxlen: 24
92.62.121.0/24 maxlen: 24
185.239.241.0/24 maxlen: 24
185.244.137.0/24 maxlen: 24
185.245.5.0/24 maxlen: 24
193.19.108.0/24 maxlen: 24
193.218.32.0/24 maxlen: 24
220.158.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 08:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:36:22:c5:16:93:5d:f3:5a:06:88:62:f6:4d:20:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 22 11:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5579274b280f1fdb5fcccb3b17d70f22b472d04c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:53:11:9b:ac:92:e5:eb:ee:4e:b7:cf:9f:c0:
f7:13:3a:8f:5c:5a:1d:a8:49:0c:c0:67:4d:9c:36:
35:36:f1:01:f5:db:e2:c8:65:fe:63:e9:82:0c:71:
72:c7:c8:1f:de:29:90:f0:72:b4:54:ed:7c:d7:e0:
1d:69:9e:70:be:7c:d4:1c:df:e4:4d:3c:d0:f8:c2:
f9:10:b1:9b:63:29:8d:ea:56:9f:5d:84:75:13:30:
47:1c:7f:4d:72:cb:d8:8a:c2:bc:75:09:af:05:1e:
d8:13:34:d1:63:be:43:a6:69:2f:17:74:e6:68:b2:
3a:10:e7:92:4c:8f:27:a5:0b:19:e9:e6:29:7a:ff:
1d:58:61:84:bb:1a:28:01:f2:c9:9d:8b:8b:ed:b8:
70:ab:81:b0:2f:53:3e:68:1a:5c:22:87:a3:14:49:
f1:df:20:35:de:34:23:aa:4c:38:b1:62:2b:2b:96:
1f:76:dc:22:1d:27:59:c4:5e:ea:61:01:11:75:99:
9b:c8:ae:45:48:54:70:ac:e8:1f:2e:e0:a8:7a:ec:
3a:77:a5:4c:18:96:df:a8:77:d9:e8:94:2d:28:37:
2e:53:1d:43:ef:e9:1d:b9:7c:88:54:57:1d:53:13:
26:20:84:b7:8a:40:6b:a2:95:ab:a7:57:3d:95:25:
10:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:79:27:4B:28:0F:1F:DB:5F:CC:CB:3B:17:D7:0F:22:B4:72:D0:4C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VXknSygPH9tfzMs7F9cPIrRy0Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.144.0/24
62.197.147.0-62.197.148.255
62.197.150.0/24
62.197.152.0/24
92.62.121.0/24
185.239.241.0/24
185.244.137.0/24
185.245.5.0/24
193.19.108.0/24
193.218.32.0/24
220.158.199.0/24
Signature Algorithm: sha256WithRSAEncryption
21:de:03:d4:3c:9d:b7:55:81:d0:fb:36:b0:44:b3:98:32:25:
2f:35:df:ef:dd:b2:74:02:18:e8:34:cf:90:fc:06:76:ec:e8:
d7:69:49:50:58:87:44:e5:02:3c:eb:9c:55:75:6e:44:75:51:
c5:8f:f5:c7:15:da:83:22:52:61:14:11:0e:59:b9:47:bc:77:
0f:24:18:de:c9:c3:2a:31:94:9a:5c:0a:3c:76:44:4e:73:d2:
bc:c9:2b:38:77:bd:7f:a4:41:76:df:2b:06:0a:d0:58:b8:c3:
55:9f:88:7f:6a:44:4c:6b:64:20:0f:7d:35:04:0b:4f:f7:7b:
e3:62:d2:e6:ee:67:b0:ed:ea:70:52:4f:63:6d:d1:26:50:b0:
96:fe:5b:55:b1:e4:d5:b7:5f:25:5e:57:bf:fd:63:46:f2:bd:
d9:c0:a3:b5:78:a0:29:28:a0:9e:8d:0d:77:12:ac:1b:c2:29:
eb:6a:ce:7d:9f:b8:bf:68:b0:fb:46:53:a9:a5:78:62:f1:df:
d6:c1:ac:11:44:6f:ca:46:55:d8:27:84:17:50:55:70:74:12:
1c:12:31:17:55:2e:41:dd:b7:19:5e:ce:78:3b:d0:d6:2e:67:
a3:4c:e7:df:64:f2:19:48:07:c8:aa:99:09:dc:fa:6a:76:3c:
d3:1c:e5:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 10:31:20 2024 by rpki-client on console-fra.rpki-client.org