Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/P3le32Vwq3uVf9KRg-glLI_9gs8.roa
File: P3le32Vwq3uVf9KRg-glLI_9gs8.roa (raw, json)
Hash identifier: T7uYf//Z3x7Pbmc+cIxVj2b2EAWmc8RBTzCZ2jzhvi8=
Subject key identifier: 3F:79:5E:DF:65:70:AB:7B:95:7F:D2:91:83:E8:25:2C:8F:FD:82:CF
Certificate issuer: /CN=49378660f5f01923946c35d94be5ccd7d2b71051
Certificate serial: 0189ABD4F61610E2215E3FFD5B9678CB7DC0
Authority key identifier: 49:37:86:60:F5:F0:19:23:94:6C:35:D9:4B:E5:CC:D7:D2:B7:10:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STeGYPXwGSOUbDXZS-XM19K3EFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/P3le32Vwq3uVf9KRg-glLI_9gs8.roa
Signing time: Mon 31 Jul 2023 12:03:27 +0000
ROA not before: Mon 31 Jul 2023 12:03:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203593
IP address blocks: 185.129.253.0/24 maxlen: 24
185.129.252.0/24 maxlen: 24
185.129.254.0/24 maxlen: 24
185.129.255.0/24 maxlen: 24
213.244.52.0/24 maxlen: 24
213.244.35.0/24 maxlen: 24
213.244.32.0/24 maxlen: 24
213.244.33.0/24 maxlen: 24
213.244.38.0/24 maxlen: 24
213.244.36.0/24 maxlen: 24
213.244.37.0/24 maxlen: 24
213.244.41.0/24 maxlen: 24
157.97.163.0/24 maxlen: 24
213.244.42.0/24 maxlen: 24
213.244.40.0/24 maxlen: 24
213.244.48.0/22 maxlen: 22
193.254.202.0/24 maxlen: 24
193.254.203.0/24 maxlen: 24
2a06:d680::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 05 Oct 2023 07:09:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:d4:f6:16:10:e2:21:5e:3f:fd:5b:96:78:cb:7d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49378660f5f01923946c35d94be5ccd7d2b71051
Validity
Not Before: Jul 31 12:03:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f795edf6570ab7b957fd29183e8252c8ffd82cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:62:6a:d5:bd:20:aa:34:65:d6:53:2f:fa:
ac:e7:a9:6b:d0:18:18:a0:7d:d6:50:5e:76:b1:60:
60:03:08:cb:19:4f:28:43:1e:c0:0d:e3:7f:5e:db:
39:e2:f5:47:b3:14:5f:4d:00:0a:ec:c4:12:ca:48:
3e:84:dc:fd:65:49:dd:b3:44:37:91:b0:bd:da:9b:
9b:50:fb:f9:2a:d9:a3:8e:fc:08:0d:6e:b2:85:6c:
23:e9:fc:71:34:8f:63:25:ea:1d:40:71:af:f7:70:
f8:1c:6a:5d:1e:f6:ca:3b:f6:aa:d3:18:67:79:94:
98:13:c7:b1:8a:7c:d1:39:2d:6a:f1:45:25:83:6a:
52:dc:62:3a:71:82:fe:20:fb:a8:fd:75:16:d8:c2:
8e:ed:0b:e3:a1:1a:97:79:62:0b:a2:7d:07:22:61:
93:3e:1d:af:2c:93:95:5c:6a:1f:87:6b:c5:a7:95:
eb:62:61:33:2b:56:18:13:3b:20:86:10:95:1a:28:
6a:a2:74:ef:ec:a1:ec:9b:bb:b0:fc:0e:6d:71:94:
7f:bd:d6:fe:45:d7:90:14:f3:db:82:e4:3e:d5:c9:
99:90:93:d7:d4:c8:18:ac:20:bd:ac:c4:5a:83:c3:
60:f8:79:52:4e:5b:95:6a:bb:e4:73:78:6d:ee:1f:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:79:5E:DF:65:70:AB:7B:95:7F:D2:91:83:E8:25:2C:8F:FD:82:CF
X509v3 Authority Key Identifier:
keyid:49:37:86:60:F5:F0:19:23:94:6C:35:D9:4B:E5:CC:D7:D2:B7:10:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STeGYPXwGSOUbDXZS-XM19K3EFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/P3le32Vwq3uVf9KRg-glLI_9gs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/07cdcf-8875-4770-8c75-41b745bf53db/1/STeGYPXwGSOUbDXZS-XM19K3EFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.163.0/24
185.129.252.0/22
193.254.202.0/23
213.244.32.0/23
213.244.35.0-213.244.38.255
213.244.40.0-213.244.42.255
213.244.48.0-213.244.52.255
IPv6:
2a06:d680::/29
Signature Algorithm: sha256WithRSAEncryption
89:c0:b3:23:b0:06:f0:5b:d4:4d:e3:ce:8a:36:d0:ba:26:d8:
bd:5b:ca:d9:ce:3c:3f:90:5a:bf:87:cc:8d:c4:a6:1e:9b:d6:
0b:c2:38:1f:18:7a:8e:54:7d:c7:7b:cf:12:ef:a3:22:0b:ee:
90:08:eb:fa:5e:03:cd:7e:aa:93:9a:5f:9d:0f:71:16:0c:04:
64:fa:78:d0:b2:66:6d:13:40:54:c3:01:61:e8:27:36:ef:2f:
62:3a:03:51:9f:25:e9:8a:0f:75:54:ba:f3:a5:c8:6c:bb:d2:
44:e4:7b:23:9e:20:08:0e:4c:af:10:20:41:c4:e5:12:2f:3e:
b7:7a:92:32:2b:a8:d1:5f:d6:b6:eb:bf:76:ae:bf:e0:51:b4:
58:bd:c6:63:d8:22:1b:59:5e:ba:32:71:79:2e:02:26:56:d3:
75:0c:38:9a:44:5a:81:e3:97:f1:d8:4c:4f:de:40:70:dd:cc:
0f:75:3b:9e:40:07:44:78:42:85:66:cf:a6:10:79:a8:37:dc:
21:1c:74:80:d5:8a:00:0d:5a:79:0c:34:01:b2:f4:87:48:7b:
7d:bc:e6:eb:17:8c:1d:62:e8:e9:fd:8d:44:5b:1b:b3:3a:2a:
c0:6a:86:f4:01:21:94:10:cf:67:a3:7a:94:f4:c5:68:37:34:
4c:50:85:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:52 2024 by rpki-client on console-fra.rpki-client.org