Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/N3r_hqEbObKWHip1Nu4og_N_D18.roa
File: N3r_hqEbObKWHip1Nu4og_N_D18.roa (raw, json)
Hash identifier: W45fc3UjlTgBkMvQ6mIh0S2LuHdNP3Gei48Ey77IRCQ=
Subject key identifier: 37:7A:FF:86:A1:1B:39:B2:96:1E:2A:75:36:EE:28:83:F3:7F:0F:5F
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 0185727128A34D3F93AD51A5B0DE447572D1
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/N3r_hqEbObKWHip1Nu4og_N_D18.roa
Signing time: Mon 02 Jan 2023 12:24:56 +0000
ROA not before: Mon 02 Jan 2023 12:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13037
IP address blocks: 212.23.0.0/19 maxlen: 19
88.98.0.0/20 maxlen: 20
82.71.240.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.21.0/24 maxlen: 24
88.98.18.0/24 maxlen: 24
88.98.24.0/21 maxlen: 21
88.98.22.0/23 maxlen: 23
88.96.0.0/15 maxlen: 15
51.155.0.0/16 maxlen: 16
217.155.0.0/16 maxlen: 16
88.98.160.0/21 maxlen: 21
88.98.172.0/22 maxlen: 22
88.98.170.0/23 maxlen: 23
88.98.176.0/20 maxlen: 20
51.148.0.0/16 maxlen: 16
62.3.64.0/18 maxlen: 18
82.68.0.0/14 maxlen: 14
51.170.0.0/16 maxlen: 18
88.98.128.0/19 maxlen: 19
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 May 2023 11:51:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:28:a3:4d:3f:93:ad:51:a5:b0:de:44:75:72:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Jan 2 12:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=377aff86a11b39b2961e2a7536ee2883f37f0f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a5:96:2a:52:3c:58:10:ce:c4:68:b6:7a:fd:
08:f4:1e:58:9c:80:52:db:a8:b8:35:9d:60:84:7c:
75:e2:ee:96:10:b5:15:2f:b2:2b:1a:e7:e4:68:ef:
81:bb:3c:c9:72:35:04:ff:f3:4a:00:95:46:76:bc:
cc:ee:3c:ff:49:28:22:64:4b:1b:0b:9d:98:69:9f:
b9:17:7a:6b:87:25:4a:5f:a6:43:cd:e7:af:a5:ca:
83:eb:76:37:43:19:8c:10:0d:f5:91:df:6c:c1:61:
c6:b5:3f:92:20:b3:4a:c5:14:a5:9f:d3:74:19:8b:
c4:84:f3:be:bf:bd:1f:28:53:1b:f6:a4:0d:41:20:
52:3e:5d:61:b1:97:23:50:f0:85:17:06:73:a7:db:
3d:18:29:4d:59:55:1c:52:75:98:dc:ae:68:2a:16:
47:53:a5:42:05:f7:df:a3:3f:b4:3e:6c:e7:db:8a:
a3:e7:05:84:aa:11:4d:ad:c0:f4:20:69:78:5f:b9:
3f:91:4c:51:1e:de:6d:b3:d4:5a:8e:e4:78:7f:6a:
5a:a1:55:25:55:49:59:80:3c:7f:75:b4:b3:3c:95:
43:dc:75:b0:33:4a:c0:9e:03:e2:0b:bf:fa:cb:d0:
73:72:ac:9d:75:13:f6:2c:1d:b2:b4:32:b0:03:56:
f6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7A:FF:86:A1:1B:39:B2:96:1E:2A:75:36:EE:28:83:F3:7F:0F:5F
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/N3r_hqEbObKWHip1Nu4og_N_D18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
51.170.0.0/16
62.3.64.0/18
82.68.0.0/14
88.96.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
84:b3:b3:e2:d4:51:b4:5c:0e:d3:2f:c4:27:22:e6:94:9d:ef:
d7:81:fe:05:b2:a3:7d:dc:1d:af:d9:5f:d8:bd:d3:5c:ea:bb:
b0:f1:bf:8b:a5:e0:e1:0c:dd:be:2d:93:1c:c4:6f:7b:3b:43:
c0:e8:86:ed:7e:79:82:2e:a6:bd:8a:d1:d6:6f:c1:29:8a:84:
0d:3a:87:a7:d7:4b:c5:c3:51:63:17:33:f9:d8:c1:00:74:1a:
20:b4:b6:01:4b:46:b6:fd:55:b7:82:fb:ce:d0:a6:46:65:13:
59:89:49:e2:91:23:1b:4e:f1:aa:52:d6:7d:5f:c5:2d:e3:f8:
f4:b7:6f:9c:20:13:f5:c5:56:4b:ec:f3:fe:b5:02:88:ba:76:
db:ba:5d:69:5a:f2:d8:c0:10:75:69:88:44:27:c6:06:f8:74:
90:68:c1:d4:14:a1:0d:6d:82:37:2c:92:ca:17:ad:11:68:d0:
c1:e1:e0:fe:35:f5:49:c6:bc:86:97:6c:30:d2:33:b0:57:18:
6e:f5:7e:17:a1:c2:df:23:4e:f5:3e:40:2a:37:f9:88:09:1b:
26:3f:0e:a2:c5:11:23:99:bd:a0:53:42:6f:4b:2c:f8:43:87:
2f:01:3b:90:18:0a:a4:99:39:9f:30:e3:23:05:ef:6e:d4:6d:
1b:d4:df:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:15 2024 by rpki-client on console-fra.rpki-client.org