Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/dZijGHb_2RPZs0ojREVOSJ1XxNg.roa
File: dZijGHb_2RPZs0ojREVOSJ1XxNg.roa (raw, json)
Hash identifier: N+RzXA5SqL9P5denzTZ2Fv0fc98W0A972oncp9xGAfo=
Subject key identifier: 75:98:A3:18:76:FF:D9:13:D9:B3:4A:23:44:45:4E:48:9D:57:C4:D8
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0189FE81283703B425E72768B193075906AA
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/dZijGHb_2RPZs0ojREVOSJ1XxNg.roa
Signing time: Wed 16 Aug 2023 13:20:24 +0000
ROA not before: Wed 16 Aug 2023 13:20:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.38.0/24 maxlen: 24
185.199.37.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.204.0/22 maxlen: 22
185.52.206.0/24 maxlen: 24
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 16 Aug 2023 14:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:81:28:37:03:b4:25:e7:27:68:b1:93:07:59:06:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Aug 16 13:20:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7598a31876ffd913d9b34a2344454e489d57c4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:92:33:48:6b:3a:b1:da:cb:27:31:fc:32:
68:46:61:a0:36:89:09:ce:b2:f6:ae:4a:b0:ae:52:
dd:1a:2b:97:9b:f3:7c:64:88:57:3f:81:fc:5f:24:
67:db:e8:1b:62:c2:60:fe:d2:ef:43:51:ab:64:72:
20:73:ea:a2:8f:a5:69:d1:26:6c:56:e0:d9:75:91:
91:7b:ae:38:9a:14:d9:a5:96:ac:dc:48:c5:6d:f5:
30:81:33:96:5a:83:4e:8a:d5:61:f7:6f:8d:92:83:
19:43:50:b0:76:37:6f:17:f5:eb:5b:93:14:3c:f9:
b2:f5:f1:6e:ce:b8:41:d2:78:50:46:4e:02:ed:97:
64:e2:2d:bc:22:85:27:67:4b:2c:a0:b8:1b:c1:ae:
f9:e1:96:27:30:41:5f:d9:42:7d:c4:59:73:e2:f3:
dc:33:90:e9:d5:14:85:12:a8:fa:1e:77:00:d7:50:
9a:cd:a8:56:8a:73:d7:d3:32:57:e0:02:79:33:83:
27:1d:2c:fa:f8:4c:43:ac:4c:bd:32:3e:f3:f3:24:
6e:d9:25:75:de:cb:93:4b:86:bf:09:0a:a6:e1:04:
bc:58:69:f8:51:6c:7d:03:a3:2e:04:7b:12:45:6a:
0f:fb:91:a0:72:72:d4:b7:b7:4d:f8:35:df:8c:fa:
fa:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:98:A3:18:76:FF:D9:13:D9:B3:4A:23:44:45:4E:48:9D:57:C4:D8
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/dZijGHb_2RPZs0ojREVOSJ1XxNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
5e:9d:a7:be:b7:6a:a5:2d:16:59:af:4c:d2:a4:2d:31:3f:d3:
0d:71:7b:2d:16:ea:d2:57:bc:82:57:d9:27:8e:aa:9d:1d:11:
60:78:0d:5c:49:1b:70:0f:34:31:44:bb:6b:e4:b5:8a:af:bc:
f1:d5:a8:da:1e:97:ff:16:1f:88:34:0e:19:e8:27:7a:5d:99:
c5:4b:24:ab:57:56:24:fe:9c:fe:86:1f:a9:74:0c:3e:d3:20:
e7:1a:36:e7:57:37:79:b4:3c:34:5d:f0:b0:26:d0:2a:b8:27:
4a:af:4e:c1:c0:0d:82:87:17:53:e7:d0:38:a7:f5:53:40:74:
52:d6:0f:84:4c:45:40:51:06:78:4a:b0:1e:ff:33:15:e4:7c:
63:6d:b6:bb:a4:30:a1:3d:f2:a5:e5:30:1a:7a:61:35:69:5d:
f3:26:50:8f:58:7a:2d:c6:c6:70:99:c2:86:c9:69:b1:6c:0d:
b5:db:6b:13:e9:ab:06:a3:bd:d9:55:a2:cd:61:bf:d2:f6:36:
c2:28:8e:f1:14:b4:c7:ed:ff:87:ea:6a:2f:1f:46:b0:53:41:
5c:3f:21:a2:c8:f5:e0:18:9e:0a:7c:cc:0a:00:4b:74:77:01:
bc:68:3e:a1:5f:e1:22:57:79:df:03:c5:41:1b:d0:bf:65:a2:
9e:28:65:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org