Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/X4NSe9uFL031QTAtLdhpuvHXsXU.roa
File: X4NSe9uFL031QTAtLdhpuvHXsXU.roa (raw, json)
Hash identifier: zz5DwjwHa8Zs+rbNSd2dOOiQylrwnr49YP3GcxmrDd4=
Subject key identifier: 5F:83:52:7B:DB:85:2F:4D:F5:41:30:2D:2D:D8:69:BA:F1:D7:B1:75
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185CF4AB445D86565F5568FF19258ED23FF
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/X4NSe9uFL031QTAtLdhpuvHXsXU.roa
Signing time: Fri 20 Jan 2023 13:07:37 +0000
ROA not before: Fri 20 Jan 2023 13:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31213
IP address blocks: 85.26.128.0/20 maxlen: 20
85.26.208.0/22 maxlen: 22
85.26.212.0/22 maxlen: 22
109.188.128.0/17 maxlen: 17
85.26.216.0/22 maxlen: 22
85.26.220.0/22 maxlen: 22
188.170.80.0/21 maxlen: 21
78.25.120.0/22 maxlen: 22
188.170.92.0/22 maxlen: 22
37.28.160.0/21 maxlen: 21
85.26.248.0/22 maxlen: 22
85.26.252.0/22 maxlen: 22
37.28.168.0/21 maxlen: 21
78.25.96.0/21 maxlen: 21
78.25.104.0/22 maxlen: 22
188.170.68.0/24 maxlen: 24
188.170.65.0/24 maxlen: 24
188.170.66.0/24 maxlen: 24
188.170.67.0/24 maxlen: 24
78.25.108.0/22 maxlen: 22
188.170.72.0/21 maxlen: 21
94.25.228.0/23 maxlen: 23
94.25.232.0/21 maxlen: 21
37.29.71.0/24 maxlen: 24
37.29.68.0/23 maxlen: 23
37.29.70.0/24 maxlen: 24
83.149.0.0/21 maxlen: 21
128.204.74.0/24 maxlen: 24
128.204.75.0/24 maxlen: 24
94.25.208.0/22 maxlen: 22
37.29.48.0/21 maxlen: 21
188.162.64.0/23 maxlen: 23
37.29.56.0/21 maxlen: 21
94.25.216.0/21 maxlen: 21
94.25.224.0/21 maxlen: 21
37.29.64.0/22 maxlen: 22
2a03:d000::/40 maxlen: 40
2a03:d000:100::/40 maxlen: 40
2a03:d000:301::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 30 Jan 2023 07:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cf:4a:b4:45:d8:65:65:f5:56:8f:f1:92:58:ed:23:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 20 13:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f83527bdb852f4df541302d2dd869baf1d7b175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8c:8d:bb:a1:a9:8d:5d:6b:80:f8:af:88:36:
a2:aa:78:fd:dc:ee:68:71:45:1f:d4:6a:f2:2e:ee:
15:12:36:41:aa:9d:aa:5c:86:4e:7e:f3:74:e2:cd:
54:6c:51:63:e4:25:cf:c9:f2:28:18:c3:51:cc:e5:
48:62:8b:fb:c1:91:30:23:9b:0f:e3:aa:fd:19:96:
b7:08:25:b3:a1:ba:61:2a:46:92:00:16:55:72:e2:
6f:c9:13:da:df:f2:5d:b1:1d:2e:3d:c8:98:a4:a6:
58:3b:ee:98:aa:65:1c:47:68:17:f6:6a:5c:28:b6:
76:41:ab:19:7b:fe:d2:c7:69:a9:bf:9a:9a:79:12:
01:0b:5a:99:0c:39:0e:24:8c:84:fb:62:63:36:9c:
7e:10:5c:b8:5a:f1:c4:98:5b:a8:79:c7:14:d9:42:
8e:e5:93:cd:b9:7a:76:1a:9e:e5:12:cd:bd:b1:d0:
ae:71:dd:86:09:97:34:6c:ac:54:73:31:51:7e:9f:
cc:2c:28:e8:4b:2b:da:e4:2d:55:b5:02:55:aa:d3:
f4:c7:b7:6e:31:45:c6:61:1b:76:63:cf:2a:67:9d:
be:23:05:78:19:22:d4:b2:c5:6f:8f:24:5d:07:d5:
83:8b:df:c6:52:79:68:e1:7c:3c:85:ab:72:8a:88:
c3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:83:52:7B:DB:85:2F:4D:F5:41:30:2D:2D:D8:69:BA:F1:D7:B1:75
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/X4NSe9uFL031QTAtLdhpuvHXsXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/20
37.29.48.0-37.29.71.255
78.25.96.0/20
78.25.120.0/22
83.149.0.0/21
85.26.128.0/20
85.26.208.0/20
85.26.248.0/21
94.25.208.0/22
94.25.216.0-94.25.239.255
109.188.128.0/17
128.204.74.0/23
188.162.64.0/23
188.170.65.0-188.170.68.255
188.170.72.0-188.170.87.255
188.170.92.0/22
IPv6:
2a03:d000::/39
2a03:d000:301::/48
Signature Algorithm: sha256WithRSAEncryption
93:5b:ea:4a:1e:e5:1e:76:65:33:54:98:53:4f:70:31:88:56:
18:55:b7:dd:6b:8f:9c:7a:8d:76:ab:cd:6f:7a:11:5d:45:06:
eb:a7:da:15:e0:67:40:4a:ef:3b:95:91:e7:35:8f:6e:49:c3:
89:5c:60:18:2b:4f:c1:52:4b:52:db:7b:aa:c8:ef:36:9e:44:
a0:e9:36:8e:02:b0:42:84:fe:d7:25:54:7b:e0:b2:64:b9:d6:
5c:3a:31:c5:32:14:ff:e3:2c:9c:c0:18:7f:31:08:76:da:64:
c5:45:1a:e4:2d:de:c2:5b:fa:b9:f4:e8:52:59:7d:c5:eb:47:
d6:6e:ec:b3:35:02:7a:b3:15:47:e6:cf:23:93:34:ed:58:1c:
4f:0f:2a:7f:09:50:3d:71:bb:00:e8:03:6b:e3:fd:8a:d1:bb:
d8:62:0a:85:b2:7a:58:85:13:15:13:d0:e5:99:1a:28:41:fb:
b6:41:fb:f0:f9:b4:55:0f:d6:85:2e:2f:cb:43:cf:d2:48:ee:
c5:c6:5e:de:02:c8:01:f9:29:05:53:15:10:d0:83:2f:0a:27:
d1:45:e8:ec:62:53:0e:6e:06:73:c2:1b:81:c0:df:90:0e:b0:
c8:05:76:5a:6c:ff:f4:56:62:70:57:cf:0f:05:a6:9b:1d:51:
f7:3c:b2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org