Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/x6ynYoP75CA_f9bc8A58pns5QdM.roa
File: x6ynYoP75CA_f9bc8A58pns5QdM.roa (raw, json)
Hash identifier: Nep48d7nxceNYmp4EPHFVdJkx2EteBXXiKW/JQyVN+Q=
Subject key identifier: C7:AC:A7:62:83:FB:E4:20:3F:7F:D6:DC:F0:0E:7C:A6:7B:39:41:D3
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 01857082BB1FB0C041814CBF9B8866F91174
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/x6ynYoP75CA_f9bc8A58pns5QdM.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2072
IP address blocks: 193.51.165.0/24 maxlen: 24
195.83.166.0/24 maxlen: 24
193.50.0.0/24 maxlen: 24
193.50.2.0/24 maxlen: 24
193.50.1.0/24 maxlen: 24
193.54.195.0/24 maxlen: 24
193.51.128.128/25 maxlen: 25
193.54.225.0/24 maxlen: 24
195.221.157.0/24 maxlen: 24
195.221.159.0/24 maxlen: 24
195.221.158.0/24 maxlen: 24
195.221.160.0/24 maxlen: 24
195.221.162.0/24 maxlen: 24
195.221.161.0/24 maxlen: 24
195.83.222.0/24 maxlen: 24
195.83.221.0/24 maxlen: 24
195.83.223.0/24 maxlen: 24
193.50.68.0/24 maxlen: 24
193.50.67.0/24 maxlen: 24
193.49.22.0/24 maxlen: 24
193.50.201.0/24 maxlen: 24
193.51.128.56/29 maxlen: 29
194.57.241.0/24 maxlen: 24
194.57.241.0/26 maxlen: 26
193.51.66.0/24 maxlen: 24
193.51.65.0/24 maxlen: 24
193.51.128.48/29 maxlen: 29
193.49.163.0/24 maxlen: 24
194.57.183.0/24 maxlen: 24
194.199.85.0/24 maxlen: 24
194.199.84.0/24 maxlen: 24
194.199.83.0/24 maxlen: 24
194.199.86.0/24 maxlen: 24
194.199.88.0/24 maxlen: 24
194.199.87.0/24 maxlen: 24
194.199.90.0/24 maxlen: 24
194.199.89.0/24 maxlen: 24
2001:660:3020::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bb:1f:b0:c0:41:81:4c:bf:9b:88:66:f9:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7aca76283fbe4203f7fd6dcf00e7ca67b3941d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7f:c7:b4:92:2f:c6:4f:2b:31:de:f4:08:63:
d5:e8:fb:c5:5f:ab:d3:cd:0f:6a:00:28:83:e3:78:
8e:e7:b8:0b:c1:3f:3d:41:b4:d7:bb:c6:11:bc:6d:
ca:3e:88:9a:f4:05:24:a1:7c:22:8c:0d:b6:f6:cb:
4b:18:37:55:57:ea:c8:d7:4b:76:74:85:cc:43:ee:
59:25:06:da:d3:f7:07:a2:b2:24:5b:51:9f:90:64:
36:fb:e2:5e:d1:6a:10:de:89:3e:5f:77:b2:b0:b9:
eb:25:1d:f5:fa:01:7b:1e:e1:33:06:b6:b8:84:a7:
87:d2:09:c3:b8:e3:45:ad:cb:78:30:9a:88:a4:46:
e6:04:34:e9:93:16:6c:59:b4:95:00:91:5a:5c:dd:
1b:e8:b2:8a:e1:a9:9e:5b:c4:e6:37:72:f4:ff:0b:
c8:ab:c4:2f:31:44:c2:a0:51:8c:48:8a:4c:21:6d:
dc:b7:3a:c4:87:75:88:e8:11:0d:18:20:23:c5:3f:
6a:27:6a:76:5d:f6:4a:cc:f3:68:76:52:c9:22:fe:
8a:a8:be:3b:fd:21:7d:52:00:42:9d:99:3a:80:f2:
4d:4c:59:a0:c0:51:15:c3:1d:fb:19:37:97:d5:1a:
6f:82:a2:6d:c1:97:e6:af:d8:71:90:88:57:2f:b5:
6d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AC:A7:62:83:FB:E4:20:3F:7F:D6:DC:F0:0E:7C:A6:7B:39:41:D3
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/x6ynYoP75CA_f9bc8A58pns5QdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.49.22.0/24
193.49.163.0/24
193.50.0.0-193.50.2.255
193.50.67.0-193.50.68.255
193.50.201.0/24
193.51.65.0-193.51.66.255
193.51.128.48/28
193.51.128.128/25
193.51.165.0/24
193.54.195.0/24
193.54.225.0/24
194.57.183.0/24
194.57.241.0/24
194.199.83.0-194.199.90.255
195.83.166.0/24
195.83.221.0-195.83.223.255
195.221.157.0-195.221.162.255
IPv6:
2001:660:3020::/48
Signature Algorithm: sha256WithRSAEncryption
88:8b:6b:1a:62:7f:b0:f4:23:a5:20:96:45:1e:94:b0:f7:c1:
e6:a1:f1:61:95:eb:02:8c:7f:59:3c:cc:e5:7e:bb:bf:05:72:
a8:69:70:ef:bc:ec:88:6c:ae:74:0b:bd:04:42:7b:36:d7:09:
da:14:d0:f1:68:bd:99:f3:37:87:fa:9e:65:e1:43:02:6d:e0:
ab:ba:31:96:01:57:a3:4f:eb:63:40:bd:da:18:57:3f:9d:1d:
a6:b9:0a:f4:71:81:1f:93:28:49:69:c7:9d:55:2d:1c:c0:bd:
57:27:55:d9:a1:c4:2c:7d:59:3e:0f:19:36:d0:a5:1d:3a:0f:
1d:2c:01:aa:cf:ac:b9:79:98:0e:84:00:54:70:fc:42:d1:eb:
ca:41:ed:57:4b:ef:a6:c8:6c:42:d4:8c:13:6e:1d:02:d3:81:
7a:74:01:20:02:79:52:0f:b1:46:c0:e3:e3:d2:fe:3b:bf:11:
63:47:98:06:b2:9c:86:37:7a:86:6d:a1:81:46:6f:31:1d:97:
22:e4:07:6b:bd:60:0b:83:35:86:96:37:87:ef:de:ea:1d:3b:
f6:21:13:29:54:77:38:40:02:24:a7:ca:e2:e8:e0:df:0a:4e:
3d:db:88:99:0d:75:aa:11:dc:0e:3f:46:32:ad:cd:21:b9:e2:
f4:e8:dc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:27 2024 by rpki-client on console-fra.rpki-client.org