Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/lymyuM2RCPb6saCoiuK4uTj3E4o.roa
File: lymyuM2RCPb6saCoiuK4uTj3E4o.roa (raw, json)
Hash identifier: ox9UZ/LbfrCn2vvE3VbnnVK44dBEf5vQqlEA0pGmjgs=
Subject key identifier: 97:29:B2:B8:CD:91:08:F6:FA:B1:A0:A8:8A:E2:B8:B9:38:F7:13:8A
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 0188DE8C4AEC4465D1A36548FF9116055A38
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/lymyuM2RCPb6saCoiuK4uTj3E4o.roa
Signing time: Wed 21 Jun 2023 15:21:56 +0000
ROA not before: Wed 21 Jun 2023 15:21:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33852
IP address blocks: 83.139.39.0/24 maxlen: 24
83.139.0.0/24 maxlen: 24
83.139.1.0/24 maxlen: 24
83.139.2.0/24 maxlen: 24
83.139.11.0/24 maxlen: 24
83.139.9.0/24 maxlen: 24
83.139.10.0/24 maxlen: 24
83.139.8.0/24 maxlen: 24
83.139.8.0/21 maxlen: 21
83.139.5.0/24 maxlen: 24
83.139.6.0/23 maxlen: 23
83.139.14.0/24 maxlen: 24
83.139.15.0/24 maxlen: 24
83.139.12.0/24 maxlen: 24
83.139.13.0/24 maxlen: 24
83.139.17.0/24 maxlen: 24
83.139.16.0/24 maxlen: 24
83.139.18.0/24 maxlen: 24
83.139.32.0/21 maxlen: 21
83.139.35.0/24 maxlen: 24
83.139.33.0/24 maxlen: 24
2a01:4000::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:8c:4a:ec:44:65:d1:a3:65:48:ff:91:16:05:5a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jun 21 15:21:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9729b2b8cd9108f6fab1a0a88ae2b8b938f7138a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:72:1e:b4:97:cd:96:6f:fa:b1:c3:d0:4a:90:
ae:21:46:d6:f1:8a:35:c1:3f:79:95:bd:6a:1a:c8:
9f:06:5c:b4:dc:0f:b5:c5:41:08:62:07:db:19:e7:
c4:7b:6c:54:98:20:3c:98:b3:21:90:5e:e0:7f:9d:
19:aa:9e:9b:9c:e7:9c:fe:eb:da:5d:4c:b3:44:46:
5f:7e:a4:9e:09:4a:16:ba:7f:5d:48:82:78:b4:d7:
03:14:b5:9f:32:cd:74:d8:ce:86:11:d9:2e:5e:7b:
06:9e:99:cf:ea:0f:44:ee:93:7c:90:9a:bb:e3:c0:
ea:0d:c8:9e:f6:08:4e:c1:8d:3e:bb:92:a9:09:35:
0b:f1:41:a2:1b:09:7e:1a:ca:cf:71:af:b9:2a:b6:
ab:fc:38:d8:a9:54:28:9e:70:f7:b4:4a:57:2a:30:
dc:71:c7:00:45:0b:3a:e3:a6:49:71:72:00:c1:07:
6c:38:ed:3d:f9:18:ca:40:9f:f7:e9:ad:9e:03:9f:
70:4a:b7:d5:d4:36:29:20:3b:7c:94:c2:70:b2:dd:
83:ab:5c:f3:f0:68:fd:fb:96:c4:8c:ff:4b:02:15:
b7:b3:14:7b:2a:06:81:a1:ff:68:53:cc:c4:6c:5d:
96:27:83:56:a5:d5:29:c3:8d:49:1a:5d:23:7c:4f:
f5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:29:B2:B8:CD:91:08:F6:FA:B1:A0:A8:8A:E2:B8:B9:38:F7:13:8A
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/lymyuM2RCPb6saCoiuK4uTj3E4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.0.0-83.139.2.255
83.139.5.0-83.139.18.255
83.139.32.0/21
IPv6:
2a01:4000::/32
Signature Algorithm: sha256WithRSAEncryption
94:d7:da:26:b2:9b:4a:a6:24:02:5c:0d:3f:ba:e6:fc:d1:a6:
5b:77:bf:1a:f7:b4:3d:3a:73:ab:bc:1c:57:dd:0e:ba:f2:88:
cf:52:51:e0:62:8d:ac:f4:79:1d:e7:0a:a0:55:36:c0:d1:83:
01:36:5b:da:4b:a9:38:9f:2f:6f:d8:67:24:32:10:e4:27:28:
de:eb:22:42:f2:df:c5:43:5b:27:89:a3:d8:d6:85:4f:6b:69:
85:5e:b8:0d:5e:e1:b1:eb:48:02:9f:9a:27:0f:06:4a:fb:e6:
b6:21:f5:6c:92:a2:fa:98:15:8b:1a:8c:24:ff:74:39:e1:d8:
ab:21:ef:71:fa:28:b9:1c:fc:fd:30:92:79:14:53:9f:b5:6d:
d6:36:bb:48:8b:34:0c:6d:a1:72:ef:5b:57:7b:01:fd:b4:b0:
9e:b7:d4:9f:d4:5e:02:cb:40:c5:d5:ab:90:46:6f:e5:ce:24:
f3:f8:17:12:ad:19:08:fa:a6:a2:b3:90:d1:1a:7a:f6:cb:1a:
8a:bb:57:9c:85:47:1c:0f:5e:e1:8a:3d:de:0c:34:28:9a:d3:
e7:13:12:75:c2:ba:d1:0a:b8:30:04:93:ba:2a:20:3b:b4:fa:
49:1d:37:08:b2:e4:d8:06:fc:d2:6f:c2:02:5a:08:f4:8f:cb:
37:ad:3a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:45 2024 by rpki-client on console-ams.rpki-client.org