Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/6EVyJaBT6ZVUdEMhk0ulzwcraJ8.roa
File: 6EVyJaBT6ZVUdEMhk0ulzwcraJ8.roa (raw, json)
Hash identifier: yHDIWNlFpMknUCS+NTUvZDn4XIPKSC73S6MyPUS3sxU=
Subject key identifier: E8:45:72:25:A0:53:E9:95:54:74:43:21:93:4B:A5:CF:07:2B:68:9F
Certificate issuer: /CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Certificate serial: 018CC6B93057B82D9EDBA096EFFA1CCFCE25
Authority key identifier: 9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/6EVyJaBT6ZVUdEMhk0ulzwcraJ8.roa
Signing time: Mon 01 Jan 2024 20:31:14 +0000
ROA not before: Mon 01 Jan 2024 20:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13110
IP address blocks: 194.24.164.0/23 maxlen: 23
94.127.104.0/21 maxlen: 21
80.87.32.0/20 maxlen: 20
109.173.128.0/17 maxlen: 17
185.44.172.0/22 maxlen: 22
85.221.128.0/17 maxlen: 17
151.249.80.0/21 maxlen: 21
46.228.80.0/20 maxlen: 20
77.65.0.0/17 maxlen: 17
195.160.180.0/23 maxlen: 23
62.21.0.0/17 maxlen: 17
88.151.136.0/21 maxlen: 21
46.238.64.0/18 maxlen: 18
185.14.72.0/22 maxlen: 22
2001:4020::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 06 May 2024 13:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:30:57:b8:2d:9e:db:a0:96:ef:fa:1c:cf:ce:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Validity
Not Before: Jan 1 20:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8457225a053e99554744321934ba5cf072b689f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:91:11:bf:e5:7e:b9:82:a0:91:ab:74:5b:
7e:17:f3:90:fc:6b:4d:8f:07:9f:f6:e6:80:86:b8:
55:15:1c:de:a5:95:99:ce:1b:3e:7e:df:85:94:0c:
9e:01:34:5f:eb:c3:2b:b4:25:46:02:54:b2:6f:9c:
44:ea:5d:09:91:41:ca:08:c1:d1:35:55:7c:fd:8e:
3e:37:e1:64:22:39:2d:ba:10:b1:98:d3:02:17:8c:
a6:d2:3c:47:45:08:a3:45:1d:32:9c:50:90:80:cb:
d2:4d:9c:9e:32:19:5c:c8:9f:18:fe:06:2e:ec:f6:
f6:20:43:46:15:02:91:fe:a1:a5:bc:9f:0b:94:9d:
3e:a8:39:e9:52:3e:f7:33:97:bc:ce:08:98:c2:2f:
d3:88:2d:87:fb:a6:23:d9:19:60:8c:14:ba:2f:f1:
a3:88:3e:68:23:4b:05:d5:08:a5:d4:4f:39:14:15:
a9:6c:99:62:13:b8:3b:5e:25:5a:03:53:9a:e6:62:
0d:29:9a:e6:58:b4:f0:19:42:9e:11:93:4e:58:b3:
59:5c:ae:10:88:5c:bc:38:c2:40:1e:f1:81:7a:dc:
ee:d4:b1:4c:ae:e8:63:ac:39:af:f0:eb:d5:47:cc:
e7:35:86:94:9d:ae:08:1d:85:e3:fa:50:68:33:bc:
2e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:45:72:25:A0:53:E9:95:54:74:43:21:93:4B:A5:CF:07:2B:68:9F
X509v3 Authority Key Identifier:
keyid:9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/6EVyJaBT6ZVUdEMhk0ulzwcraJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/m2t7PqYO-0pXmk9eI36nqI07wHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.228.80.0/20
46.238.64.0/18
62.21.0.0/17
77.65.0.0/17
80.87.32.0/20
85.221.128.0/17
88.151.136.0/21
94.127.104.0/21
109.173.128.0/17
151.249.80.0/21
185.14.72.0/22
185.44.172.0/22
194.24.164.0/23
195.160.180.0/23
IPv6:
2001:4020::/32
Signature Algorithm: sha256WithRSAEncryption
46:6b:64:49:85:48:dd:ca:1f:f1:45:bc:2c:d1:b6:ab:09:34:
ce:d7:aa:a2:96:a3:82:55:b6:42:8c:7d:62:74:a8:47:11:05:
24:c4:bf:f1:64:d6:b1:b1:0d:b7:1e:fa:a8:49:83:76:00:57:
d2:85:10:75:b5:83:13:aa:20:96:ca:ed:24:fd:ce:55:92:f2:
32:5a:3e:88:cd:ae:63:9a:9b:e3:51:1b:41:cf:57:d1:35:8c:
70:a6:9f:60:9b:66:50:0b:86:85:1a:e3:28:ae:33:9d:62:f2:
35:8d:7a:e7:23:9a:15:ba:72:ce:f7:7c:0a:22:a3:94:8c:02:
79:bd:6b:07:df:0e:68:52:b5:7d:7e:a4:5c:1d:af:12:b3:19:
c7:62:c8:59:f7:46:b3:9e:4f:35:9b:08:48:09:44:a0:43:c7:
c9:60:03:1f:0d:3d:79:3a:bd:38:d0:d2:5f:94:a5:5d:cb:18:
ed:30:11:de:ca:01:a4:b6:59:e4:50:ce:e6:33:45:a8:58:7e:
aa:81:73:65:b5:61:6a:cd:48:a7:f2:15:9f:76:58:b4:2a:05:
f0:57:d2:c9:de:a1:32:66:06:2f:c7:84:52:a5:38:b1:e7:d6:
60:b6:8f:4f:93:25:ba:be:22:88:a4:29:19:a2:82:a4:60:c2:
b4:bb:e9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:22 2024 by rpki-client on console-ams.rpki-client.org