Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_GJVxU-Mwi_UbYm7Hth0USVRHks.roa
File: _GJVxU-Mwi_UbYm7Hth0USVRHks.roa (raw, json)
Hash identifier: NXj4IVAFeL/WZYAqMrch+nBpVXQJ4OhGcWDVxlq31Qo=
Subject key identifier: FC:62:55:C5:4F:8C:C2:2F:D4:6D:89:BB:1E:D8:74:51:25:51:1E:4B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018E376934C7B5BFA95120CC486331566B35
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_GJVxU-Mwi_UbYm7Hth0USVRHks.roa
Signing time: Wed 13 Mar 2024 10:43:45 +0000
ROA not before: Wed 13 Mar 2024 10:43:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213005
IP address blocks: 81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
92.60.34.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
95.214.144.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.179.228.0/22 maxlen: 22
185.189.64.0/22 maxlen: 24
185.211.180.0/22 maxlen: 22
185.223.220.0/22 maxlen: 22
185.227.128.0/22 maxlen: 22
185.245.34.0/23 maxlen: 23
185.254.156.0/24 maxlen: 24
185.254.157.0/24 maxlen: 24
185.254.158.0/24 maxlen: 24
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 14:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:69:34:c7:b5:bf:a9:51:20:cc:48:63:31:56:6b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 13 10:43:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc6255c54f8cc22fd46d89bb1ed8745125511e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f0:6c:5c:d8:5c:94:f5:55:db:93:6d:2a:1e:
00:49:c1:a2:e0:f4:a4:c5:ec:d6:bd:0b:b2:41:2d:
3d:ee:37:9c:ba:e8:d5:1a:d8:ee:c0:f8:1f:02:7b:
ab:b9:23:6b:23:76:4e:d2:1e:66:68:6a:88:25:93:
5d:60:b5:4a:07:25:17:7a:15:25:8b:84:67:e5:ea:
13:77:eb:e4:38:68:7a:ed:d9:86:ce:2e:c7:45:29:
5c:1c:b8:80:51:ba:c5:91:64:36:d1:b1:54:a6:2b:
a8:38:63:9b:b0:ec:92:b8:45:c0:5f:5e:8b:eb:dc:
4a:1b:3e:d2:58:6e:80:b8:79:8b:57:8e:ad:f2:d8:
25:61:db:3d:ac:dd:bb:3b:4c:75:2c:d7:ce:65:1f:
79:bb:13:91:1e:53:82:7a:8a:0c:c6:93:d2:09:6d:
f2:41:cf:da:26:cc:76:89:f7:f9:af:3a:f5:8f:7c:
47:44:23:2f:4a:70:b9:4d:40:bc:4c:cb:b7:9c:11:
3c:53:2d:4f:a4:bb:a9:18:d2:52:0f:be:13:4e:46:
10:08:b7:34:60:66:75:62:0b:9a:cb:e5:a1:2b:49:
f7:81:b2:10:5e:e9:b8:bc:9b:f2:27:59:7a:91:16:
e3:d8:22:db:4a:a0:ed:63:15:8e:dd:1c:bb:14:1a:
46:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:62:55:C5:4F:8C:C2:2F:D4:6D:89:BB:1E:D8:74:51:25:51:1E:4B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_GJVxU-Mwi_UbYm7Hth0USVRHks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
92.60.34.0/24
93.92.228.0/22
95.214.144.0/22
185.106.124.0/22
185.179.228.0/22
185.189.64.0/22
185.211.180.0/22
185.223.220.0/22
185.227.128.0/22
185.245.34.0/23
185.254.156.0-185.254.158.255
193.26.152.0/22
193.35.88.0/22
194.38.56.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
99:94:2a:c5:1f:0f:26:d7:92:3b:b0:6b:25:51:8d:e5:da:d8:
ea:35:07:7e:f2:23:58:c1:f5:83:fd:7c:b9:d8:5e:de:42:f2:
44:47:30:c1:99:42:00:6c:97:6a:a7:30:76:12:14:ce:b0:39:
1e:8d:bd:e7:84:c8:76:12:08:92:c3:32:e2:aa:00:7f:a8:33:
84:81:0d:a1:cd:a3:90:5d:38:41:66:2a:11:ec:dd:63:24:04:
d5:1d:6b:86:3c:1e:d0:f7:d6:21:aa:94:c7:96:dc:14:c3:b3:
85:06:16:a1:94:ae:78:99:9e:01:cf:75:2f:9d:2a:ef:3f:c6:
ea:06:b9:c2:77:c6:ec:d4:96:a4:a3:99:e1:f7:86:9d:25:32:
fe:93:d8:59:48:e1:3e:20:57:bc:d6:68:8c:e6:47:cb:92:21:
07:83:89:24:36:59:26:1a:2f:3c:5c:ed:d8:e5:3c:01:04:e4:
84:bc:ef:9e:3c:97:d1:2c:08:83:c6:40:bb:42:3a:fa:73:89:
de:ad:67:0a:dc:a9:41:d6:00:46:84:e2:9f:4a:9e:42:dd:66:
58:c9:8f:3a:0a:e5:41:30:d4:32:18:55:d2:2a:58:70:e0:63:
26:92:7b:af:1d:ef:da:ff:15:f6:e0:ae:83:12:5e:dd:cd:34:
8c:8d:2d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org