Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/t8GWsYC269TrnANz3n7gWz_GJDc.roa
File: t8GWsYC269TrnANz3n7gWz_GJDc.roa (raw, json)
Hash identifier: tl21a5/5CTHuWojln91bSP9YKZoNnLEdT8FRVF9HYAM=
Subject key identifier: B7:C1:96:B1:80:B6:EB:D4:EB:9C:03:73:DE:7E:E0:5B:3F:C6:24:37
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BD2807CBF6FBC38A08C42CDEC479A4FCD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/t8GWsYC269TrnANz3n7gWz_GJDc.roa
Signing time: Wed 15 Nov 2023 10:21:57 +0000
ROA not before: Wed 15 Nov 2023 10:21:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.218.102.0/24 maxlen: 24
185.199.159.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
176.125.248.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.209.36.0/23 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:80:7c:bf:6f:bc:38:a0:8c:42:cd:ec:47:9a:4f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 15 10:21:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7c196b180b6ebd4eb9c0373de7ee05b3fc62437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7b:22:c9:54:a1:ad:94:81:a2:3c:4e:d4:58:
59:a7:29:a1:8f:90:80:59:f7:77:b0:01:c9:7c:9c:
a4:67:31:94:51:d7:75:4c:ba:62:29:1d:40:c0:a2:
8b:56:32:60:b9:da:c2:0e:69:4f:45:f1:27:a8:6a:
46:81:ac:73:d8:e0:ac:0c:d1:9e:4b:19:99:07:8a:
6f:1d:87:b8:19:a9:be:e0:3d:70:8c:61:49:f5:ce:
03:23:bf:c5:2e:d2:93:94:2f:9e:8c:64:c9:f4:18:
be:30:2b:a2:ae:94:4a:85:3e:cb:49:47:c6:32:0b:
4b:cf:b3:fe:67:44:db:4e:a5:c4:10:77:ac:e3:f0:
f6:9a:0e:42:0a:2a:64:96:26:31:2c:2c:e6:48:a4:
19:45:26:5c:b0:92:b3:fa:d0:79:5e:37:49:6a:e8:
83:77:c5:3f:d4:b1:c9:dd:2c:3d:d4:fe:8a:ee:6d:
55:e2:b6:40:5b:e3:8b:a8:ef:c8:de:8e:fc:95:4a:
06:7f:cc:b4:75:53:39:16:a4:3d:64:89:37:48:3b:
9e:c1:7f:ec:41:4e:01:c6:ff:df:03:6b:a8:43:7b:
10:dd:a4:08:42:ed:3a:f8:0b:4d:02:a9:8c:db:74:
e0:b9:f1:17:0e:e6:96:db:35:9b:a2:79:e6:36:09:
d9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C1:96:B1:80:B6:EB:D4:EB:9C:03:73:DE:7E:E0:5B:3F:C6:24:37
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/t8GWsYC269TrnANz3n7gWz_GJDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.248.0/24
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.209.74.0/24
185.210.152.0/22
185.218.102.0/24
185.220.249.0/24
185.223.76.0/24
185.223.80.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:4a:e6:aa:7d:1e:75:2c:1f:fb:00:12:2c:67:b8:b7:3a:bf:
b4:ce:b4:c6:a9:db:8d:56:de:56:fd:a5:53:67:56:a7:ba:55:
61:5d:e4:59:a4:1d:ab:7c:98:fe:1a:25:5d:8d:37:4c:6f:c1:
b1:d9:5b:e3:c4:0d:1e:37:04:e9:09:02:4b:ee:0e:8d:01:ae:
2d:a7:7d:33:5c:6a:b7:43:47:c6:6e:3a:fa:dc:bf:97:9d:c0:
33:22:f5:98:42:aa:c8:40:9c:5e:af:ed:92:85:80:35:af:67:
d5:1d:fc:ff:69:0d:2c:7d:58:98:80:66:f3:00:ab:44:d2:9b:
06:30:fd:4c:b5:a9:1e:e1:a1:3b:34:ca:26:b8:58:97:cf:21:
fe:c7:5a:91:3e:67:79:85:96:e5:59:ab:e9:4a:b4:7d:73:0c:
a9:a7:f3:91:e5:92:5f:a7:ca:c8:d3:7b:c6:33:53:3f:f5:d8:
23:76:a0:44:55:5f:0e:78:a4:a1:59:fb:33:c7:77:d1:c2:c8:
af:9e:a5:63:6b:83:26:01:4f:1d:bf:53:0d:c3:50:ec:55:7a:
83:42:46:79:ce:53:f6:61:98:5b:58:25:13:d1:e4:37:5d:ea:
ef:ef:c3:2b:44:da:a4:26:47:ab:72:5c:6d:a1:c1:ac:3e:0b:
28:fd:57:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org