Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/D7i-YJZpGa6Ccx6MmVIbhrJJNfM.roa
File: D7i-YJZpGa6Ccx6MmVIbhrJJNfM.roa (raw, json)
Hash identifier: jx9xMBj6ImEo62wvn1GoW8oVncYXDv/cCOZ4lUUEb6o=
Subject key identifier: 0F:B8:BE:60:96:69:19:AE:82:73:1E:8C:99:52:1B:86:B2:49:35:F3
Certificate issuer: /CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Certificate serial: 01856F024AB020DFB50423CF91318AC38F8D
Authority key identifier: 58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/D7i-YJZpGa6Ccx6MmVIbhrJJNfM.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49352
IP address blocks: 213.189.195.0/24 maxlen: 24
213.189.199.0/24 maxlen: 24
188.93.213.0/24 maxlen: 24
188.93.208.0/23 maxlen: 23
188.93.215.0/24 maxlen: 24
188.93.214.0/24 maxlen: 24
178.21.14.0/23 maxlen: 23
178.21.13.0/24 maxlen: 24
178.21.12.0/22 maxlen: 22
178.21.12.0/24 maxlen: 24
185.38.16.0/24 maxlen: 24
185.38.17.0/24 maxlen: 24
185.38.18.0/24 maxlen: 24
185.38.19.0/24 maxlen: 24
194.67.64.0/24 maxlen: 24
194.67.75.0/24 maxlen: 24
194.67.76.0/23 maxlen: 23
176.99.4.0/24 maxlen: 24
176.99.9.0/24 maxlen: 24
176.99.5.0/24 maxlen: 24
176.99.7.0/24 maxlen: 24
176.99.8.0/24 maxlen: 24
176.99.6.0/24 maxlen: 24
176.99.5.190/32 maxlen: 32
188.93.209.127/32 maxlen: 32
194.67.106.0/24 maxlen: 24
188.93.208.172/32 maxlen: 32
178.21.9.0/24 maxlen: 24
62.113.93.0/24 maxlen: 24
2a02:f20::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 08 Mar 2023 18:44:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4a:b0:20:df:b5:04:23:cf:91:31:8a:c3:8f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb8be60966919ae82731e8c99521b86b24935f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:42:0f:22:c7:c3:56:86:f3:00:30:67:21:97:
d4:e7:c3:e9:7f:a8:69:c7:8e:02:ec:76:42:7f:96:
3e:db:72:f4:c4:93:61:ef:4f:98:50:24:29:b7:72:
34:ab:26:24:5d:2c:58:fc:f6:a5:d3:83:52:f0:8a:
7d:14:74:9c:04:22:49:21:9e:18:a9:bd:dd:a2:fa:
f7:8f:e8:43:29:7c:4f:e4:ab:bc:c1:51:63:17:4b:
51:18:71:eb:d8:92:a3:47:6f:4b:52:13:8b:4e:4d:
6a:20:dd:28:ee:47:48:d7:63:d1:2f:30:71:b9:f4:
c3:64:17:8a:29:f5:a3:b5:ef:2f:3f:e5:fa:ac:78:
b9:fb:c6:3c:96:ea:a0:48:d0:c5:35:3d:af:ae:3f:
4c:36:88:e4:bf:f2:a5:51:1e:45:e2:6e:95:20:d3:
04:e4:a8:d3:91:74:de:9c:ea:13:f5:da:55:78:fa:
95:2d:d4:ec:95:a1:71:f1:e1:c5:39:a8:8f:34:1f:
e6:d4:33:a6:f6:56:95:94:4e:31:f2:9c:e2:c7:0b:
0b:0d:8e:4e:13:0e:af:26:fd:8a:00:2b:aa:cd:a1:
9a:b8:4d:4a:79:6f:d1:d3:9a:b1:19:54:2b:a8:53:
fc:bf:c4:5e:58:68:b9:59:2c:70:91:84:ea:f5:80:
89:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B8:BE:60:96:69:19:AE:82:73:1E:8C:99:52:1B:86:B2:49:35:F3
X509v3 Authority Key Identifier:
keyid:58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/D7i-YJZpGa6Ccx6MmVIbhrJJNfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/WDMpShzcE1ivxDnApyczsGWob4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.93.0/24
176.99.4.0-176.99.9.255
178.21.9.0/24
178.21.12.0/22
185.38.16.0/22
188.93.208.0/23
188.93.213.0-188.93.215.255
194.67.64.0/24
194.67.75.0-194.67.77.255
194.67.106.0/24
213.189.195.0/24
213.189.199.0/24
IPv6:
2a02:f20::/32
Signature Algorithm: sha256WithRSAEncryption
e9:c7:a8:07:7d:9b:a2:b8:b7:22:07:7f:92:1e:7e:02:40:bc:
d5:e4:ed:4e:0b:bb:52:de:c2:c5:45:32:c7:e1:6c:f2:51:5f:
59:9b:f8:66:95:13:86:cc:fa:24:ca:7d:9f:1e:34:2d:a9:67:
ee:0d:c7:40:28:f4:34:85:2b:f6:1c:bd:a1:ec:72:a8:fd:9e:
6f:10:02:d7:d5:9e:37:47:68:89:da:51:89:4e:fd:0f:e3:70:
64:58:0d:f4:27:d7:61:a6:52:75:a3:f6:98:a9:21:31:06:d6:
68:ea:27:0f:52:f4:46:58:67:0e:bc:a4:a5:47:a7:63:1f:49:
e7:1b:79:78:2b:1f:14:90:5c:15:25:dd:33:18:87:75:0e:76:
6f:a9:71:e1:c4:48:10:31:4a:d4:b1:fc:59:ce:39:a9:de:21:
a3:1b:01:83:42:af:66:12:d0:14:d4:88:81:3c:df:7c:ab:ff:
e3:b7:dc:b0:e3:e1:0a:93:ff:46:f3:9a:05:66:57:a6:93:49:
19:82:eb:3e:28:11:84:f5:91:e0:6c:ac:96:3f:de:7c:2d:f5:
bd:46:6d:1e:20:9d:d2:1e:2a:a6:2a:d7:d4:b1:1b:30:a9:ba:
58:c8:01:79:c9:bc:b8:df:2e:59:7e:98:3d:da:37:a0:86:96:
9a:6f:d4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org