Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/AGOqwDTrkMCELF5bPTn6Soo4TeM.roa
File: AGOqwDTrkMCELF5bPTn6Soo4TeM.roa (raw, json)
Hash identifier: +HaditFjOPCI5ZzaG49jzmLC1ijEKtMsSYInggLkCbU=
Subject key identifier: 00:63:AA:C0:34:EB:90:C0:84:2C:5E:5B:3D:39:FA:4A:8A:38:4D:E3
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018CC2DB14A13F92CF5B3289613DE379CAD6
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/AGOqwDTrkMCELF5bPTn6Soo4TeM.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 193.36.62.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
185.86.82.0/24 maxlen: 24
2a0d:d386::/32 maxlen: 32
2a0c:586::/32 maxlen: 32
2a0c:4a40::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a0c:587::/32 maxlen: 32
2a0c:584::/32 maxlen: 32
2a0a:fa42::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a42::/32 maxlen: 32
2a0a:fa46::/32 maxlen: 32
2a0c:4a43::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0c:585::/32 maxlen: 32
2a0c:582::/32 maxlen: 32
2a0a:fa44::/32 maxlen: 32
2a0c:4a44::/32 maxlen: 32
2a0d:d382::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0c:4a45::/32 maxlen: 32
2a0a:fa43::/32 maxlen: 32
2a0c:581::/32 maxlen: 32
2a0a:fa45::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0c:580::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d380::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0a:fa47::/32 maxlen: 32
2a0c:583::/32 maxlen: 32
2a0c:4a41::/32 maxlen: 32
2a0a:fa41::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 22 Jan 2024 10:57:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:14:a1:3f:92:cf:5b:32:89:61:3d:e3:79:ca:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0063aac034eb90c0842c5e5b3d39fa4a8a384de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9c:a7:be:a8:36:70:0f:b5:23:48:8b:33:70:
c4:ee:b7:f4:01:e8:fc:9e:e0:10:a2:60:cf:78:63:
54:f4:d0:ab:fd:0f:89:58:ce:fd:6a:3e:d8:95:37:
9c:26:b5:e4:10:a7:b9:86:50:2e:db:3d:0c:14:d5:
d6:b6:d8:64:1f:89:5c:e7:31:c9:5e:38:87:bd:2a:
8a:86:0e:9e:a7:24:05:a8:e6:ec:5a:11:28:18:f5:
98:79:31:8a:9d:cd:57:e4:ce:3a:08:49:33:90:6f:
8a:7b:88:1a:d8:d5:2b:50:bf:b0:ef:b0:f3:f5:bf:
b0:dd:33:d2:e6:b6:ac:49:2d:4b:ae:73:25:dd:24:
c0:05:01:87:04:1a:8d:1a:3f:66:f1:d4:79:80:59:
b2:85:cb:b5:ac:ff:cb:0b:bd:e5:03:e1:07:3a:bb:
f0:7d:40:86:9a:47:90:32:03:a0:66:eb:80:5a:8d:
78:14:4d:ab:3e:ba:f4:3a:3e:41:5b:82:0d:aa:82:
f9:be:0a:e5:c0:74:0b:90:36:48:5d:e1:37:0e:9f:
f6:67:22:2c:eb:bf:99:09:1b:74:b1:84:fe:17:6d:
9a:12:d0:48:60:de:b6:a2:ea:de:ac:b7:39:fa:39:
f9:ab:28:8e:39:2e:ea:d6:74:8e:12:88:56:aa:7e:
94:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:63:AA:C0:34:EB:90:C0:84:2C:5E:5B:3D:39:FA:4A:8A:38:4D:E3
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/AGOqwDTrkMCELF5bPTn6Soo4TeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a0a:fa41::-2a0a:fa47:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
Signature Algorithm: sha256WithRSAEncryption
a3:9f:ac:6d:08:6c:f2:1d:06:df:bb:c0:37:1a:9d:f5:a6:54:
eb:af:86:99:c6:c8:0d:09:23:2a:3f:a9:ec:9c:c0:69:62:58:
0a:fb:95:70:4e:79:87:4c:b0:ae:9a:31:43:11:e1:5a:7e:4f:
e3:0f:47:5c:fd:00:2c:1b:78:02:9d:aa:6d:e6:41:a0:73:48:
bb:92:65:71:98:e0:70:df:50:d7:5b:ad:2e:77:18:e4:71:b6:
fc:11:f6:cb:85:7f:41:2d:73:54:b0:51:d1:3a:e6:1d:76:b2:
99:4a:54:6f:5a:d7:f9:69:c0:8f:21:b7:7a:40:7d:86:50:d4:
c7:54:de:20:2c:53:7d:57:97:a6:4f:dd:d4:1c:e9:60:fc:38:
4d:9d:05:f8:16:2a:2a:9a:ee:a9:48:7d:10:86:eb:aa:a9:07:
4a:4d:ae:fd:c8:38:f5:77:0d:6f:e2:80:02:21:d9:02:e5:7f:
1b:c3:08:e3:8f:d1:86:fe:2e:0d:28:37:8b:12:67:0f:b4:0f:
22:41:5d:a7:2b:7f:7c:12:ed:a4:9b:a2:e7:09:4c:48:ba:4d:
44:1c:6a:6e:c0:51:ce:c6:d6:47:cb:5d:28:e9:64:5a:64:0b:
a5:d9:05:e7:2d:3f:86:ae:b2:7e:b5:11:ba:1d:ef:1e:93:f9:
5e:fb:9f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org