Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/hLltNsV7C5LqzvP7Y5jwg4LR0qY.roa
File: hLltNsV7C5LqzvP7Y5jwg4LR0qY.roa (raw, json)
Hash identifier: 448Pgir/ZbrSO8M4m5qux3+Kua1aluYCn8dZ+yUPU9k=
Subject key identifier: 84:B9:6D:36:C5:7B:0B:92:EA:CE:F3:FB:63:98:F0:83:82:D1:D2:A6
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01856F79744A3DA58DA97B0A6000FC48DFDE
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/hLltNsV7C5LqzvP7Y5jwg4LR0qY.roa
Signing time: Sun 01 Jan 2023 22:35:08 +0000
ROA not before: Sun 01 Jan 2023 22:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210107
IP address blocks: 193.36.60.97/32 maxlen: 32
193.36.60.0/24 maxlen: 24
193.36.61.0/24 maxlen: 24
193.36.60.60/32 maxlen: 32
193.36.60.80/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0a:fa40::/32 maxlen: 32
2a0c:4a40::/32 maxlen: 32
2a0c:586::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a0c:587::/32 maxlen: 32
2a0c:584::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0a:fa42::/32 maxlen: 32
2a0c:4a42::/32 maxlen: 32
2a0a:fa46::/32 maxlen: 32
2a0c:4a43::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0c:585::/32 maxlen: 32
2a0c:582::/32 maxlen: 32
2a0a:fa44::/32 maxlen: 32
2a0c:4a44::/32 maxlen: 32
2a0d:d382::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0a:fa43::/32 maxlen: 32
2a0c:581::/32 maxlen: 32
2a0c:4a45::/32 maxlen: 32
2a0a:fa45::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0c:580::/32 maxlen: 32
2a0d:d380::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0a:fa47::/32 maxlen: 32
2a0c:583::/32 maxlen: 32
2a0c:4a41::/32 maxlen: 32
2a0a:fa41::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Apr 2023 12:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:74:4a:3d:a5:8d:a9:7b:0a:60:00:fc:48:df:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 22:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84b96d36c57b0b92eacef3fb6398f08382d1d2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e1:7d:ab:d1:33:c5:15:f2:fb:25:22:d4:39:
09:15:68:47:91:c3:43:6e:f1:56:fa:5c:b5:68:9b:
71:89:79:38:d8:f7:19:85:ca:f6:79:73:1f:05:0f:
85:e4:79:96:c3:c3:62:d5:a3:2f:5d:24:bc:ad:d7:
56:ab:91:cb:7d:37:5f:40:19:00:35:55:48:e4:1f:
c1:ca:0f:29:7d:eb:dd:a4:c1:5d:c5:12:d1:08:bf:
f3:51:55:d6:05:fb:31:aa:9a:d9:73:93:91:c6:86:
ca:41:ab:f1:7b:de:36:f1:a9:cd:2c:7b:f1:17:45:
ff:af:44:ff:4b:89:18:a2:6d:ee:36:4a:3d:50:6e:
0d:ed:a5:ab:42:31:dc:6c:39:e0:ee:52:5d:27:17:
14:bf:00:a8:f9:24:b4:43:69:b4:61:b9:09:d8:d4:
da:96:a6:10:95:02:70:38:7d:ad:92:aa:71:fa:58:
e5:a7:f4:47:76:fd:ed:18:a2:2b:b1:d2:d6:57:b7:
b2:d1:45:ea:34:38:03:a9:0f:01:cb:a5:4c:b2:53:
2b:e7:a7:ce:56:e0:8f:a1:ff:b2:e5:15:fa:fb:b6:
4c:60:10:88:36:f0:d8:a7:88:87:f8:f7:04:90:57:
26:cc:95:bf:43:2d:32:91:c6:cd:22:0f:7b:d5:c4:
a8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B9:6D:36:C5:7B:0B:92:EA:CE:F3:FB:63:98:F0:83:82:D1:D2:A6
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/hLltNsV7C5LqzvP7Y5jwg4LR0qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.60.0/23
IPv6:
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
Signature Algorithm: sha256WithRSAEncryption
53:38:4a:5e:8e:e2:39:73:13:7b:68:be:19:5b:92:57:e6:ec:
38:48:94:bc:7e:e5:cc:72:4b:22:9e:77:4b:0f:7c:69:10:7c:
bf:b2:39:cf:74:21:c5:ea:28:46:ca:9a:4c:7e:86:13:ea:60:
36:65:32:7d:20:35:f2:26:84:e6:cf:9b:a5:57:6d:2b:bd:b2:
8f:f8:4e:cb:85:91:7a:d7:c4:f8:da:c2:fb:41:21:20:b5:3f:
ac:54:a1:36:64:98:b4:40:46:6d:e6:ae:c2:43:0b:e2:df:8e:
5c:b8:22:71:58:ed:f0:b3:28:8f:9c:32:f4:f8:99:c1:ec:01:
85:05:1e:70:c7:51:b5:ff:c5:1d:8d:2c:92:e0:ea:3e:23:80:
23:db:9b:c9:38:b6:9a:39:7b:19:f9:36:00:7d:15:34:06:db:
3d:3f:ce:b2:2b:e4:2b:0a:59:19:06:86:20:7c:48:8e:99:33:
c2:d8:47:b6:f2:7e:fd:d9:84:a2:e3:16:43:b9:36:e9:ab:ac:
bd:64:db:e0:f3:26:f9:c7:e4:8e:56:c3:49:42:28:fd:de:20:
b7:1f:fe:21:a2:24:90:ca:e2:96:ee:b7:fc:8c:bb:a9:c9:6d:
c0:8c:3d:c6:76:5a:48:cd:55:98:2a:72:42:7f:13:60:4a:ec:
a7:f0:42:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org