Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/1-L334HzluFZmyPu4RFxwl-F8N0.roa
File: 1-L334HzluFZmyPu4RFxwl-F8N0.roa (raw, json)
Hash identifier: gGYetgJRa1Xo7sUZG7/0IbL31wA4qXENq7FNm6NveDY=
Subject key identifier: D7:E2:F7:DF:81:F3:96:E1:59:9B:23:EE:E1:11:71:C2:5F:85:F0:DD
Certificate issuer: /CN=bdd244214d76468d3fb72abad1892ef23dede978
Certificate serial: 018A602DBBFCB956C84F809428F879B7020D
Authority key identifier: BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/1-L334HzluFZmyPu4RFxwl-F8N0.roa
Signing time: Mon 04 Sep 2023 12:32:04 +0000
ROA not before: Mon 04 Sep 2023 12:32:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 81.7.224.0/20 maxlen: 20
81.7.224.0/19 maxlen: 19
178.82.0.0/16 maxlen: 16
178.82.0.0/15 maxlen: 15
81.7.240.0/20 maxlen: 20
213.193.64.0/19 maxlen: 19
84.20.32.0/21 maxlen: 21
84.20.32.0/20 maxlen: 20
84.74.0.0/15 maxlen: 15
84.20.40.0/21 maxlen: 21
84.20.48.0/22 maxlen: 22
84.20.48.0/21 maxlen: 21
213.193.64.0/18 maxlen: 18
84.72.0.0/15 maxlen: 15
213.193.96.0/19 maxlen: 19
84.72.0.0/14 maxlen: 14
46.126.0.0/16 maxlen: 16
217.168.32.0/19 maxlen: 19
217.168.32.0/20 maxlen: 20
46.126.0.0/15 maxlen: 15
217.168.48.0/20 maxlen: 20
46.140.0.0/17 maxlen: 17
46.140.0.0/16 maxlen: 16
217.162.0.0/17 maxlen: 17
62.2.0.0/17 maxlen: 17
217.162.0.0/16 maxlen: 16
62.2.0.0/16 maxlen: 16
194.29.0.0/19 maxlen: 19
194.29.0.0/20 maxlen: 20
31.10.128.0/18 maxlen: 18
31.10.128.0/17 maxlen: 17
84.20.52.0/22 maxlen: 22
80.219.0.0/16 maxlen: 16
195.202.192.0/19 maxlen: 19
195.202.192.0/18 maxlen: 18
31.10.192.0/18 maxlen: 18
46.140.128.0/17 maxlen: 17
46.127.0.0/16 maxlen: 16
195.202.224.0/19 maxlen: 19
80.218.0.0/16 maxlen: 16
80.218.0.0/15 maxlen: 15
217.162.128.0/17 maxlen: 17
62.2.128.0/17 maxlen: 17
194.29.16.0/20 maxlen: 20
212.47.160.0/20 maxlen: 20
212.47.160.0/19 maxlen: 19
178.83.0.0/16 maxlen: 16
212.47.176.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 05 Sep 2023 08:23:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:2d:bb:fc:b9:56:c8:4f:80:94:28:f8:79:b7:02:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdd244214d76468d3fb72abad1892ef23dede978
Validity
Not Before: Sep 4 12:32:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7e2f7df81f396e1599b23eee11171c25f85f0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:61:53:22:9c:d6:5d:a2:d9:a3:73:a3:82:
30:34:e8:21:85:fc:0c:1f:20:7f:13:8e:09:96:a8:
40:84:4c:2d:f7:01:7a:27:2d:76:25:e5:f5:08:6e:
f1:ea:02:b6:2e:f5:de:94:e0:8c:05:58:69:fa:52:
39:dc:88:75:2f:8e:30:e8:65:c8:6b:13:ab:fb:0d:
17:21:c8:36:31:9e:0f:ed:7a:a4:28:b1:b9:08:f0:
36:3f:6a:c7:5b:1e:a4:aa:ab:88:c0:a5:42:d6:14:
8d:8d:9f:26:b3:d1:ed:07:6b:f1:a8:13:9e:9a:59:
4c:42:a8:34:4b:22:35:9d:24:76:45:78:3e:8f:7a:
f6:57:87:d2:05:3c:2a:5e:d7:39:a1:1e:94:0b:0d:
72:42:4c:15:73:c0:91:78:ce:b3:41:2c:60:8e:d1:
05:22:8d:15:0c:05:7b:05:44:75:e9:d1:ba:3a:7f:
4b:34:78:6e:51:38:0b:cb:8f:c0:66:78:ee:83:fb:
b8:ac:eb:98:41:7a:76:7c:a6:27:b1:81:f7:b9:5b:
a8:1e:bf:0d:06:15:2e:d6:b5:c3:93:fb:7b:22:b4:
fe:c0:56:b3:5a:a3:e7:db:28:72:b5:2e:f7:7b:3d:
5d:f1:5f:7e:46:9e:c0:68:9d:bd:a8:85:fe:7c:28:
03:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E2:F7:DF:81:F3:96:E1:59:9B:23:EE:E1:11:71:C2:5F:85:F0:DD
X509v3 Authority Key Identifier:
keyid:BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/1-L334HzluFZmyPu4RFxwl-F8N0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.128.0/17
46.126.0.0/15
46.140.0.0/16
62.2.0.0/16
80.218.0.0/15
81.7.224.0/19
84.20.32.0-84.20.55.255
84.72.0.0/14
178.82.0.0/15
194.29.0.0/19
195.202.192.0/18
212.47.160.0/19
213.193.64.0/18
217.162.0.0/16
217.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:85:73:3f:23:91:13:fc:b2:a1:2c:26:0b:73:36:c7:c8:6d:
cb:5f:9b:87:ad:82:8b:d1:62:0b:71:c3:23:56:3a:20:8c:e9:
59:a1:bc:96:dd:c8:ca:a2:90:0c:bb:90:da:9e:6d:27:02:5e:
15:e9:be:40:fc:55:ed:7f:fd:86:45:fb:b2:01:ef:2f:92:fa:
c3:4b:b9:05:2e:0e:e8:bb:f5:7f:58:ee:a3:98:4d:b7:28:fd:
24:cb:5c:b9:b5:6d:cd:80:e0:89:16:ee:95:dc:a8:b5:5e:9d:
54:60:0a:48:de:cb:fd:dc:9d:f1:5b:19:c8:e0:53:2a:f5:53:
61:b0:e2:7c:19:90:f9:4f:0d:0f:b8:7a:48:09:4c:97:b7:c7:
11:30:84:11:9d:d3:62:f4:27:9e:c0:06:30:da:59:50:f8:c6:
43:53:81:94:72:6b:5a:f8:45:f2:75:1c:a8:d3:74:97:ae:dc:
93:57:2a:86:26:1e:64:bc:08:aa:50:8a:c2:bf:73:78:60:a9:
6b:4c:c6:67:18:c1:e1:bd:1b:33:36:4e:39:f3:34:46:e3:a7:
76:cc:37:50:6d:89:a8:50:c4:46:ff:61:29:1d:3a:57:e2:08:
14:c7:8b:42:c9:59:20:9d:05:bd:8b:91:13:c1:99:04:8b:1f:
76:0b:a9:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:19 2024 by rpki-client on console-ams.rpki-client.org