Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/pzZ0HAAqo-ncFnKjcJDGCmbu71Y.roa
File: pzZ0HAAqo-ncFnKjcJDGCmbu71Y.roa (raw, json)
Hash identifier: f82ZtG0xDDq7sxUCIioNqYABhNvzboWJe38b4lYbUgI=
Subject key identifier: A7:36:74:1C:00:2A:A3:E9:DC:16:72:A3:70:90:C6:0A:66:EE:EF:56
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 01870878317131D6CE1FCBF44DA9438C1EFA
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/pzZ0HAAqo-ncFnKjcJDGCmbu71Y.roa
Signing time: Wed 22 Mar 2023 08:38:27 +0000
ROA not before: Wed 22 Mar 2023 08:38:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 83.229.66.0/24 maxlen: 32
80.240.98.0/23 maxlen: 32
83.229.116.0/22 maxlen: 32
217.194.136.0/23 maxlen: 32
83.229.12.0/23 maxlen: 32
217.194.139.0/24 maxlen: 32
217.194.144.0/24 maxlen: 32
193.31.56.0/22 maxlen: 32
212.107.0.0/22 maxlen: 32
217.194.152.0/24 maxlen: 32
217.194.151.0/24 maxlen: 32
78.138.63.0/24 maxlen: 32
83.229.58.0/23 maxlen: 32
195.3.136.0/22 maxlen: 32
194.187.36.0/22 maxlen: 32
185.4.226.0/24 maxlen: 32
217.194.130.0/23 maxlen: 32
31.40.228.0/22 maxlen: 32
91.196.180.0/22 maxlen: 32
194.31.176.0/22 maxlen: 32
213.255.194.0/24 maxlen: 32
213.255.193.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Mar 2023 08:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:78:31:71:31:d6:ce:1f:cb:f4:4d:a9:43:8c:1e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Mar 22 08:38:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a736741c002aa3e9dc1672a37090c60a66eeef56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:96:25:93:de:90:e8:ef:be:f4:41:c2:62:ec:
2c:de:20:3e:4e:39:12:24:b7:57:85:b8:97:7a:4c:
d0:c0:b3:47:d6:4e:99:d8:5b:2b:97:b1:2d:b9:df:
22:6b:18:94:a8:47:ab:e1:87:ac:ab:e9:eb:53:7d:
c8:40:2e:28:bf:d6:cf:15:39:44:ea:ac:18:c0:a2:
91:65:7a:39:6a:61:43:53:0c:59:8e:a4:5c:0d:0f:
b0:a2:f4:d2:fc:9d:8d:a7:3b:3a:ec:6c:6e:e0:a7:
6c:1b:71:fa:3c:71:a6:64:5d:25:92:95:5e:8d:55:
e8:ed:0c:d1:0a:43:a3:ad:0e:e0:2d:d0:e1:c5:3d:
b6:1c:b0:cf:9a:12:f8:74:b0:d1:29:99:9a:51:db:
60:6a:be:be:8d:4e:a1:8d:4c:04:e0:5a:93:7c:0d:
12:94:85:22:6a:7f:9b:ed:de:56:f0:61:36:65:de:
1d:9e:f3:bf:98:b8:2c:e5:0f:91:48:28:cd:87:93:
a4:c4:4f:71:3c:3c:37:fa:75:81:60:7b:11:5c:6a:
6d:7e:6a:df:93:68:40:ea:90:7b:75:7e:63:51:38:
4b:79:8c:5a:b4:61:d8:2b:16:9d:d6:f5:5c:5a:32:
de:ec:09:c6:7a:e9:26:41:32:d4:d2:5d:87:f6:03:
4d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:36:74:1C:00:2A:A3:E9:DC:16:72:A3:70:90:C6:0A:66:EE:EF:56
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/pzZ0HAAqo-ncFnKjcJDGCmbu71Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.228.0/22
78.138.63.0/24
80.240.98.0/23
83.229.12.0/23
83.229.58.0/23
83.229.66.0/24
83.229.116.0/22
91.196.180.0/22
185.4.226.0/24
193.31.56.0/22
194.31.176.0/22
194.187.36.0/22
195.3.136.0/22
212.107.0.0/22
213.255.193.0-213.255.194.255
217.194.130.0/23
217.194.136.0/23
217.194.139.0/24
217.194.144.0/24
217.194.151.0-217.194.152.255
Signature Algorithm: sha256WithRSAEncryption
0d:cc:9a:7f:e0:be:bb:24:78:ad:5b:84:d4:93:2f:58:70:a3:
09:52:fb:da:b2:46:68:3c:e5:35:60:f5:24:f1:62:51:6a:23:
a3:99:4f:9f:50:08:c6:73:ad:06:ff:f5:7e:cd:d4:d9:87:d4:
ea:11:e3:f5:8d:c5:d3:d6:14:fd:15:d0:90:9e:83:e8:d2:45:
49:94:1f:8b:e0:4e:ff:a9:11:39:da:c6:13:92:fe:71:ec:24:
fe:f7:de:2b:fd:8b:b3:c5:5b:a1:65:ff:8b:35:dc:d3:1d:04:
01:cb:64:69:bb:5b:2c:06:e9:1a:de:99:18:34:42:b4:5c:67:
7b:ca:e4:35:3d:91:69:98:a9:0a:66:d9:e0:4d:31:1e:79:9d:
12:d5:18:f3:5b:02:76:e6:d2:62:06:47:a3:5a:32:10:3b:f9:
4d:cd:66:b1:b6:6a:f9:fb:d8:ae:3a:f9:4f:bd:14:9f:56:18:
2a:e5:08:98:b0:03:fd:9f:45:30:68:d6:7a:3d:a0:00:41:83:
5a:ad:22:4e:3b:d6:fc:79:a5:89:2f:20:80:dd:14:3a:be:20:
ff:d3:a8:e8:ea:f8:da:ed:11:c9:c7:d5:eb:17:45:39:3d:94:
ca:2e:0b:22:a8:6a:8c:37:4a:c5:e8:80:47:36:50:bd:79:4f:
3b:6a:c3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:51 2024 by rpki-client on console-ams.rpki-client.org