Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/hBz1aVjLMKtockgDaPvOh0kEu5o.roa
File: hBz1aVjLMKtockgDaPvOh0kEu5o.roa (raw, json)
Hash identifier: yjXwWGtWgpK0KoQUqehdMa+HmlZ9xZ6VqjEmT1gvP9I=
Subject key identifier: 84:1C:F5:69:58:CB:30:AB:68:72:48:03:68:FB:CE:87:49:04:BB:9A
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 0188BD35DC5E77F4CE6AC9815C97782B901F
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/hBz1aVjLMKtockgDaPvOh0kEu5o.roa
Signing time: Thu 15 Jun 2023 04:00:03 +0000
ROA not before: Thu 15 Jun 2023 04:00:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60192
IP address blocks: 95.105.82.0/24 maxlen: 24
95.105.82.0/23 maxlen: 23
95.105.80.0/24 maxlen: 24
95.105.83.0/24 maxlen: 24
95.105.80.0/23 maxlen: 23
95.105.80.0/22 maxlen: 22
95.105.81.0/24 maxlen: 24
193.104.64.0/24 maxlen: 24
185.162.32.0/23 maxlen: 23
185.162.35.0/24 maxlen: 24
185.162.32.0/22 maxlen: 22
185.162.33.0/24 maxlen: 24
185.162.34.0/24 maxlen: 24
185.162.34.0/23 maxlen: 23
185.162.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:35:dc:5e:77:f4:ce:6a:c9:81:5c:97:78:2b:90:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jun 15 04:00:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=841cf56958cb30ab6872480368fbce874904bb9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6f:c2:f5:32:f5:6e:b5:bf:e2:9e:41:46:4d:
e3:82:89:f1:f2:a2:f5:49:09:e4:39:b5:91:47:78:
49:65:9a:57:1f:95:90:9c:c5:67:8e:20:14:c6:b3:
1b:68:77:6a:69:2f:5d:fa:bf:ad:f0:34:bc:c1:1a:
d8:3c:b5:27:21:12:f6:68:7f:7f:79:7d:0e:61:f0:
49:47:39:1f:03:ce:ee:2f:8f:0a:0e:3e:e7:0a:f9:
20:8f:89:02:ee:d7:fa:3b:3a:ab:f3:86:05:03:d6:
28:1f:6a:6d:25:6d:3c:fd:65:d2:a7:41:ad:86:03:
21:9b:ed:fb:aa:04:ea:97:16:07:e9:f0:ef:a7:15:
c1:8a:62:6a:0d:73:ef:51:ba:15:ed:50:0b:e4:fc:
d1:38:8a:57:73:ed:8e:13:e6:dc:80:37:85:02:de:
06:b5:82:2b:d0:65:6f:d5:58:98:26:77:09:48:90:
62:90:4e:b0:4e:97:ae:11:bd:6b:2d:40:ec:d4:f9:
fa:aa:98:12:d6:51:36:e7:52:9c:18:93:79:80:6b:
8a:e4:9a:d3:73:fb:cb:84:43:2e:f3:57:84:41:5b:
5b:3c:31:43:b6:fd:87:c7:7b:f5:8d:35:ff:c9:89:
be:d3:9c:72:4b:97:4a:f1:65:9a:01:f2:b1:c0:17:
c1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1C:F5:69:58:CB:30:AB:68:72:48:03:68:FB:CE:87:49:04:BB:9A
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/hBz1aVjLMKtockgDaPvOh0kEu5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.105.80.0/22
185.162.32.0/22
193.104.64.0/24
Signature Algorithm: sha256WithRSAEncryption
22:61:09:91:d8:e3:36:fe:26:9e:7b:f3:49:c7:84:d9:55:d6:
31:9a:24:15:73:ea:34:b1:75:97:37:ed:6a:e4:9c:65:dc:9e:
24:07:4b:ae:7b:77:df:6b:a3:60:14:3e:86:ff:a6:f7:17:04:
5e:22:47:5a:82:0e:4d:e9:77:a9:f5:b7:be:5d:b7:ee:2b:cd:
dc:cb:67:8b:cd:21:f9:ea:53:66:1e:a5:2b:d5:b5:c6:5a:fb:
ef:c5:be:d0:7f:f7:f7:72:ab:03:e8:9a:77:23:98:a1:e9:99:
ad:8e:7f:d2:a0:d0:4a:e6:bf:9b:48:1d:b1:e1:a5:f6:46:72:
6a:10:56:ca:ee:c5:28:2b:a5:c4:27:08:3e:22:71:71:38:01:
19:aa:e0:df:4c:5e:b8:7f:e2:98:62:77:40:57:ba:2a:90:ab:
24:cf:cf:9a:4b:d1:d5:8c:e6:34:d2:70:6d:55:66:ac:d3:de:
66:33:cb:13:83:45:60:e2:a8:19:27:bf:8f:7c:95:ba:db:3c:
45:01:03:c3:a8:81:0a:de:03:55:92:8d:eb:38:b1:e8:9c:f6:
c0:e4:81:bf:53:dd:66:4a:5e:4f:7e:46:df:e2:7b:76:70:48:
00:7c:4e:e3:ba:b4:5a:c7:af:be:df:d4:d4:23:1d:e2:db:3d:
71:58:65:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org