Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/byKgMb3h4IMC_tfNz12Uj0cAkNo.roa
File: byKgMb3h4IMC_tfNz12Uj0cAkNo.roa (raw, json)
Hash identifier: 0eQTuBAEAIacVx743Z3RvZI3rR7yKC05/Mc9nnfYPdg=
Subject key identifier: 6F:22:A0:31:BD:E1:E0:83:02:FE:D7:CD:CF:5D:94:8F:47:00:90:DA
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018DD126AA3C52E1F27A6313DA189E6F6590
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/byKgMb3h4IMC_tfNz12Uj0cAkNo.roa
Signing time: Thu 22 Feb 2024 14:09:48 +0000
ROA not before: Thu 22 Feb 2024 14:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 84.239.6.0/24 maxlen: 24
84.239.7.0/24 maxlen: 24
84.239.10.0/24 maxlen: 24
84.239.12.0/24 maxlen: 24
84.239.16.0/24 maxlen: 24
84.239.17.0/24 maxlen: 24
84.239.25.0/24 maxlen: 24
84.239.27.0/24 maxlen: 24
84.239.28.0/24 maxlen: 24
84.239.31.0/24 maxlen: 24
84.239.33.0/24 maxlen: 24
84.239.37.0/24 maxlen: 24
84.239.41.0/24 maxlen: 24
84.239.42.0/24 maxlen: 24
84.239.45.0/24 maxlen: 24
84.239.47.0/24 maxlen: 24
84.239.48.0/24 maxlen: 24
84.239.50.0/24 maxlen: 24
84.239.52.0/24 maxlen: 24
84.239.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 10:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d1:26:aa:3c:52:e1:f2:7a:63:13:da:18:9e:6f:65:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Feb 22 14:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f22a031bde1e08302fed7cdcf5d948f470090da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a4:b6:f4:82:f2:54:f8:86:d2:0b:87:ce:f1:
b3:0e:af:72:2f:19:74:c9:2a:31:12:d2:4d:4f:8e:
18:c1:3e:97:32:55:43:7f:90:d5:c4:08:da:bf:98:
94:80:6e:a7:6b:4d:e7:97:6b:1b:db:67:4a:13:0d:
1c:69:ce:2c:17:27:03:c2:30:9d:e7:bd:00:76:a9:
e5:7b:46:2f:00:3b:21:d9:6a:17:eb:46:69:de:4d:
08:14:98:e8:58:4b:c5:32:47:2e:31:f5:c7:9f:fd:
91:7a:31:dd:3d:e7:bf:7e:26:56:b6:96:e0:aa:01:
b5:7b:34:28:f3:ce:0c:b2:02:e2:96:f1:fb:c9:d1:
e6:f7:07:2a:c7:8f:4f:28:95:b6:4d:f2:1c:4f:cc:
2c:88:be:c2:8d:bd:a2:de:a2:2f:99:99:0c:28:98:
7d:ef:8e:dd:b0:6c:32:6f:ec:45:08:53:2c:9f:fb:
b9:b7:9c:f1:d4:03:61:99:cb:5b:5c:b2:36:e6:9f:
95:81:7f:4f:88:2a:2e:c4:90:94:fc:57:08:fb:84:
f5:ea:58:9f:c7:2a:a5:e9:81:1d:fa:0e:48:1f:9b:
08:bc:55:7c:7c:52:a9:0a:59:8b:4d:15:53:d3:b3:
93:f9:27:79:12:8c:22:71:90:fb:cb:7a:10:b7:90:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:22:A0:31:BD:E1:E0:83:02:FE:D7:CD:CF:5D:94:8F:47:00:90:DA
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/byKgMb3h4IMC_tfNz12Uj0cAkNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.6.0/23
84.239.10.0/24
84.239.12.0/24
84.239.16.0/23
84.239.25.0/24
84.239.27.0-84.239.28.255
84.239.31.0/24
84.239.33.0/24
84.239.37.0/24
84.239.41.0-84.239.42.255
84.239.45.0/24
84.239.47.0-84.239.48.255
84.239.50.0/24
84.239.52.0/24
84.239.54.0/24
Signature Algorithm: sha256WithRSAEncryption
60:19:ae:b5:ae:4d:fb:e5:e2:d4:5c:fa:7f:b8:4a:ec:4c:17:
85:3c:77:c7:44:bd:12:56:90:a5:83:40:1b:26:80:89:32:b4:
6c:01:da:f0:47:23:d7:53:f7:3a:21:60:8e:a5:c9:b6:9b:81:
4b:bd:7e:06:89:e5:db:1a:f5:cf:8a:4f:14:a3:17:66:b1:e1:
cb:33:a0:23:42:db:47:92:bd:0a:bb:f5:6e:da:f3:3e:12:ab:
ac:4f:cd:70:7b:ae:14:bc:73:9b:1c:48:75:0a:79:9b:15:71:
32:34:5b:41:5f:41:21:69:a1:ab:52:49:c8:95:65:48:e4:15:
66:20:b1:66:ca:6e:60:e8:d7:c4:7f:b5:18:98:ca:5f:a8:b7:
f8:3d:06:bc:7f:47:89:4a:cc:21:ef:a4:c5:c2:cc:dd:2c:ff:
a3:6b:be:bb:7a:e8:3a:6a:69:92:9b:d3:90:47:0a:b6:40:7c:
44:df:f8:57:9c:99:e1:53:cd:10:ba:1a:ff:b5:6a:74:f3:07:
11:b2:bf:91:5e:97:b7:9b:90:38:58:b0:cd:e5:9b:83:c1:b9:
1d:6d:86:0f:21:ff:3f:78:76:2b:9e:c7:00:da:f9:13:4c:b4:
79:56:c0:8e:e8:08:07:f7:99:c6:f2:e0:ba:52:00:a9:5d:ea:
78:8f:e1:2d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:32 2025 by rpki-client