Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/6t8LS_euPOfsQyoqZAwlQiXqXdE.roa
File: 6t8LS_euPOfsQyoqZAwlQiXqXdE.roa (raw, json)
Hash identifier: m8P3smW+DPjNpIMU3dX6G8egE6BU6m5iYYjhhD33RyA=
Subject key identifier: EA:DF:0B:4B:F7:AE:3C:E7:EC:43:2A:2A:64:0C:25:42:25:EA:5D:D1
Certificate issuer: /CN=69507f066f2bb0389dd88436074e1426114f2d92
Certificate serial: 018DA18BAC72B5AC6976D871DFC1A55026E9
Authority key identifier: 69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/6t8LS_euPOfsQyoqZAwlQiXqXdE.roa
Signing time: Tue 13 Feb 2024 08:18:21 +0000
ROA not before: Tue 13 Feb 2024 08:18:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216139
IP address blocks: 2.56.90.0/24 maxlen: 24
95.142.32.0/24 maxlen: 24
95.142.41.0/24 maxlen: 24
109.234.32.0/24 maxlen: 24
178.208.64.0/24 maxlen: 24
178.208.65.0/24 maxlen: 24
178.208.66.0/24 maxlen: 24
178.208.67.0/24 maxlen: 24
178.208.72.0/24 maxlen: 24
178.208.73.0/24 maxlen: 24
178.208.74.0/24 maxlen: 24
178.208.75.0/24 maxlen: 24
178.208.76.0/24 maxlen: 24
178.208.77.0/24 maxlen: 24
178.208.78.0/24 maxlen: 24
178.208.79.0/24 maxlen: 24
178.208.80.0/24 maxlen: 24
178.208.81.0/24 maxlen: 24
178.208.82.0/24 maxlen: 24
178.208.83.0/24 maxlen: 24
178.208.84.0/24 maxlen: 24
178.208.85.0/24 maxlen: 24
178.208.86.0/24 maxlen: 24
178.208.88.0/24 maxlen: 24
178.208.89.0/24 maxlen: 24
178.208.90.0/24 maxlen: 24
178.208.91.0/24 maxlen: 24
178.208.93.0/24 maxlen: 24
185.105.108.0/24 maxlen: 24
2a09:c140:feed::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 17 Sep 2024 17:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a1:8b:ac:72:b5:ac:69:76:d8:71:df:c1:a5:50:26:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69507f066f2bb0389dd88436074e1426114f2d92
Validity
Not Before: Feb 13 08:18:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eadf0b4bf7ae3ce7ec432a2a640c254225ea5dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:70:ac:9a:35:29:19:ad:0e:4d:95:15:e7:
1a:12:19:13:5a:54:94:51:7d:fb:4d:3e:60:a8:80:
6e:bf:dd:eb:7d:68:a0:c5:2a:17:ba:f9:ec:98:6a:
92:00:0c:d7:b5:ce:bc:86:71:46:3d:86:49:20:73:
d1:a4:77:4b:d7:fd:9b:d8:aa:63:b0:1e:c4:78:f5:
ea:13:07:b2:8b:8b:29:ad:cd:e8:62:85:c6:b2:f2:
b2:af:a6:39:1f:d3:9e:b3:59:90:45:60:52:97:9d:
90:51:26:48:c2:41:f3:5a:3b:8c:b1:7a:e2:4a:7a:
ab:16:6e:7b:02:71:e2:67:cc:22:b5:40:9b:37:5c:
bc:e8:ac:3f:be:cc:fe:d0:a7:42:31:97:71:3e:e7:
3d:2b:f4:b3:53:46:60:d2:50:21:bd:6c:3c:00:61:
b5:f7:19:23:32:9f:22:16:33:c1:82:2d:d5:20:36:
d3:76:5a:85:e3:50:3b:cf:78:f0:9b:27:46:f1:27:
f2:e2:31:7f:75:fb:95:3d:4b:5d:b4:09:79:e7:5e:
4c:8a:a9:fd:99:cb:7a:f1:f4:c9:ee:cb:23:24:ee:
36:88:ab:43:07:19:1c:73:8a:75:1e:66:d6:1f:5d:
f3:68:6b:d2:0a:af:33:5f:30:ca:60:57:3d:b7:57:
d2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DF:0B:4B:F7:AE:3C:E7:EC:43:2A:2A:64:0C:25:42:25:EA:5D:D1
X509v3 Authority Key Identifier:
keyid:69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/6t8LS_euPOfsQyoqZAwlQiXqXdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aVB_Bm8rsDid2IQ2B04UJhFPLZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.90.0/24
95.142.32.0/24
95.142.41.0/24
109.234.32.0/24
178.208.64.0/22
178.208.72.0-178.208.86.255
178.208.88.0/22
178.208.93.0/24
185.105.108.0/24
IPv6:
2a09:c140:feed::/48
Signature Algorithm: sha256WithRSAEncryption
0d:8d:88:e2:0a:02:6a:ca:1e:c9:70:30:40:5d:a3:45:42:68:
99:37:fc:b6:d2:00:eb:3c:82:ee:d8:c5:fe:50:02:b5:8f:92:
e3:fe:e8:00:94:44:b3:22:0e:41:c3:29:34:3f:06:af:6e:01:
8f:ec:db:38:e5:81:65:03:40:be:f6:b1:ae:d4:b8:4b:1e:5d:
88:d5:85:a4:5c:8b:fa:c1:cf:86:97:ed:aa:50:05:b5:ce:c9:
bf:a3:76:95:8a:66:5e:6c:49:fd:9b:84:c3:89:a9:97:7c:80:
34:6b:24:94:f5:fb:01:5c:1e:1a:7c:ed:0e:db:82:ef:9f:41:
86:ac:16:0d:e5:79:e7:60:4e:71:7b:7f:18:aa:1a:cd:c1:46:
d4:a5:eb:51:ab:fb:76:bd:7c:1f:a3:ee:9c:b9:ca:ca:cc:e2:
59:73:80:20:bb:f7:a1:3f:7f:d9:c7:fe:79:ef:1a:89:c4:7f:
63:8a:cd:1b:00:3e:1a:45:c5:82:6c:86:25:c3:b4:44:88:e2:
a5:0b:89:10:c8:91:f2:65:6b:5d:f4:60:06:f4:e3:44:4b:b7:
c4:eb:d9:17:99:0a:a2:39:52:eb:f2:5c:56:41:8e:90:fc:e0:
c4:22:2e:95:b0:78:07:33:5c:1a:5a:98:ff:57:71:94:2a:6e:
f9:d8:b6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:10 2025 by rpki-client