Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/6Xt12N0NcMaNiVEWgPFEj2Qg8qA.roa
File: 6Xt12N0NcMaNiVEWgPFEj2Qg8qA.roa (raw, json)
Hash identifier: gQAub02XxnExMz6wdxtqQ8dDYNyZQdHOuBqY1jq5v54=
Subject key identifier: E9:7B:75:D8:DD:0D:70:C6:8D:89:51:16:80:F1:44:8F:64:20:F2:A0
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018A5A07F24002BBFF8AFB52105425527658
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/6Xt12N0NcMaNiVEWgPFEj2Qg8qA.roa
Signing time: Sun 03 Sep 2023 07:53:04 +0000
ROA not before: Sun 03 Sep 2023 07:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204548
IP address blocks: 81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
103.13.211.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
195.238.122.0/24 maxlen: 24
45.83.41.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
185.47.174.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
2a06:c5c0:1100::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Dec 2023 06:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:07:f2:40:02:bb:ff:8a:fb:52:10:54:25:52:76:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Sep 3 07:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e97b75d8dd0d70c68d89511680f1448f6420f2a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0a:ed:ea:72:4b:47:3b:d4:a9:0e:d1:20:1f:
35:cd:70:7d:ee:5e:28:a0:fc:a1:88:9e:10:06:1d:
fb:29:af:6a:3d:d3:8a:86:d4:39:9f:d4:d8:46:2b:
16:36:e0:12:b4:fc:cf:da:49:1c:5f:d8:10:af:4c:
c7:ec:75:bd:18:34:49:ed:11:5f:b1:31:9f:57:f6:
bb:80:d1:99:0e:d0:31:ae:9f:98:30:1c:d2:f8:05:
e3:02:01:32:36:59:24:1c:4d:7a:a9:b3:c6:b9:ed:
6d:2e:d8:8f:25:c4:66:4c:a1:86:c2:f8:34:c9:fd:
99:c8:c4:c3:da:1b:a1:d4:54:9a:0c:0e:cf:d6:6f:
df:ae:59:c5:59:20:c2:bb:68:a9:2b:79:be:fd:3e:
cc:12:9c:79:23:ee:f1:c4:26:8d:fb:34:f8:02:21:
29:15:08:37:c2:fb:9c:04:8b:07:45:44:60:72:11:
29:34:9b:1d:4c:8b:53:9d:ae:df:a2:d8:77:66:c1:
da:33:04:44:cb:c4:1d:1a:36:59:05:8b:35:9e:b2:
95:d7:e8:dd:c9:3c:fd:3c:13:dc:d5:56:58:64:cc:
e8:d2:75:a1:26:5d:ed:90:99:c8:ee:3c:4c:eb:ec:
02:79:3a:26:60:6c:32:06:63:2d:a6:54:4d:07:91:
10:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7B:75:D8:DD:0D:70:C6:8D:89:51:16:80:F1:44:8F:64:20:F2:A0
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/6Xt12N0NcMaNiVEWgPFEj2Qg8qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
91.202.170.0/24
103.13.211.0/24
185.47.174.0/24
185.53.210.0/24
185.237.14.0/23
185.237.96.0/23
194.36.88.0/24
195.238.122.0/24
IPv6:
2a06:c5c0:1100::/48
Signature Algorithm: sha256WithRSAEncryption
52:83:d0:e5:26:1a:b5:1a:cd:a3:9b:79:33:8c:2e:be:3b:a9:
1e:37:3c:af:24:81:01:c1:f3:ec:25:a1:42:aa:55:95:9b:4f:
c2:bc:78:7a:7b:61:9d:90:01:49:3d:e7:bd:84:51:31:54:d4:
15:59:98:24:e5:43:b0:2b:fb:b7:33:45:3a:1f:f0:72:0c:10:
e7:b5:ba:c9:27:0e:b2:98:b6:6c:bb:27:26:d2:c0:26:55:de:
0d:68:c1:4a:05:0d:06:40:30:b8:53:1b:ef:ee:5d:75:b6:b2:
04:f6:36:39:89:b8:12:1f:38:e9:12:d8:d6:68:36:69:95:d4:
19:55:90:61:d0:9f:6e:0f:97:e9:ab:bc:30:d5:8b:bb:01:78:
70:fc:30:ed:8f:05:01:55:63:4f:ee:b8:ee:76:c3:e9:8c:0d:
62:3d:07:54:8a:c2:1c:7b:15:ba:a1:a4:a9:ba:a3:90:d7:a1:
8f:51:70:9d:95:4c:48:12:df:16:13:02:e1:56:be:08:93:a7:
69:4f:9c:77:9c:b3:f4:4b:65:83:aa:d5:77:19:eb:be:b7:b8:
b0:95:77:c3:4a:f4:be:f6:e6:ec:ac:40:2d:77:e4:f9:3f:2c:
83:3e:ee:a5:41:5e:4a:91:9b:71:71:5b:9c:2b:d6:85:6e:c5:
a5:98:c7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org