Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/6pQU-jm-LvD_RkK9ShblkAvRcNI.roa
File: 6pQU-jm-LvD_RkK9ShblkAvRcNI.roa (raw, json)
Hash identifier: /zqyd46S8VpZsGAxDqIX3k+vkx5KD0M0H65CdiB9IcI=
Subject key identifier: EA:94:14:FA:39:BE:2E:F0:FF:46:42:BD:4A:16:E5:90:0B:D1:70:D2
Certificate issuer: /CN=929352a8d2dd70c91ffcec8e323fe69f1e9a4139
Certificate serial: 0185B9CC3E195035C080689C8A376339FA7F
Authority key identifier: 92:93:52:A8:D2:DD:70:C9:1F:FC:EC:8E:32:3F:E6:9F:1E:9A:41:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpNSqNLdcMkf_OyOMj_mnx6aQTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/6pQU-jm-LvD_RkK9ShblkAvRcNI.roa
Signing time: Mon 16 Jan 2023 08:57:28 +0000
ROA not before: Mon 16 Jan 2023 08:57:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29208
IP address blocks: 213.191.96.0/19 maxlen: 19
212.80.64.0/19 maxlen: 19
88.208.64.0/18 maxlen: 18
88.146.0.0/17 maxlen: 17
195.250.128.0/19 maxlen: 19
89.235.0.0/18 maxlen: 18
212.24.128.0/19 maxlen: 19
62.4.96.0/21 maxlen: 21
62.4.104.0/22 maxlen: 22
195.122.192.0/19 maxlen: 19
83.148.0.0/18 maxlen: 18
109.235.176.0/22 maxlen: 22
95.80.192.0/18 maxlen: 18
213.175.32.0/19 maxlen: 19
194.213.224.0/19 maxlen: 19
213.151.64.0/19 maxlen: 19
185.24.236.0/22 maxlen: 22
195.250.154.0/24 maxlen: 24
62.44.0.0/19 maxlen: 19
82.113.32.0/19 maxlen: 19
82.119.240.0/20 maxlen: 20
212.20.96.0/19 maxlen: 19
82.100.0.0/18 maxlen: 18
195.128.192.0/19 maxlen: 19
212.27.192.0/19 maxlen: 19
62.177.64.0/18 maxlen: 18
2001:4de8::/32 maxlen: 48
2001:1508::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 May 2023 08:34:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:cc:3e:19:50:35:c0:80:68:9c:8a:37:63:39:fa:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=929352a8d2dd70c91ffcec8e323fe69f1e9a4139
Validity
Not Before: Jan 16 08:57:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea9414fa39be2ef0ff4642bd4a16e5900bd170d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b9:b8:c0:00:87:aa:ed:21:d0:75:5a:f4:b6:
a6:6d:24:1d:bb:6e:24:ae:dc:52:8e:9f:06:61:b3:
4a:c4:6d:87:b7:da:23:27:ff:9f:68:ff:91:20:f1:
3f:02:da:42:ce:ab:1f:3d:9f:fb:dc:6c:e6:ad:7f:
ce:0e:06:b8:8e:44:90:b2:1e:0a:ed:41:23:8d:c0:
20:ae:83:86:fb:9d:94:0a:d0:a8:49:bc:5c:24:4d:
1d:9e:b5:af:18:20:37:8a:db:02:97:ee:99:e0:ea:
64:28:a8:4f:96:e0:1a:6c:c7:c8:d6:2e:56:a0:1c:
ad:70:b0:15:8b:7c:6e:84:34:ae:66:a0:af:38:12:
61:fe:8b:29:50:7a:be:43:70:ac:b6:7e:a0:5e:c5:
89:b7:6a:be:92:67:c3:0a:13:e2:3f:aa:c1:db:98:
d5:2c:83:80:3f:65:7e:cc:df:52:37:a6:2b:0b:b3:
5e:96:ae:b4:30:f9:96:d4:a9:66:8c:ea:20:d2:01:
8c:a4:56:04:f8:76:51:eb:3e:35:b5:5d:b9:6d:4c:
77:a5:62:c9:75:d3:62:2d:01:8c:aa:4c:96:34:ca:
44:a1:9b:38:33:33:d1:5c:48:5b:93:c1:a7:e9:38:
af:a4:5b:e7:1b:51:bf:be:84:fb:17:80:65:48:c5:
b9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:94:14:FA:39:BE:2E:F0:FF:46:42:BD:4A:16:E5:90:0B:D1:70:D2
X509v3 Authority Key Identifier:
keyid:92:93:52:A8:D2:DD:70:C9:1F:FC:EC:8E:32:3F:E6:9F:1E:9A:41:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpNSqNLdcMkf_OyOMj_mnx6aQTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/6pQU-jm-LvD_RkK9ShblkAvRcNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/kpNSqNLdcMkf_OyOMj_mnx6aQTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.4.96.0-62.4.107.255
62.44.0.0/19
62.177.64.0/18
82.100.0.0/18
82.113.32.0/19
82.119.240.0/20
83.148.0.0/18
88.146.0.0/17
88.208.64.0/18
89.235.0.0/18
95.80.192.0/18
109.235.176.0/22
185.24.236.0/22
194.213.224.0/19
195.122.192.0/19
195.128.192.0/19
195.250.128.0/19
212.20.96.0/19
212.24.128.0/19
212.27.192.0/19
212.80.64.0/19
213.151.64.0/19
213.175.32.0/19
213.191.96.0/19
IPv6:
2001:1508::/32
2001:4de8::/32
Signature Algorithm: sha256WithRSAEncryption
35:b2:f5:fa:c6:d8:a8:31:03:fa:ba:a8:61:3e:9f:34:cf:5e:
07:10:f6:29:7a:d6:27:94:6a:05:2d:52:48:6f:5b:88:dd:b9:
3b:4a:cb:dd:8c:f2:80:d5:42:04:b5:c0:5f:e3:e3:4a:aa:61:
24:98:de:69:b2:a6:c2:03:ff:ef:64:98:ea:12:18:5d:68:e0:
8a:0b:4e:10:c4:20:71:6d:b0:87:de:0f:b5:47:9b:b9:4a:b8:
d5:f7:f0:4f:b3:1e:13:91:33:5f:73:2b:ef:fe:b7:f3:3e:4f:
4c:89:d5:d1:4e:a7:7e:1e:b4:82:e5:20:55:b3:12:0b:a0:56:
8c:3c:56:f1:2e:73:47:f3:23:60:04:ce:c5:ca:b8:65:99:3b:
02:97:d2:d7:db:77:13:0a:e9:da:70:c9:97:f3:b2:a6:59:12:
b4:cf:5c:f5:72:1c:fb:33:14:92:f5:78:a4:cf:a8:c1:07:dc:
d9:62:b1:af:a0:fb:bc:e3:d2:4e:00:16:14:10:66:66:58:45:
e7:c8:7d:aa:aa:96:47:e5:79:a3:d8:dd:dc:3e:62:82:26:a0:
05:41:81:5c:e0:e7:b6:b1:49:39:d4:8e:34:44:21:ca:1a:3a:
1a:4a:b7:5f:89:e6:80:b3:f7:f7:4d:a4:61:bb:37:e1:20:c2:
98:35:a1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:29 2024 by rpki-client on console-fra.rpki-client.org