Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ok2N4BTorlvulK3zEjM4V9GnEjM.roa
File: Ok2N4BTorlvulK3zEjM4V9GnEjM.roa (raw, json)
Hash identifier: PfA5qHnptKlezjJU2Gf8m2gcZoVZvh3aXQtEjn0MYbc=
Subject key identifier: 3A:4D:8D:E0:14:E8:AE:5B:EE:94:AD:F3:12:33:38:57:D1:A7:12:33
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018E32485691195CBD6196A32965333AA4C2
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ok2N4BTorlvulK3zEjM4V9GnEjM.roa
Signing time: Tue 12 Mar 2024 10:49:45 +0000
ROA not before: Tue 12 Mar 2024 10:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 46.23.110.0/24 maxlen: 24
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 13 Mar 2024 14:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:48:56:91:19:5c:bd:61:96:a3:29:65:33:3a:a4:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 12 10:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a4d8de014e8ae5bee94adf312333857d1a71233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b7:cc:4d:28:ed:81:ac:52:1a:0d:84:eb:8d:
8c:54:96:7d:10:c7:47:4f:65:4c:fc:f0:a4:b8:dd:
9d:31:6d:61:e0:b0:43:c0:43:4d:97:95:65:33:39:
af:df:ec:de:f2:58:04:4d:4f:87:af:d2:15:0f:c7:
87:c5:49:6b:66:55:c1:4c:d4:92:ce:0c:69:cd:34:
c7:25:89:a1:c2:77:32:4a:2c:96:4b:09:89:45:b0:
8c:f8:c2:11:89:55:4c:df:1e:62:75:6e:e2:9b:d2:
0c:c4:48:6d:da:fd:68:0e:77:f2:df:92:b1:63:5b:
c7:bd:87:67:d2:1b:b1:10:8a:39:3a:15:d2:d2:5f:
ed:86:92:a7:74:17:e3:03:12:ef:65:ab:e8:78:19:
9c:33:b1:f2:0a:1d:b9:c3:52:73:7f:6f:23:fd:a6:
ae:ed:b7:08:3d:f6:6c:5c:7c:38:d9:7b:82:2e:91:
78:6a:bb:84:c4:47:37:3c:bc:c4:c3:79:86:91:fa:
78:63:4a:5d:ca:41:de:9a:a4:53:87:92:22:85:d3:
4c:f0:c9:35:11:35:64:e3:42:4a:00:33:a4:61:c1:
18:05:ab:e5:b7:fb:14:f6:ca:0c:85:2c:77:41:72:
50:de:aa:6a:73:93:aa:9e:7e:22:a1:d7:41:01:0e:
39:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4D:8D:E0:14:E8:AE:5B:EE:94:AD:F3:12:33:38:57:D1:A7:12:33
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ok2N4BTorlvulK3zEjM4V9GnEjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
164.215.97.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:6c:23:a0:3d:35:96:9d:76:af:c2:53:a0:00:2d:fb:e0:04:
8a:72:9d:f3:22:5e:da:4f:61:da:c9:d7:3f:e7:69:7c:d5:2a:
31:62:03:91:e1:5c:97:53:29:44:8a:aa:66:1b:b4:09:b6:66:
b2:de:48:64:3b:08:8a:b1:f9:8a:d0:fb:9a:0d:da:b4:48:2b:
3c:50:5d:56:ff:43:e8:45:d5:f9:9b:65:fe:4c:d1:b4:7a:cb:
f3:a0:89:27:ec:fa:b4:75:55:68:cd:1d:d3:6f:ad:40:9a:0b:
9c:2c:60:6e:39:75:eb:48:47:21:3a:0a:77:63:0b:28:a0:d1:
50:fb:93:d9:37:ea:02:bc:eb:7f:d7:12:e1:25:23:2d:b4:a1:
4b:d3:c9:b3:31:9b:89:3e:49:9d:6f:fd:2c:9a:f0:c4:f8:4f:
05:97:3a:1f:bc:7b:f2:d6:98:b2:ec:a0:b9:bd:d7:08:a3:39:
d0:0b:d2:f9:e2:f4:ed:37:c0:15:0a:d7:ef:45:81:25:a4:2e:
27:71:3e:e9:e1:ac:ab:65:2c:c6:68:0f:d3:b1:46:62:2b:98:
30:36:64:4d:5d:b4:55:e3:77:62:99:5a:f7:03:ba:c1:84:e5:
fc:dd:01:bb:40:39:cc:86:85:ec:ef:d3:67:85:49:89:10:9a:
10:18:40:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 19:43:31 2024 by rpki-client on console-fra.rpki-client.org