Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/m0BWcTKlikqlMRcD6oO1MIIJhxg.roa
File: m0BWcTKlikqlMRcD6oO1MIIJhxg.roa (raw, json)
Hash identifier: Zrb9IF+xbg3xZLDPkWbwxT9G66QYIewxTghCUQXXGgg=
Subject key identifier: 9B:40:56:71:32:A5:8A:4A:A5:31:17:03:EA:83:B5:30:82:09:87:18
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D2FCE15BA56BBCD489A6EFA9C84E709FD
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/m0BWcTKlikqlMRcD6oO1MIIJhxg.roa
Signing time: Mon 22 Jan 2024 06:14:11 +0000
ROA not before: Mon 22 Jan 2024 06:14:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
2a03:32c0:9000::/48 maxlen: 48
2a03:32c0:9001::/48 maxlen: 48
2a03:32c0:9002::/48 maxlen: 48
2a03:32c0:9003::/48 maxlen: 48
2a03:32c0:9004::/48 maxlen: 48
2a03:32c0:9005::/48 maxlen: 48
2a03:32c0:9006::/48 maxlen: 48
2a03:32c0:9007::/48 maxlen: 48
2a03:32c0:e000::/48 maxlen: 48
2a03:32c0:e001::/48 maxlen: 48
2a03:32c0:e002::/48 maxlen: 48
2a03:32c0:e003::/48 maxlen: 48
2a03:32c0:e004::/48 maxlen: 48
2a03:32c0:e005::/48 maxlen: 48
2a03:32c0:e006::/48 maxlen: 48
2a03:32c0:e007::/48 maxlen: 48
2a03:32c0:e008::/48 maxlen: 48
2a03:32c0:e009::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 Jan 2024 03:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2f:ce:15:ba:56:bb:cd:48:9a:6e:fa:9c:84:e7:09:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 22 06:14:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b40567132a58a4aa5311703ea83b53082098718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a4:58:f9:e9:9c:ca:08:2c:e7:18:0e:b8:b2:
5a:a4:2f:fa:6e:04:25:64:c9:cf:0e:21:be:85:9d:
83:40:b1:c9:4a:57:d9:2c:4c:d7:f6:ad:b7:67:6d:
d5:7f:75:1a:91:41:c2:ba:61:b9:3d:77:e8:2c:b4:
18:47:36:93:dd:ca:3a:dc:cf:35:c8:3f:ef:a8:42:
cd:2d:dd:b5:3a:ae:f7:a9:86:cc:3d:58:f7:17:1c:
4a:83:86:c3:f3:7b:a4:dd:20:03:85:49:bd:2e:54:
ea:30:9e:70:cd:b2:11:dc:f1:6a:e6:3e:2b:bf:75:
3c:29:9f:b6:57:b8:50:20:51:a8:52:1c:b7:50:4a:
b4:3a:5f:04:a5:1a:82:3e:78:bc:39:7e:7e:be:0a:
08:e1:f7:f6:79:3f:22:ac:9d:41:9c:a4:24:39:9c:
85:39:dc:4e:54:db:c9:dd:3c:ec:d2:90:f5:05:e9:
b5:68:5f:cc:d0:ab:bd:73:90:7e:fc:45:26:56:68:
12:76:46:ac:e5:e4:36:8e:be:53:52:7d:67:93:a1:
de:42:52:b2:19:00:6b:43:0d:00:b0:1a:7b:ea:6e:
09:d2:02:b3:14:18:65:95:f0:4d:f9:d9:53:60:6f:
3f:5c:dc:2d:27:98:e0:95:9c:1b:13:e0:7e:83:91:
81:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:40:56:71:32:A5:8A:4A:A5:31:17:03:EA:83:B5:30:82:09:87:18
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/m0BWcTKlikqlMRcD6oO1MIIJhxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.70.0/24
IPv6:
2a03:32c0::/45
2a03:32c0:3000::-2a03:32c0:3005:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::/47
2a03:32c0:7000::/47
2a03:32c0:8000::/45
2a03:32c0:9000::/45
2a03:32c0:e000::-2a03:32c0:e009:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a8:3a:ed:16:06:c9:cc:e1:6c:91:8d:53:e5:ae:b8:72:f6:08:
d8:e7:3c:0a:69:dd:56:93:5f:c2:c4:14:23:7f:de:08:e0:a3:
e4:78:a5:c9:a2:06:b1:72:92:ed:fc:59:b9:8c:4a:ac:8d:fa:
6d:3c:fb:d6:61:85:c1:34:cb:7f:74:9c:82:67:ee:45:31:20:
6d:94:1c:22:19:49:80:21:9b:16:be:a3:46:cc:24:9b:29:4b:
fe:50:97:02:84:7e:a4:16:dd:b8:08:a7:8b:32:3d:fe:7c:5d:
c2:c1:a1:b0:10:14:d8:65:5e:3c:59:db:7f:0b:f0:cd:e0:54:
6c:d8:31:9a:f6:08:af:1a:1b:06:1e:00:00:f7:7c:d8:70:c1:
c6:f9:73:ed:b5:b9:65:fa:2d:3a:56:dd:97:2f:7c:0b:23:5d:
1c:09:99:62:94:f0:72:57:cc:97:da:77:7c:b8:61:de:07:53:
48:e3:93:15:d4:8b:c7:e1:f2:bc:46:31:87:df:ac:7a:e5:5c:
f2:33:61:9d:28:8b:02:b2:9d:ac:7d:a4:23:60:a1:df:41:d3:
87:32:27:6f:4c:38:cd:63:11:00:d0:04:d2:cf:ad:c3:0c:53:
77:30:5c:ec:40:c8:2c:83:69:5f:66:1a:b0:9f:5b:02:be:0e:
53:be:b1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org