Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/oyfzCgNWwqubdk3mOUML-gZgSsE.roa
File: oyfzCgNWwqubdk3mOUML-gZgSsE.roa (raw, json)
Hash identifier: 57WwbzTPI0OnadEdtT/b6XYrSn6QOa3TTwn3jsIk/zA=
Subject key identifier: A3:27:F3:0A:03:56:C2:AB:9B:76:4D:E6:39:43:0B:FA:06:60:4A:C1
Certificate issuer: /CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Certificate serial: 01856F0B7098D27447E65E06F9C410968269
Authority key identifier: 92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/oyfzCgNWwqubdk3mOUML-gZgSsE.roa
Signing time: Sun 01 Jan 2023 20:34:58 +0000
ROA not before: Sun 01 Jan 2023 20:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51862
IP address blocks: 46.16.72.0/21 maxlen: 24
217.160.216.0/24 maxlen: 24
217.160.219.0/24 maxlen: 24
217.160.222.0/24 maxlen: 24
78.137.96.0/21 maxlen: 24
212.227.51.0/24 maxlen: 24
212.227.68.0/24 maxlen: 24
81.173.112.0/24 maxlen: 24
81.173.115.0/24 maxlen: 24
81.173.114.0/24 maxlen: 24
81.173.113.0/24 maxlen: 24
185.48.116.0/22 maxlen: 24
85.184.248.0/22 maxlen: 24
157.97.104.0/21 maxlen: 24
212.227.151.0/24 maxlen: 24
212.227.171.0/24 maxlen: 24
87.106.112.0/22 maxlen: 24
212.227.115.0/24 maxlen: 24
212.227.118.0/24 maxlen: 24
212.227.129.0/24 maxlen: 24
217.160.200.0/22 maxlen: 24
217.160.210.0/23 maxlen: 24
217.160.118.0/24 maxlen: 24
217.160.117.0/24 maxlen: 24
217.160.120.0/24 maxlen: 24
194.126.206.0/24 maxlen: 24
212.227.224.0/24 maxlen: 24
213.244.192.0/24 maxlen: 24
212.227.233.0/24 maxlen: 24
217.160.154.0/25 maxlen: 25
2a02:2478::/32 maxlen: 48
2a02:247a::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 25 Apr 2023 17:36:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:70:98:d2:74:47:e6:5e:06:f9:c4:10:96:82:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Validity
Not Before: Jan 1 20:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a327f30a0356c2ab9b764de639430bfa06604ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:b4:f8:85:b1:61:e7:4a:4a:7a:47:49:6b:
d9:99:15:11:b7:06:5f:d3:12:2a:ed:ca:89:68:c6:
96:b9:79:5b:50:fe:38:3f:2d:af:cf:a6:3b:ef:fc:
05:de:20:74:2c:63:8a:e1:b6:f3:16:67:2c:18:32:
5d:d3:8a:93:1f:9c:be:7d:6d:e8:a2:95:7f:f6:4c:
5e:bf:30:8b:96:12:1c:7a:0e:c2:c4:ab:b6:88:a5:
f7:9c:c4:11:19:47:74:9f:4f:4f:37:cd:75:fd:1c:
9e:f5:fd:24:a3:2f:6b:81:f3:1b:71:8e:54:bf:e1:
b5:6b:ed:5e:b0:3e:91:ef:0e:df:db:04:7e:22:b1:
18:f3:c1:1f:6b:16:b9:62:9c:42:14:28:cc:74:c7:
18:97:d1:b4:ac:3f:e3:59:78:49:55:29:93:fd:b5:
b2:d8:c6:34:1a:24:b8:42:1d:ee:06:d1:ab:f8:fa:
b4:2d:91:32:41:3e:76:48:d7:69:79:b3:2d:de:b6:
49:fe:bc:b6:4f:3b:66:e6:de:37:13:0e:5f:33:1d:
d1:91:a9:4e:a7:4d:f2:39:d4:fc:97:67:27:80:3c:
60:39:a9:84:d9:18:34:41:20:90:60:c2:7f:48:d9:
8b:d4:07:4a:70:71:2e:17:a8:74:d2:40:d1:2a:6a:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:27:F3:0A:03:56:C2:AB:9B:76:4D:E6:39:43:0B:FA:06:60:4A:C1
X509v3 Authority Key Identifier:
keyid:92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/oyfzCgNWwqubdk3mOUML-gZgSsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/kpWx8dzY-mrB73iCeMSJ4V6srnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.72.0/21
78.137.96.0/21
81.173.112.0/22
85.184.248.0/22
87.106.112.0/22
157.97.104.0/21
185.48.116.0/22
194.126.206.0/24
212.227.51.0/24
212.227.68.0/24
212.227.115.0/24
212.227.118.0/24
212.227.129.0/24
212.227.151.0/24
212.227.171.0/24
212.227.224.0/24
212.227.233.0/24
213.244.192.0/24
217.160.117.0-217.160.118.255
217.160.120.0/24
217.160.154.0/25
217.160.200.0/22
217.160.210.0/23
217.160.216.0/24
217.160.219.0/24
217.160.222.0/24
IPv6:
2a02:2478::/32
2a02:247a::/32
Signature Algorithm: sha256WithRSAEncryption
05:e6:92:b1:cc:4f:23:27:46:23:68:97:85:b4:82:76:22:f4:
7a:d6:58:19:ec:2c:69:89:7a:7c:af:59:5e:e7:35:4e:db:3a:
9c:b9:fe:f7:fd:77:56:59:df:9f:bf:98:80:c8:46:60:8c:43:
4f:b6:14:e4:fe:84:49:04:e6:58:12:55:ba:6d:0c:df:d0:0f:
17:d9:78:06:98:6d:15:20:da:54:10:64:05:f9:69:0e:3f:d9:
f9:0d:14:bd:79:44:06:23:56:df:fc:37:59:8b:51:35:47:c7:
2c:b1:94:41:d9:de:5a:61:be:f0:5f:b4:40:43:34:90:9f:d1:
fc:77:af:70:03:9b:ff:bb:01:ce:ee:97:94:55:4c:5f:c7:5b:
ac:d1:04:15:5f:38:c4:f5:66:8c:f9:63:d3:42:5d:2a:60:d0:
cb:60:d9:af:cb:53:7c:c5:44:f4:86:52:b9:2b:fa:f3:18:c4:
59:9a:92:34:92:22:d8:b9:67:ea:6b:06:de:9a:02:d2:79:dd:
ab:1c:24:e6:3d:ef:d4:a2:20:76:06:ff:10:bc:c7:d7:17:4e:
21:aa:f8:6f:2b:89:69:4d:b4:c3:dd:d0:77:84:86:88:e9:d6:
47:7a:83:0a:f4:7a:3f:92:a3:1a:e1:21:db:c1:a5:5b:89:0a:
83:7c:76:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:13 2024 by rpki-client on console-ams.rpki-client.org