Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/5cb454-7bee-4e5d-b295-942482f8d2ea/1/y26HXrmlM9uRTmFMndZQS7MD-mM.roa
File: y26HXrmlM9uRTmFMndZQS7MD-mM.roa (raw, json)
Hash identifier: 1wdNLW9zmwnFco6vAa7ZihetR0pjKmC2kHdULfulo+c=
Subject key identifier: CB:6E:87:5E:B9:A5:33:DB:91:4E:61:4C:9D:D6:50:4B:B3:03:FA:63
Certificate issuer: /CN=54296d23def4c8521c647dc68acb3c123f611d89
Certificate serial: 018BED2BEF8E5224238F22D37477FFC32B16
Authority key identifier: 54:29:6D:23:DE:F4:C8:52:1C:64:7D:C6:8A:CB:3C:12:3F:61:1D:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VCltI970yFIcZH3Giss8Ej9hHYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/5cb454-7bee-4e5d-b295-942482f8d2ea/1/y26HXrmlM9uRTmFMndZQS7MD-mM.roa
Signing time: Mon 20 Nov 2023 14:39:21 +0000
ROA not before: Mon 20 Nov 2023 14:39:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8953
IP address blocks: 86.106.83.0/24 maxlen: 24
37.156.224.0/24 maxlen: 24
128.127.112.0/20 maxlen: 24
89.37.97.0/24 maxlen: 24
93.113.56.0/24 maxlen: 24
93.122.128.0/17 maxlen: 24
89.42.27.0/24 maxlen: 24
37.251.208.0/20 maxlen: 24
109.166.212.0/24 maxlen: 24
92.114.82.0/24 maxlen: 24
185.53.196.0/22 maxlen: 24
92.114.38.0/24 maxlen: 24
62.217.192.0/18 maxlen: 24
89.39.71.0/24 maxlen: 24
89.39.81.0/24 maxlen: 24
93.115.244.0/23 maxlen: 24
109.166.128.0/17 maxlen: 24
2a02:a58::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ed:2b:ef:8e:52:24:23:8f:22:d3:74:77:ff:c3:2b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54296d23def4c8521c647dc68acb3c123f611d89
Validity
Not Before: Nov 20 14:39:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb6e875eb9a533db914e614c9dd6504bb303fa63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c7:bd:6d:72:0a:de:eb:61:09:e9:c4:b6:93:
cc:76:b3:c9:3e:df:f1:8a:8f:31:8c:c1:e0:e6:52:
60:47:45:82:73:04:5c:ea:97:85:f9:97:89:82:d1:
17:3c:5c:56:15:23:f5:7d:32:35:fa:1b:f2:06:9c:
93:93:b5:90:5f:04:71:5c:80:97:e0:17:f1:de:38:
15:21:d5:e9:08:04:97:06:be:5a:93:65:f5:d5:3d:
b6:22:ef:03:36:59:35:2c:41:df:0c:fd:b2:25:58:
e1:5d:7e:94:55:48:4f:be:48:08:8a:95:a7:88:02:
6f:df:ee:1a:6b:89:14:f7:95:a6:de:ad:ad:43:3d:
3c:d4:3c:9c:31:a8:a3:12:c7:db:03:b7:3e:51:3d:
72:28:ef:97:75:8f:c6:97:33:93:d6:05:23:14:6c:
dd:64:30:29:b7:ba:f5:48:37:0c:65:17:cb:2f:ef:
b8:f6:7e:96:51:1b:63:f4:29:ef:ea:0e:79:c0:2b:
89:d9:6a:59:f7:c1:5e:9c:6f:21:8f:fe:f5:c9:3b:
1d:b2:1b:66:ef:1a:7d:8e:ab:59:b3:96:ae:be:d7:
d4:79:6d:0e:4d:16:7f:6f:d7:cc:09:5f:88:95:9a:
fb:fd:61:3c:a7:90:a6:6b:99:b6:d7:fb:17:19:11:
ee:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6E:87:5E:B9:A5:33:DB:91:4E:61:4C:9D:D6:50:4B:B3:03:FA:63
X509v3 Authority Key Identifier:
keyid:54:29:6D:23:DE:F4:C8:52:1C:64:7D:C6:8A:CB:3C:12:3F:61:1D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VCltI970yFIcZH3Giss8Ej9hHYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/5cb454-7bee-4e5d-b295-942482f8d2ea/1/y26HXrmlM9uRTmFMndZQS7MD-mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/5cb454-7bee-4e5d-b295-942482f8d2ea/1/VCltI970yFIcZH3Giss8Ej9hHYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.224.0/24
37.251.208.0/20
62.217.192.0/18
86.106.83.0/24
89.37.97.0/24
89.39.71.0/24
89.39.81.0/24
89.42.27.0/24
92.114.38.0/24
92.114.82.0/24
93.113.56.0/24
93.115.244.0/23
93.122.128.0/17
109.166.128.0/17
128.127.112.0/20
185.53.196.0/22
IPv6:
2a02:a58::/32
Signature Algorithm: sha256WithRSAEncryption
a2:05:01:b5:09:ca:7d:36:70:78:32:4d:26:a8:aa:a6:3e:e5:
58:be:4b:1c:d2:46:88:a5:91:e6:3e:a3:d4:f6:e6:d6:19:0d:
93:61:1c:51:0e:35:5d:fb:36:89:8b:c0:da:a4:a9:6b:95:69:
00:c6:ef:34:b9:b3:2c:a6:b6:c5:69:f0:0c:4d:ae:96:e8:bd:
f0:85:35:f9:68:5f:66:b1:93:8e:e4:26:e8:81:ba:08:7a:7b:
b0:f0:3b:5f:e7:39:68:d5:f6:56:e8:74:4f:a7:6e:03:c7:51:
b4:aa:75:b8:e2:fc:61:b6:93:8c:f5:f3:e9:4f:d4:81:67:21:
6a:f6:66:26:77:4f:13:e7:44:12:0a:32:01:e0:1d:3d:8d:e0:
ff:f8:c7:96:94:89:d2:0d:b2:2b:e6:7c:cf:e3:2d:f7:1e:48:
a0:10:a6:39:da:20:52:07:e4:d8:92:60:37:00:98:8d:6d:1a:
a0:25:3c:33:10:cc:af:91:bc:b5:0d:f2:19:ad:d5:ae:99:d7:
04:77:9b:6b:20:4f:83:d0:62:2b:c4:4c:17:0e:3d:2c:ed:eb:
cf:65:e0:98:2d:ab:c2:a4:dc:b8:6c:06:85:99:34:a3:63:42:
95:00:fd:ce:7a:61:aa:b8:27:c8:e5:9b:28:86:08:12:67:bc:
75:a0:9f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:10 2024 by rpki-client on console-ams.rpki-client.org