Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/RgbHeeoiEDYQ3d5NqwPo01y77uA.roa
File: RgbHeeoiEDYQ3d5NqwPo01y77uA.roa (raw, json)
Hash identifier: Exgw5YgVnLqybRHJQG9YBA3EIVQgtKXXbHP4NktndG4=
Subject key identifier: 46:06:C7:79:EA:22:10:36:10:DD:DE:4D:AB:03:E8:D3:5C:BB:EE:E0
Certificate issuer: /CN=1d01f4dffd6fba66cdf8c374c9b0f047552705dd
Certificate serial: 018CC5013422BF06928417B1CFEE26FF5972
Authority key identifier: 1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQH03_1vumbN-MN0ybDwR1UnBd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/RgbHeeoiEDYQ3d5NqwPo01y77uA.roa
Signing time: Mon 01 Jan 2024 12:30:39 +0000
ROA not before: Mon 01 Jan 2024 12:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206509
IP address blocks: 194.164.114.0/24 maxlen: 24
217.29.192.0/20 maxlen: 22
62.164.128.0/17 maxlen: 21
213.254.160.0/19 maxlen: 19
62.164.144.0/21 maxlen: 21
212.32.0.0/17 maxlen: 17
193.108.168.0/23 maxlen: 23
86.54.0.0/16 maxlen: 16
194.164.97.0/24 maxlen: 24
194.62.44.0/22 maxlen: 22
217.154.0.0/16 maxlen: 16
195.26.224.0/19 maxlen: 19
195.200.0.0/19 maxlen: 19
194.164.181.0/24 maxlen: 24
2001:15e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 24 Jan 2024 10:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:34:22:bf:06:92:84:17:b1:cf:ee:26:ff:59:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01f4dffd6fba66cdf8c374c9b0f047552705dd
Validity
Not Before: Jan 1 12:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4606c779ea22103610ddde4dab03e8d35cbbeee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dc:df:7e:97:c6:8d:2f:c7:7c:ab:a0:7c:e9:
c1:89:a1:f8:7f:19:22:26:5e:f5:13:24:a2:ce:d5:
49:c0:2a:f6:24:dc:18:61:c9:b1:ff:ec:a5:ae:81:
c5:64:32:0b:fc:07:ee:6e:0e:17:b3:49:6d:34:ac:
55:d6:7d:d0:a1:8a:92:db:56:3c:61:e7:1f:48:b9:
07:48:46:a0:3b:40:b7:03:a8:08:34:d1:30:b3:06:
b0:16:d1:d3:ec:1b:f4:7d:ce:d6:68:18:75:30:3b:
49:50:8d:07:3d:a7:8b:16:4d:91:4b:eb:d3:ce:1a:
80:07:52:c4:e3:11:11:f7:dc:bb:2a:17:f3:cf:77:
ee:84:74:69:09:89:e3:5c:f9:59:c3:3f:55:d8:d5:
a1:92:5b:6f:98:3d:a0:02:3a:2c:f2:e5:19:ee:b4:
c9:17:e3:47:b9:49:d6:cc:7e:86:9d:8a:cf:78:22:
93:c5:08:b9:db:23:fa:65:08:24:74:18:b7:6c:57:
e7:50:ff:c3:ac:48:c8:9d:da:14:a4:d6:cf:03:13:
8a:db:4c:b8:0f:34:11:06:c3:fa:23:15:7c:77:07:
c5:b2:28:e2:62:38:e1:52:93:44:39:c0:0d:2d:c8:
b1:c2:21:c1:4c:42:04:0b:0e:37:40:ae:41:40:8f:
f9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:06:C7:79:EA:22:10:36:10:DD:DE:4D:AB:03:E8:D3:5C:BB:EE:E0
X509v3 Authority Key Identifier:
keyid:1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQH03_1vumbN-MN0ybDwR1UnBd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/RgbHeeoiEDYQ3d5NqwPo01y77uA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/HQH03_1vumbN-MN0ybDwR1UnBd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.128.0/17
86.54.0.0/16
193.108.168.0/23
194.62.44.0/22
194.164.97.0/24
194.164.114.0/24
194.164.181.0/24
195.26.224.0/19
195.200.0.0/19
212.32.0.0/17
213.254.160.0/19
217.29.192.0/20
217.154.0.0/16
IPv6:
2001:15e0::/32
Signature Algorithm: sha256WithRSAEncryption
75:34:cb:05:08:00:f2:ea:9c:09:7a:b0:a9:ca:1a:3b:26:a5:
c2:4c:40:fe:9b:0a:01:18:e1:1b:b1:08:d2:e5:46:25:cd:d9:
a7:4c:7d:50:91:52:2b:80:e0:4e:ac:f4:39:fe:d5:5c:c4:44:
6d:e7:0b:16:4f:a9:a6:b3:69:39:3c:85:87:5a:66:b2:06:fe:
0a:8b:32:db:d4:75:f4:1c:79:d5:81:e7:8b:a9:74:af:ae:3f:
71:d9:46:e5:80:23:49:72:fe:2c:0f:d0:dd:5d:19:44:a2:d3:
1d:79:25:ba:58:94:b8:18:1c:6c:9e:7f:02:9f:4a:3c:fa:92:
f0:61:ab:13:7e:33:19:1f:c9:d1:1a:81:6f:c6:7a:c2:f5:ae:
d5:7c:69:58:0f:9d:53:2f:09:0a:87:73:97:27:31:43:7c:d7:
6a:20:24:02:27:2a:fd:a4:87:b2:c7:b7:c2:22:17:cf:4d:8e:
74:8e:1d:70:59:8d:c3:d8:ac:9f:d9:45:98:8b:9c:41:83:10:
8b:e7:01:71:11:2a:3f:86:da:9f:85:c5:2f:d9:ed:ae:6b:ba:
98:41:35:be:c9:f8:a4:49:18:7c:e0:c4:af:33:d7:19:33:61:
b6:0e:bc:0e:3e:c8:6e:97:0d:4e:7a:11:7f:a3:4c:ea:d4:e1:
10:78:2e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 24 13:24:21 2024 by rpki-client on console-fra.rpki-client.org