Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/aXP_Vdmy4Z28FijOWimKBX5DEio.roa
File: aXP_Vdmy4Z28FijOWimKBX5DEio.roa (raw, json)
Hash identifier: dg/gWfkxLdF8CgHWM68wGtS8mj4X3/4UHmnplcw6J5o=
Subject key identifier: 69:73:FF:55:D9:B2:E1:9D:BC:16:28:CE:5A:29:8A:05:7E:43:12:2A
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F397541511459B2A73CBB009A01117752
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/aXP_Vdmy4Z28FijOWimKBX5DEio.roa
Signing time: Thu 02 May 2024 13:18:56 +0000
ROA not before: Thu 02 May 2024 13:18:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33947
IP address blocks: 79.172.200.0/24 maxlen: 24
79.172.202.0/24 maxlen: 24
79.172.232.0/22 maxlen: 22
84.21.0.0/22 maxlen: 22
84.21.9.0/24 maxlen: 24
84.21.14.0/24 maxlen: 24
84.21.17.0/24 maxlen: 24
84.21.21.0/24 maxlen: 24
84.21.22.0/24 maxlen: 24
84.21.23.0/24 maxlen: 24
84.21.24.0/24 maxlen: 24
84.21.25.0/24 maxlen: 24
84.21.26.0/24 maxlen: 24
84.21.27.0/24 maxlen: 24
84.21.28.0/24 maxlen: 24
84.21.29.0/24 maxlen: 24
84.21.30.0/24 maxlen: 24
87.229.1.0/24 maxlen: 24
87.229.2.0/24 maxlen: 24
87.229.3.0/24 maxlen: 24
87.229.4.0/24 maxlen: 24
87.229.5.0/24 maxlen: 24
87.229.13.0/24 maxlen: 24
87.229.25.0/24 maxlen: 24
87.229.27.0/24 maxlen: 24
87.229.28.0/24 maxlen: 24
87.229.29.0/24 maxlen: 24
87.229.30.0/24 maxlen: 24
87.229.46.0/23 maxlen: 23
87.229.49.0/24 maxlen: 24
87.229.109.0/24 maxlen: 24
178.238.214.0/24 maxlen: 24
178.238.218.0/24 maxlen: 24
178.238.219.0/24 maxlen: 24
2a02:730:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 11:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:39:75:41:51:14:59:b2:a7:3c:bb:00:9a:01:11:77:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 2 13:18:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6973ff55d9b2e19dbc1628ce5a298a057e43122a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b8:fe:dc:17:d9:fe:e6:cc:c1:ff:02:2c:85:
d2:36:19:d7:69:e5:c9:c9:62:e9:6e:d8:15:e9:e2:
5c:22:7c:5a:d2:cc:75:b9:57:a4:ba:3d:ef:b9:ee:
4b:27:bc:e2:d1:49:b0:4a:c3:5a:c5:2f:9d:6b:de:
b1:9e:c4:4b:f0:1f:a9:8b:f4:99:a8:0d:ed:8d:e6:
64:d9:51:af:ee:08:c5:6b:a5:8e:8a:24:6f:1d:d2:
63:70:32:c1:78:53:58:9a:30:89:77:a7:55:b5:29:
df:8c:45:7f:db:4b:cd:cd:3b:1c:99:97:51:93:93:
ee:c9:85:47:fa:c8:d9:7f:d8:52:37:3e:36:45:cf:
cf:99:61:d1:d1:e1:bc:73:84:b1:52:7d:da:00:25:
32:c2:a8:ff:da:71:e7:92:c3:a4:71:82:3b:1b:23:
80:25:93:06:00:65:60:73:a5:50:a5:2a:11:a4:dd:
cb:fb:19:e4:74:83:9c:77:fc:f3:00:d9:de:40:19:
0b:b6:5e:e7:d5:76:e0:bd:6a:09:45:94:e4:3c:42:
64:46:61:de:eb:4e:97:33:d7:76:79:13:34:8d:6a:
c0:53:2b:d8:ed:3b:64:75:c8:31:4f:d9:d3:be:4a:
59:3e:50:22:5d:22:8a:a9:fb:cb:f2:ef:01:a2:96:
15:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:73:FF:55:D9:B2:E1:9D:BC:16:28:CE:5A:29:8A:05:7E:43:12:2A
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/aXP_Vdmy4Z28FijOWimKBX5DEio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.200.0/24
79.172.202.0/24
79.172.232.0/22
84.21.0.0/22
84.21.9.0/24
84.21.14.0/24
84.21.17.0/24
84.21.21.0-84.21.30.255
87.229.1.0-87.229.5.255
87.229.13.0/24
87.229.25.0/24
87.229.27.0-87.229.30.255
87.229.46.0/23
87.229.49.0/24
87.229.109.0/24
178.238.214.0/24
178.238.218.0/23
IPv6:
2a02:730:2000::/48
Signature Algorithm: sha256WithRSAEncryption
3f:55:29:1d:f8:00:42:03:bb:a4:31:f3:27:c8:d2:0d:a1:5c:
dc:9a:cd:9b:c4:9b:c3:f0:03:d1:80:72:c8:7f:28:b0:9b:93:
38:38:3d:9f:be:f5:16:b4:c8:01:e5:f9:06:31:85:9b:0a:04:
ba:d2:8c:d6:aa:f4:d3:75:6d:59:69:94:be:83:05:a1:ce:68:
ca:83:f8:3e:30:29:c1:68:c0:a7:cc:54:1d:2e:87:58:4f:1f:
63:19:ee:21:30:2d:ec:80:47:53:a0:25:ea:17:d4:6b:45:70:
be:38:25:15:07:40:9d:f2:66:6b:4d:7c:36:9a:08:6d:4b:42:
46:a9:d3:81:c2:56:55:7b:d4:3b:46:de:2a:de:3e:9a:3b:f8:
c4:11:4f:79:50:b9:2f:78:1d:b7:df:c2:0d:3b:b1:2f:e2:e3:
0c:c1:f3:0b:f2:5b:14:34:fd:3d:02:72:1d:0c:e8:71:c0:9d:
d0:6f:e0:2b:4d:81:09:7d:21:2b:18:dc:32:a1:a1:67:30:c6:
fd:68:1d:c2:1c:d8:54:e5:30:7f:81:24:c3:fe:96:8f:4b:5a:
63:bc:6a:b5:82:ad:28:70:4a:7b:27:c8:5c:d1:64:36:ae:4a:
bd:8a:0c:c4:a5:a8:da:16:0e:a7:87:94:23:c3:00:1d:c7:28:
41:b7:23:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org