Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e8B0Q5-aoKsXZNf5B6ELLBRVxKg.roa
File: e8B0Q5-aoKsXZNf5B6ELLBRVxKg.roa (raw, json)
Hash identifier: QviNX2P39hwTkQHwoskEYLqUWqH69vFxHtaaf1PzkpY=
Subject key identifier: 7B:C0:74:43:9F:9A:A0:AB:17:64:D7:F9:07:A1:0B:2C:14:55:C4:A8
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018DA1FB5F18B6D481FC11BDC6B9F4975501
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e8B0Q5-aoKsXZNf5B6ELLBRVxKg.roa
Signing time: Tue 13 Feb 2024 10:20:22 +0000
ROA not before: Tue 13 Feb 2024 10:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.220.0/24 maxlen: 24
79.172.250.0/24 maxlen: 24
79.172.251.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
217.144.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 15:40:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a1:fb:5f:18:b6:d4:81:fc:11:bd:c6:b9:f4:97:55:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Feb 13 10:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bc074439f9aa0ab1764d7f907a10b2c1455c4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:28:17:c8:6a:82:b7:80:c4:74:ac:8d:fc:68:
6c:46:eb:e9:d4:a1:92:95:4b:6c:44:61:dd:21:53:
56:98:70:ac:aa:35:99:40:45:5f:86:87:92:7e:73:
55:88:dc:63:f2:6c:4c:c1:1f:28:79:2e:dc:b8:64:
e6:b0:8b:08:91:b4:a0:3e:0d:11:45:41:a7:f8:a7:
b0:16:8d:ca:e3:a2:ee:73:5b:45:fd:68:42:3e:5b:
e1:4d:25:ba:b6:93:cf:5b:9e:64:67:24:40:cd:a7:
14:a1:a4:9a:3d:6e:2d:01:10:ec:83:c9:66:5e:ea:
f6:18:60:12:d6:3b:5b:4a:00:b1:c3:eb:f3:09:81:
54:e1:94:94:13:be:2a:1b:c9:cc:35:7c:e6:e7:45:
21:e1:ab:c4:12:c3:89:2e:03:98:3c:4c:4b:40:ed:
98:15:d5:d4:bf:60:61:46:9b:0a:fa:34:f7:04:9f:
fb:65:20:76:2b:b7:ae:a1:92:16:91:8b:c0:57:b6:
53:92:28:db:68:4f:f4:f2:9f:f4:0a:46:8b:d3:8d:
14:d7:dc:b8:bd:53:69:d8:1d:55:d9:75:3f:49:8f:
2a:c2:3c:11:f4:c3:31:9e:de:cc:0a:50:f1:01:74:
fc:46:b4:6f:16:68:96:b2:3c:1e:7d:da:f3:c9:9d:
cf:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C0:74:43:9F:9A:A0:AB:17:64:D7:F9:07:A1:0B:2C:14:55:C4:A8
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e8B0Q5-aoKsXZNf5B6ELLBRVxKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.220.0/24
79.172.250.0/23
87.229.48.0/24
87.229.50.0/24
87.229.71.0/24
87.229.81.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.59.255
217.144.62.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:11:9a:8b:19:66:01:f0:ac:89:ad:f2:c6:7a:ad:7a:c2:84:
df:a0:09:9c:6c:a8:ed:86:62:fe:c6:40:f2:3e:da:41:29:52:
cc:da:03:12:7d:33:a0:a6:ad:50:1e:c1:81:1c:0b:0e:4d:4d:
2f:0f:da:1f:77:35:54:0f:60:00:e5:d7:a6:16:f5:61:7c:28:
7f:76:86:89:97:6d:33:5d:8e:b8:c9:e8:06:e7:23:80:8e:90:
e7:37:72:af:15:81:0f:4a:aa:4d:d2:a4:b3:ed:29:c9:5e:6d:
a7:27:d1:a6:12:24:20:32:52:12:9f:09:17:b0:36:f2:2d:06:
99:48:09:9a:2b:b7:73:f6:d8:4c:b9:13:9a:d0:77:e5:24:13:
ed:44:b4:80:a1:fe:26:cf:c2:53:db:2c:a4:f6:2d:5d:85:47:
5c:09:d3:a2:51:ca:84:7c:32:7a:f7:ed:97:58:5d:61:76:56:
c9:b8:d4:f1:d3:54:69:a9:a2:b7:cc:6c:6a:6a:97:df:9b:88:
5d:20:e1:66:c9:58:07:2b:2c:aa:27:0e:84:d8:0f:c6:51:05:
a6:ee:88:06:87:e5:47:79:a2:33:e3:0e:9b:61:e6:8c:e7:1a:
ca:58:d1:b5:eb:94:32:75:54:02:cc:36:f8:bd:d1:b2:e7:a1:
31:6e:61:3c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org