Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/iL5VvjAN05TtNB4C8sZHexKONhQ.roa
File: iL5VvjAN05TtNB4C8sZHexKONhQ.roa (raw, json)
Hash identifier: UnHiDwGVpdx4NeHtkyJxnvcntI9C2UGys8gBMAdOW/g=
Subject key identifier: 88:BE:55:BE:30:0D:D3:94:ED:34:1E:02:F2:C6:47:7B:12:8E:36:14
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018E1805DC88B6B839E22B6EB31B8D0213A6
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/iL5VvjAN05TtNB4C8sZHexKONhQ.roa
Signing time: Thu 07 Mar 2024 08:27:01 +0000
ROA not before: Thu 07 Mar 2024 08:27:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 13:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:05:dc:88:b6:b8:39:e2:2b:6e:b3:1b:8d:02:13:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Mar 7 08:27:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88be55be300dd394ed341e02f2c6477b128e3614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fd:a6:d0:91:a8:be:b3:00:9e:97:a5:41:70:
bb:7e:17:ab:84:a9:ed:ce:19:7f:32:e9:c7:26:a3:
12:64:ef:26:ad:7c:e5:8b:0a:56:31:80:b5:f8:3c:
55:97:aa:57:28:ee:cc:41:f9:d3:d8:94:41:7b:d7:
08:92:85:a0:90:59:63:c6:ce:21:66:82:07:69:91:
67:7a:7a:12:03:4c:1d:30:6e:c0:bc:99:11:66:97:
20:b5:5a:40:f3:74:92:94:70:56:5b:03:93:a9:98:
93:e2:1b:10:9c:20:1d:25:11:c4:b9:ca:95:5b:a8:
a2:04:07:df:a6:21:38:f5:79:17:b8:58:c7:17:c3:
77:a6:eb:40:83:ea:af:9e:53:01:c1:c3:15:97:c9:
33:f3:30:91:e0:c3:03:51:d7:cf:e7:68:4c:0a:e0:
16:f5:e8:25:f1:12:84:18:eb:cb:cd:9e:62:0d:61:
01:dd:1b:ce:c4:8a:ae:6b:fe:b3:25:26:6e:3e:fb:
d6:a9:0c:30:bc:a7:b6:a2:dc:46:7f:ed:4b:09:c7:
f2:9e:8b:fe:4a:4b:24:68:7b:9e:a5:4d:e1:cd:03:
d7:ac:40:6a:96:2d:34:b2:2b:62:f0:04:8a:6c:ab:
e1:39:c2:69:e1:0a:d5:7b:93:af:a3:7e:b9:05:9b:
c4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BE:55:BE:30:0D:D3:94:ED:34:1E:02:F2:C6:47:7B:12:8E:36:14
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/iL5VvjAN05TtNB4C8sZHexKONhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.22.0/24
87.229.48.0/24
87.229.50.0/24
87.229.71.0/24
87.229.79.0/24
87.229.81.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.59.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
32:a9:63:b9:89:8a:18:66:31:5b:41:4e:2b:70:3d:2c:33:dd:
9a:7a:37:c7:03:42:13:31:5f:e3:f4:b6:99:40:3b:72:c8:2d:
07:12:0b:d4:ed:2b:3a:53:e7:f3:a6:a4:e1:9a:ba:99:c5:91:
65:5a:12:84:08:16:e0:5e:e0:cf:aa:ce:57:78:0b:20:26:a5:
14:90:58:ce:3b:2d:5e:f1:da:1f:8f:43:08:71:18:b8:85:47:
82:a9:f1:c8:bc:b3:b6:49:39:ff:8d:11:eb:e1:90:4f:68:9e:
6c:c0:21:15:ed:32:ff:5f:f8:2e:8f:04:df:27:99:b5:4d:fc:
67:5d:65:d8:3b:1f:2c:9e:ce:f3:b2:c4:0c:00:9b:36:1a:ec:
ee:6a:2f:91:a6:0b:60:42:23:0b:ba:ac:e2:5e:27:72:b2:c9:
b9:05:27:13:d1:bf:17:d5:5f:db:1b:ea:9d:d8:70:11:59:25:
33:61:f4:6a:6f:35:72:89:5e:86:7c:49:72:60:a4:32:41:fb:
e1:0c:ce:67:c7:47:b8:16:42:00:af:92:6f:d7:92:c8:51:64:
96:fe:a6:33:84:44:32:b8:32:df:9a:f1:70:7a:5e:2d:ef:c6:
b3:cd:74:fa:f1:06:0b:25:38:f8:cd:a4:b5:f3:74:e4:d3:6f:
4a:9a:51:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org