Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/l50Esh8p_b-5GEH2fDp9hbSw-Ww.roa
File: l50Esh8p_b-5GEH2fDp9hbSw-Ww.roa (raw, json)
Hash identifier: FWeXpuTyfzgbS4F5Y7RR1yTf9U/NH7Dj30ZzCqkEWfo=
Subject key identifier: 97:9D:04:B2:1F:29:FD:BF:B9:18:41:F6:7C:3A:7D:85:B4:B0:F9:6C
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F7B93F7A362C96297D5C3389046713CC4
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/l50Esh8p_b-5GEH2fDp9hbSw-Ww.roa
Signing time: Wed 15 May 2024 09:27:25 +0000
ROA not before: Wed 15 May 2024 09:27:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.23.0/24 maxlen: 24
87.229.31.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.92.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 09:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:93:f7:a3:62:c9:62:97:d5:c3:38:90:46:71:3c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 15 09:27:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=979d04b21f29fdbfb91841f67c3a7d85b4b0f96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:27:d7:2f:31:1f:b4:ad:26:be:18:12:59:
32:e8:43:5e:7c:6c:5d:bb:bf:32:12:de:88:2f:fc:
0e:e1:b0:c7:fa:d5:81:5f:25:14:34:83:5b:e5:68:
1a:ef:4d:71:2a:6d:d7:fb:af:32:82:d5:93:5d:4e:
8c:53:57:01:5b:9b:b8:a7:03:29:59:fc:7d:ad:f4:
01:91:6e:b7:a1:b8:45:83:b1:5c:51:46:e5:d2:18:
1a:a3:ee:ad:91:42:12:dd:49:03:95:b3:26:37:51:
05:43:6f:48:68:4a:f6:cc:a1:2f:ef:3f:d2:81:60:
21:43:39:e5:2e:1f:03:cd:67:b7:45:15:73:69:2d:
a9:37:bf:a6:ff:bb:dd:f9:6c:4a:00:8d:52:3a:1f:
8b:28:ab:73:c1:21:35:fe:f1:1f:81:c1:fb:bb:cc:
fd:a8:8c:00:fc:91:9e:53:6c:96:e8:d7:26:69:8c:
9c:b3:ed:26:ff:fc:f9:32:70:2f:e9:c3:4a:f5:5b:
69:63:52:4b:a2:45:30:84:24:dc:8b:36:29:30:51:
af:53:04:f6:47:d6:3e:21:30:26:9c:81:b3:d1:a5:
02:13:b1:dc:9c:70:f5:49:e2:09:73:45:b0:a7:19:
9c:de:54:58:d3:d4:48:85:5e:50:44:2a:2f:4d:21:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9D:04:B2:1F:29:FD:BF:B9:18:41:F6:7C:3A:7D:85:B4:B0:F9:6C
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/l50Esh8p_b-5GEH2fDp9hbSw-Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.22.0/23
87.229.31.0/24
87.229.34.0/23
87.229.48.0/24
87.229.50.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.92.0/24
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:18:ca:a5:9c:50:fa:15:e0:4f:3f:41:7a:93:12:73:b3:84:
c0:74:25:26:90:04:bf:8a:24:31:4a:60:6f:d6:1a:91:f0:19:
7e:b6:e9:fd:23:4b:ad:c0:6c:dc:de:39:5e:4e:12:f4:bb:ca:
51:b5:70:e6:39:1c:f2:80:1a:05:78:00:e4:9b:2d:cb:09:95:
0f:09:b5:48:68:10:5d:1f:19:b1:10:b9:95:93:7e:28:c1:f1:
2a:be:c7:21:20:d9:99:1f:e2:05:d5:fb:9b:21:2c:1d:fe:57:
89:f2:85:24:28:59:2c:3a:1e:e7:09:9a:73:45:4a:c2:0e:62:
62:7c:c2:a9:86:c0:6c:f7:2b:f8:c2:4f:76:f5:8c:86:4a:39:
e9:dd:59:1f:66:aa:7e:92:dc:ff:29:d5:98:37:21:c9:0e:d5:
28:c9:c3:dc:72:66:4d:40:ba:e5:04:14:a7:2e:fb:bc:6e:5d:
65:67:bc:5a:02:34:9f:94:7c:2f:22:ca:fb:0f:b6:a3:16:41:
49:d1:75:2c:95:5d:a3:73:ef:76:0a:8d:b1:af:83:03:77:4f:
76:67:c0:28:c8:17:29:78:09:99:c6:d4:c2:64:c6:44:b7:37:
fa:b2:6f:26:f9:4b:e3:31:0c:c8:c7:a5:5a:ef:35:e8:14:35:
ce:ad:f3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org