Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/noPpbNA78MEQ503LEo1f7qGHFLk.roa
File: noPpbNA78MEQ503LEo1f7qGHFLk.roa (raw, json)
Hash identifier: vV3yDr69g840KCM3hVreq6CW6lqWVbnhwKOenWN14+4=
Subject key identifier: 9E:83:E9:6C:D0:3B:F0:C1:10:E7:4D:CB:12:8D:5F:EE:A1:87:14:B9
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018DAC9707E92F5810A6F50525D1F89BFD5E
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/noPpbNA78MEQ503LEo1f7qGHFLk.roa
Signing time: Thu 15 Feb 2024 11:46:35 +0000
ROA not before: Thu 15 Feb 2024 11:46:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47325
IP address blocks: 87.229.6.0/24 maxlen: 24
87.229.115.0/24 maxlen: 24
87.229.127.0/24 maxlen: 24
95.138.193.0/24 maxlen: 24
217.113.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 15:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:97:07:e9:2f:58:10:a6:f5:05:25:d1:f8:9b:fd:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Feb 15 11:46:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e83e96cd03bf0c110e74dcb128d5feea18714b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a2:ba:61:3d:c5:c1:54:f3:34:34:fb:18:4c:
d6:c6:ea:04:91:9f:38:14:b1:07:e2:b6:08:45:40:
97:1e:e5:12:cf:76:b4:f1:c1:7d:ed:c2:b5:de:b0:
84:4e:e2:98:12:72:31:4b:b1:7b:e0:a3:0a:78:cd:
68:34:cd:d7:c6:2b:46:a6:ae:4f:9e:0a:ce:77:21:
cb:30:ed:ac:5f:2c:42:e7:10:36:e0:f3:de:0e:92:
95:5f:b7:75:8e:98:b1:f3:fd:ae:c8:0c:81:18:6f:
bd:c8:d0:e1:5f:f6:e7:62:8d:ea:9b:c5:2e:02:74:
36:3a:d7:8f:f0:9b:80:fc:40:0a:41:3d:e4:91:6b:
51:de:bf:49:b6:79:a2:25:fb:e2:d9:63:60:47:df:
14:ae:11:ca:7b:67:ea:53:b8:15:21:da:30:73:26:
23:51:47:98:b4:f5:2a:24:19:80:23:c0:f3:cf:7a:
5b:cb:06:3e:d9:bf:d6:67:e5:6c:4d:8e:eb:30:c7:
ec:c5:b1:2f:a4:89:49:68:cb:99:19:ee:fa:b3:ba:
be:35:8e:3e:b4:4d:e9:c9:48:70:8c:4b:e1:27:9a:
65:72:9b:51:7b:92:45:11:a9:64:f8:5f:94:77:b5:
0b:00:85:50:67:04:4f:72:aa:dc:f2:ce:27:4a:d5:
09:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:83:E9:6C:D0:3B:F0:C1:10:E7:4D:CB:12:8D:5F:EE:A1:87:14:B9
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/noPpbNA78MEQ503LEo1f7qGHFLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.6.0/24
87.229.115.0/24
87.229.127.0/24
95.138.193.0/24
217.113.49.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0c:ab:37:22:d2:a3:78:31:27:6a:30:e2:e5:56:f9:41:82:
bf:a3:db:3b:cf:9a:1f:d6:d2:1c:40:b8:5d:cd:c4:84:8a:27:
9b:7f:40:d8:55:f0:2f:a5:fe:7c:c2:38:40:d7:86:b8:82:69:
43:be:b5:fe:75:e5:95:17:54:af:28:ab:04:28:22:db:0e:f1:
d5:da:f1:32:2c:73:87:cf:8b:b1:d6:5e:b7:3c:b3:07:71:81:
f6:f0:6e:29:3b:ad:2c:12:b6:f0:43:1d:12:ed:1a:c9:a4:67:
c0:c1:82:3a:3e:17:ff:ab:b6:dc:57:8a:a6:d2:1b:a9:60:c4:
00:c6:a4:13:18:c1:27:5b:7a:61:09:b0:a5:9e:9d:53:5e:ea:
77:74:41:e5:25:f9:be:6d:d5:6b:0b:ed:2a:2d:bc:99:86:8f:
13:b4:91:dd:25:c2:89:e8:58:50:f4:8f:db:af:59:3b:86:f5:
f4:58:89:27:38:df:c8:2f:d0:07:f6:5b:72:bd:27:fa:fa:1c:
2d:f2:bf:e3:e2:b2:e1:93:47:da:99:9a:9e:b7:af:26:a4:87:
61:04:82:13:af:73:4a:2a:74:ff:3f:a0:93:46:22:6e:0d:8a:
ed:ab:98:ad:00:70:97:ed:1d:a7:13:eb:36:99:00:db:84:42:
2d:5b:f9:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:28 2024 by rpki-client on console-fra.rpki-client.org