Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xToP8SnT-VZTuqDwSmSD7LZeuiI.roa
File: xToP8SnT-VZTuqDwSmSD7LZeuiI.roa (raw, json)
Hash identifier: R9H/MJfoaOApj79xtLWHGiWmd51WjaaJrJwlXK+8fho=
Subject key identifier: C5:3A:0F:F1:29:D3:F9:56:53:BA:A0:F0:4A:64:83:EC:B6:5E:BA:22
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018DDC32BA5E70C7C54B26C2544F1518F100
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xToP8SnT-VZTuqDwSmSD7LZeuiI.roa
Signing time: Sat 24 Feb 2024 17:38:48 +0000
ROA not before: Sat 24 Feb 2024 17:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
79.172.251.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
217.144.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 08:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:dc:32:ba:5e:70:c7:c5:4b:26:c2:54:4f:15:18:f1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Feb 24 17:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c53a0ff129d3f95653baa0f04a6483ecb65eba22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:39:8b:21:d4:8d:a4:5a:e8:7c:b6:f8:1d:d3:
ea:cf:b9:f5:2c:1e:23:1f:63:fd:25:39:ff:df:15:
62:ce:a9:cd:9d:25:7e:7e:19:54:14:8c:17:50:70:
63:32:32:77:b1:00:98:81:74:47:17:fc:8d:7a:a7:
e8:bc:9a:f4:a2:d9:9d:5a:88:f7:32:aa:57:3b:54:
86:48:43:fe:62:51:07:d3:b4:2d:f0:a0:d7:b9:cd:
d8:86:16:b3:79:7c:f9:f3:49:79:02:dc:85:ca:cf:
65:de:40:b6:12:8e:53:b0:73:85:ab:6e:fc:2b:af:
54:a4:ed:17:3f:db:90:f3:d2:d9:38:2d:02:37:b1:
72:db:5d:07:85:4d:c3:18:1e:b7:f3:bd:37:cd:bd:
94:83:12:6b:28:3a:c2:ef:3a:68:99:0c:9b:e4:67:
d4:50:c8:d0:21:1f:f7:95:4e:61:ee:93:53:f6:1b:
2e:06:84:a8:64:aa:ea:3f:af:e6:b8:0b:b1:2a:8b:
91:de:ca:29:6b:5c:ad:93:22:19:6d:a8:34:e1:57:
ac:cd:44:60:ec:eb:4c:bd:ed:72:e0:ec:66:6b:63:
2f:74:62:d7:60:5e:36:93:f3:33:80:81:4a:95:b7:
08:b0:64:58:d9:f1:48:9a:dd:a6:07:25:25:85:94:
eb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3A:0F:F1:29:D3:F9:56:53:BA:A0:F0:4A:64:83:EC:B6:5E:BA:22
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xToP8SnT-VZTuqDwSmSD7LZeuiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
79.172.251.0/24
87.229.48.0/24
87.229.50.0/24
87.229.71.0/24
87.229.81.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.59.255
217.144.62.0/23
Signature Algorithm: sha256WithRSAEncryption
23:3e:05:9b:52:c7:d3:ab:d9:ee:65:c2:c6:e6:2d:35:b1:74:
1d:49:32:7b:9f:c3:3c:2d:5f:c5:d6:ce:ab:04:79:50:6c:00:
25:df:e5:0b:14:18:d9:1b:c8:0e:74:65:95:17:3d:c1:b0:73:
a5:11:e6:ad:ba:18:a8:91:0b:d8:99:54:5f:78:01:34:24:fe:
3d:15:ee:64:6e:32:5a:0a:1b:4d:68:10:d0:7c:45:17:de:76:
28:71:fe:45:6a:89:b0:42:c1:26:01:6c:66:1c:0b:01:9c:b4:
8d:b2:88:67:25:0b:5c:18:88:0e:76:ac:b2:97:95:8e:74:4e:
17:60:f4:c5:10:88:72:7d:c2:e1:81:8e:e4:ce:d4:8b:23:6e:
63:38:8a:c4:8a:9c:90:d4:ee:87:6a:da:ea:84:1d:1d:d1:f8:
a3:05:7f:de:d5:02:31:a0:80:d4:76:0b:b8:23:25:f9:a6:a6:
a6:d6:59:01:6c:a1:7e:75:ec:cb:d3:b4:a1:56:76:fe:f0:94:
59:d7:59:2e:e7:2a:ee:71:4f:e7:39:e7:e4:38:2c:54:01:96:
9f:ff:97:e7:4d:45:b4:b5:64:13:37:72:b2:26:7a:d0:5d:85:
44:be:d2:9d:8b:de:58:8a:6f:60:eb:07:a6:04:c7:e7:2f:2e:
36:54:f1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org