Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xW1z41wfTh4giMTOYSuRjiF93SI.roa
File: xW1z41wfTh4giMTOYSuRjiF93SI.roa (raw, json)
Hash identifier: d8kq08Fx/Ti7P1JHKd4z/ukrzlRW45at3yOLyP5vinE=
Subject key identifier: C5:6D:73:E3:5C:1F:4E:1E:20:88:C4:CE:61:2B:91:8E:21:7D:DD:22
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F632174240A3CE2CB75D7A790BFF1B4A9
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xW1z41wfTh4giMTOYSuRjiF93SI.roa
Signing time: Fri 10 May 2024 15:31:27 +0000
ROA not before: Fri 10 May 2024 15:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 07:37:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:63:21:74:24:0a:3c:e2:cb:75:d7:a7:90:bf:f1:b4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 10 15:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c56d73e35c1f4e1e2088c4ce612b918e217ddd22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:57:bf:9a:78:7a:61:04:6d:81:ab:3b:6f:2e:
db:f1:55:b7:5b:0e:57:f5:03:a2:33:ca:8a:af:0a:
69:53:b8:9f:2b:ae:b2:c8:3c:34:e0:54:a8:c4:06:
b0:89:7c:ab:1e:a6:7f:a3:5c:cc:ff:a1:77:08:a2:
1b:8b:fd:97:9b:f0:2e:14:05:98:c7:3b:94:95:dd:
fb:75:7d:be:f6:f3:49:cc:d7:32:af:9b:c0:42:57:
2c:5f:ed:5c:2b:7b:b6:d5:03:73:b3:fd:af:c6:dd:
c8:ed:9f:a5:e5:f3:87:f3:f8:94:25:9e:3d:1c:c7:
00:8e:41:ce:b8:ee:96:fd:e1:d9:c1:4e:f9:2c:0a:
83:fa:f8:88:72:49:8d:60:58:f7:ea:7f:d4:3f:3a:
1d:22:11:ec:73:82:fa:59:4e:cb:dd:35:b2:b8:92:
5b:69:f3:78:49:95:73:bc:09:61:67:5c:c6:e4:2b:
b6:92:61:d4:34:0a:0d:4d:fc:84:9a:de:79:0d:5d:
aa:93:20:37:2e:86:b9:35:d7:2b:50:fd:15:b8:b6:
ac:69:e9:45:29:84:b8:59:56:18:91:2c:40:df:a8:
24:99:de:4d:9e:4d:d5:e7:89:a8:6a:7a:4c:ca:7b:
b2:fa:17:56:ff:d4:34:d0:85:0b:65:0e:ce:a7:46:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6D:73:E3:5C:1F:4E:1E:20:88:C4:CE:61:2B:91:8E:21:7D:DD:22
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/xW1z41wfTh4giMTOYSuRjiF93SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.22.0/24
87.229.34.0/24
87.229.48.0/24
87.229.50.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d8:91:5e:3c:9c:11:03:74:fd:26:c6:d5:1f:9f:23:97:c1:
d3:e5:1a:8d:e1:56:3f:a9:4f:64:9c:83:80:24:77:b2:7c:c3:
26:58:96:1e:b8:4b:00:7c:67:68:2a:12:ca:38:76:e3:6b:c9:
b0:1d:a9:8a:68:96:1f:e9:91:59:ed:65:9f:89:7e:bf:04:20:
d6:56:ab:db:2c:ee:72:c9:35:03:ca:67:82:13:e2:37:0b:de:
7b:8c:cc:f5:cb:ae:22:4b:c2:f1:11:39:16:cc:b8:6b:31:49:
b4:16:4c:29:52:f7:f9:90:cc:f2:c8:e3:a9:87:e8:c3:e4:db:
e6:15:3f:94:15:8d:e9:5f:5a:2b:4c:f9:fd:a9:35:4a:0f:3f:
a6:da:94:36:e2:25:d2:5e:c3:6a:b2:9d:e5:40:d4:3e:9b:01:
23:4b:72:58:d8:e8:55:3e:cb:02:24:36:6f:81:33:b8:60:5c:
b5:a6:66:70:cc:3f:53:7d:b5:7c:d0:93:11:89:bc:47:0f:bd:
5e:80:80:3d:fe:54:6a:6e:57:f6:ec:5e:4d:7f:1f:77:a3:92:
39:18:6f:f4:55:69:5c:a5:c0:98:c7:8f:03:4e:97:20:64:17:
64:5e:49:20:c4:f8:65:fc:0a:66:91:b0:5c:bf:d7:04:d1:d1:
0f:38:c6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org