Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/yAiVSXXikgmzEXwNWWP9DQPWi3c.roa
File: yAiVSXXikgmzEXwNWWP9DQPWi3c.roa (raw, json)
Hash identifier: L6hWtn4qaXzqDBiQ/0uHjUMpH1EBWiaFq0YrlJ2eAOM=
Subject key identifier: C8:08:95:49:75:E2:92:09:B3:11:7C:0D:59:63:FD:0D:03:D6:8B:77
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F85D476C533DFD3E7F929E0253594931C
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/yAiVSXXikgmzEXwNWWP9DQPWi3c.roa
Signing time: Fri 17 May 2024 09:14:04 +0000
ROA not before: Fri 17 May 2024 09:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.23.0/24 maxlen: 24
87.229.31.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.92.0/24 maxlen: 24
87.229.97.0/24 maxlen: 24
87.229.100.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 08:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:d4:76:c5:33:df:d3:e7:f9:29:e0:25:35:94:93:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 17 09:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c808954975e29209b3117c0d5963fd0d03d68b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:aa:03:82:7a:6c:bd:07:2b:9b:4b:96:3a:
cf:c9:09:c4:dc:2d:03:fb:58:c7:fc:5b:f8:ab:df:
aa:27:cd:99:4b:a4:61:5b:bc:9f:5a:cc:54:55:a5:
5e:f9:cc:43:3f:a1:51:b6:2c:b3:16:f0:d0:4f:f3:
77:b7:17:66:62:95:64:15:6c:33:1b:8c:a4:a2:00:
4b:81:d7:69:9c:2f:d1:89:2a:b3:1b:89:61:a9:fd:
94:e6:49:c2:9c:08:3e:9a:06:51:95:53:b6:24:eb:
e8:a3:1e:91:15:f5:ae:42:34:66:bd:1c:c0:9a:32:
38:27:bc:7e:4a:7f:16:30:7d:c3:20:8d:dc:d1:69:
64:b6:c6:f9:d6:ef:43:c4:5b:07:3f:44:8e:ef:1b:
64:7f:40:2f:d8:4c:c8:12:60:8c:be:31:1a:61:73:
93:d5:70:ee:b5:0d:c1:66:c3:88:2d:57:a6:e6:19:
63:07:a6:e6:13:4a:86:c1:1c:6a:70:71:b1:f6:a7:
b8:9f:c6:6d:ee:d6:97:97:e7:74:16:c0:46:50:97:
7a:ea:87:33:67:d0:c0:09:91:d7:69:2b:cd:0c:9f:
81:07:d3:3b:09:9e:2e:18:23:af:d6:04:b1:11:dd:
c9:29:27:46:a2:ee:4c:36:81:7b:21:30:5b:33:d6:
6a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:08:95:49:75:E2:92:09:B3:11:7C:0D:59:63:FD:0D:03:D6:8B:77
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/yAiVSXXikgmzEXwNWWP9DQPWi3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.22.0/23
87.229.31.0/24
87.229.34.0/23
87.229.48.0/24
87.229.50.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.92.0/24
87.229.97.0/24
87.229.100.0/24
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:4f:34:74:02:27:33:24:68:58:52:2d:9d:ce:50:34:6c:8d:
8b:01:29:1f:60:55:62:3c:2c:c1:13:56:2e:dd:3a:92:05:07:
9d:0b:13:37:1c:4e:03:2e:d6:c8:fe:e2:73:71:ac:2c:34:40:
e9:80:4e:1a:90:8d:13:1f:22:9a:fd:40:de:0a:a0:96:82:2f:
46:b3:71:a4:4c:db:81:3c:f0:53:07:76:98:8b:fe:64:e9:f5:
a5:66:f1:fa:61:f5:43:9b:76:bd:91:d9:54:d4:45:26:bb:b9:
18:ec:96:c6:a2:a3:69:99:f1:7e:cd:6c:39:5f:59:12:6a:c8:
e1:0b:ca:08:10:95:2d:85:27:f4:b4:1f:59:2a:de:4b:29:d5:
ed:51:9c:6c:85:00:c9:d4:1d:b6:f8:45:67:e4:ca:4f:1b:7d:
2e:5a:5a:ca:63:97:ad:ee:bc:81:c5:64:cd:82:4f:85:cd:bd:
1a:92:bf:73:06:05:a7:77:64:8f:c2:e3:f5:6e:2b:16:a1:d0:
4b:88:0f:d3:a8:20:c9:f6:fc:61:b7:80:4e:9d:df:13:05:83:
41:24:f1:33:9b:ea:e2:76:3d:fd:ef:89:37:c9:69:78:80:57:
28:45:18:74:20:e6:4d:8e:f6:97:eb:1e:3e:65:bb:af:88:b5:
23:f9:69:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org