Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/FZq30XX4ZvHyvZLtiIU_NgyhnEU.roa
File: FZq30XX4ZvHyvZLtiIU_NgyhnEU.roa (raw, json)
Hash identifier: kmSQOjktz9sTSEd+XOdPpz2w+oAk0YX1Qiue7tIca98=
Subject key identifier: 15:9A:B7:D1:75:F8:66:F1:F2:BD:92:ED:88:85:3F:36:0C:A1:9C:45
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 01856D0A9B81CC323A2725673AE1061B9C00
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/FZq30XX4ZvHyvZLtiIU_NgyhnEU.roa
Signing time: Sun 01 Jan 2023 11:14:49 +0000
ROA not before: Sun 01 Jan 2023 11:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 95.183.228.0/24 maxlen: 24
193.140.192.0/24 maxlen: 24
193.140.193.0/24 maxlen: 24
193.140.194.0/24 maxlen: 24
193.140.196.0/22 maxlen: 22
193.140.196.0/24 maxlen: 24
193.140.195.0/24 maxlen: 24
193.140.200.0/22 maxlen: 22
193.140.203.0/24 maxlen: 24
193.140.204.0/22 maxlen: 22
193.140.208.0/21 maxlen: 21
79.123.179.0/24 maxlen: 24
79.123.178.0/24 maxlen: 24
79.123.176.0/23 maxlen: 23
79.123.181.0/24 maxlen: 24
79.123.180.0/24 maxlen: 24
79.123.183.0/24 maxlen: 24
79.123.182.0/24 maxlen: 24
193.255.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 07:26:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:9b:81:cc:32:3a:27:25:67:3a:e1:06:1b:9c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 11:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=159ab7d175f866f1f2bd92ed88853f360ca19c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4e:9f:9b:83:07:33:58:23:69:e4:db:11:4a:
b8:02:ef:fd:fc:c6:fb:b0:c9:37:52:8b:1c:bb:10:
37:36:43:f0:37:d4:72:23:9e:19:82:f9:20:25:02:
95:ec:c0:c4:67:22:e4:b7:2b:2a:0e:90:12:54:9f:
a0:04:d1:40:a6:fd:e1:98:c9:06:50:12:17:8b:7b:
fc:b5:96:96:42:97:16:f1:ef:6b:24:1d:86:02:d9:
97:34:11:01:35:ff:f8:f1:2b:ed:85:42:cd:29:c0:
25:e8:8e:1c:d0:a7:5f:45:0b:13:68:50:09:b2:4f:
3b:bd:83:0b:a8:2b:56:08:cd:67:3f:0c:6a:74:74:
12:a7:bc:89:03:ed:5d:47:00:f9:d2:a8:ca:de:55:
1b:e9:a0:48:c8:c0:a4:58:89:d9:29:65:e1:8b:e4:
da:81:a0:e4:b2:7a:3e:bf:c8:65:b9:10:43:86:4a:
d4:90:6c:5b:0b:bd:5b:09:63:a8:88:fd:97:92:6b:
ca:98:75:41:73:5a:27:93:70:d7:95:bd:b0:37:6b:
5f:7e:aa:81:18:cc:c0:e3:eb:ea:67:19:22:ee:b5:
4f:f8:fd:6e:88:5e:f0:05:80:b0:20:7d:c5:07:7a:
71:ca:5d:0b:3a:61:51:a7:cd:54:a1:ac:e0:60:7b:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9A:B7:D1:75:F8:66:F1:F2:BD:92:ED:88:85:3F:36:0C:A1:9C:45
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/FZq30XX4ZvHyvZLtiIU_NgyhnEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.176.0/21
95.183.228.0/24
193.140.192.0-193.140.215.255
193.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:19:a8:5d:a3:6a:dc:a3:c4:8f:82:d0:62:a3:df:74:9f:7a:
7a:17:f3:1f:a3:7e:1d:de:35:85:bd:d5:f3:74:dc:2c:85:23:
d6:97:dc:44:f4:9b:66:bf:f2:5c:d8:de:79:c2:f6:dd:ce:b7:
49:8c:a4:c2:22:cd:07:cd:0a:29:46:e9:8b:c2:43:c7:b3:17:
41:09:73:ea:2e:05:61:55:d0:06:27:23:fe:7f:55:46:1d:c1:
ee:5e:45:ca:c7:36:a4:1d:10:91:5f:3b:66:76:b2:67:df:07:
8e:9c:43:10:fe:6e:d1:ae:86:60:8a:06:01:3f:1b:9e:e3:2e:
c5:c6:30:aa:8a:e9:f5:ef:9c:28:fd:bc:06:d1:96:a1:b6:41:
a5:5b:18:5b:30:98:55:e7:31:0e:de:ca:2d:72:30:52:ed:b6:
8f:33:68:29:80:8f:fe:10:69:99:1a:9e:d5:a4:e6:27:d7:f5:
cc:51:5b:ee:76:9f:3b:fd:f4:9d:41:0b:c9:94:d4:18:69:0c:
ab:f6:0d:a6:1f:b5:27:b8:4d:f7:af:80:65:35:2b:7e:06:17:
eb:72:07:c3:5c:01:5d:04:68:66:a6:0b:09:c3:c3:f4:93:60:
48:de:fc:bf:23:a4:5d:54:cf:1c:76:55:3d:91:72:9e:3d:97:
32:57:e7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org