Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j_xUvrJx7gJKP0McHLSNzDcTWDw.roa
File: j_xUvrJx7gJKP0McHLSNzDcTWDw.roa (raw, json)
Hash identifier: QbBR+5GNyL1WhJVyg2LexqetsGFaAUVbB/d36a+x35M=
Subject key identifier: 8F:FC:54:BE:B2:71:EE:02:4A:3F:43:1C:1C:B4:8D:CC:37:13:58:3C
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 018ACC9871FC8CC51AA2804B59489B5E0C25
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j_xUvrJx7gJKP0McHLSNzDcTWDw.roa
Signing time: Mon 25 Sep 2023 13:47:37 +0000
ROA not before: Mon 25 Sep 2023 13:47:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 95.183.228.0/24 maxlen: 24
193.140.192.0/24 maxlen: 24
193.140.193.0/24 maxlen: 24
193.140.194.0/24 maxlen: 24
193.140.199.0/24 maxlen: 24
193.140.196.0/22 maxlen: 22
193.140.196.0/24 maxlen: 24
193.140.195.0/24 maxlen: 24
193.140.201.0/24 maxlen: 24
193.140.200.0/22 maxlen: 22
193.140.203.0/24 maxlen: 24
193.140.204.0/22 maxlen: 24
193.140.208.0/21 maxlen: 21
79.123.179.0/24 maxlen: 24
79.123.178.0/24 maxlen: 24
79.123.176.0/23 maxlen: 23
79.123.181.0/24 maxlen: 24
79.123.180.0/24 maxlen: 24
79.123.183.0/24 maxlen: 24
79.123.182.0/24 maxlen: 24
193.255.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 09:08:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:98:71:fc:8c:c5:1a:a2:80:4b:59:48:9b:5e:0c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Sep 25 13:47:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ffc54beb271ee024a3f431c1cb48dcc3713583c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a6:65:b1:ac:cb:6f:bd:fb:50:d8:b8:05:1a:
c2:7e:24:a3:7b:cc:aa:fb:b9:46:c3:a2:c8:67:77:
ab:2f:18:3f:05:8a:38:29:a1:f2:76:6a:d4:33:bc:
85:2d:d4:fc:f0:e3:36:61:ef:5f:8b:36:6c:a1:fb:
16:e7:f3:f4:6c:f2:3d:b0:b3:72:c8:d1:88:e0:67:
ad:de:68:a5:7d:94:98:bc:6c:c0:07:20:55:7c:58:
bc:02:37:7b:26:1e:16:91:71:78:f0:cb:0d:f4:f0:
5a:d3:bf:2c:f9:e4:e9:35:05:32:35:72:3d:82:19:
7f:1c:95:11:94:a8:46:23:c0:29:93:8c:6d:1d:c8:
5f:5a:e5:71:af:58:74:7d:ce:86:cd:39:21:da:82:
92:e5:16:28:ae:be:07:84:67:9e:43:31:6a:e2:b6:
d7:02:5b:31:d8:6c:59:f6:85:52:c3:a4:46:22:49:
75:8b:da:94:1c:51:bc:30:ab:8b:65:3f:c4:8e:0f:
ac:c4:80:39:90:f9:a6:b6:82:9b:10:5a:b6:38:9b:
9c:23:df:e7:39:83:f6:87:e6:fc:82:63:c9:df:ae:
b8:ad:2c:85:96:18:fc:aa:99:75:62:ff:f6:d4:41:
2f:1e:30:4f:9a:ce:df:c6:51:bb:ce:b0:4c:a9:26:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:FC:54:BE:B2:71:EE:02:4A:3F:43:1C:1C:B4:8D:CC:37:13:58:3C
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j_xUvrJx7gJKP0McHLSNzDcTWDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.176.0/21
95.183.228.0/24
193.140.192.0-193.140.215.255
193.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
19:8d:6f:59:ea:70:29:dd:24:18:d4:6c:55:08:0a:39:b2:73:
9e:2c:53:c8:25:9a:3c:fa:52:ed:bf:9f:7e:fd:11:f6:60:ef:
d8:db:fe:f7:b0:4e:7a:02:da:1b:65:e6:a5:96:e8:8f:5e:00:
60:5f:d9:39:ae:62:fc:97:25:36:cc:9f:8c:2d:b4:a3:c5:46:
8c:18:94:e5:9d:13:b3:35:5f:b8:28:68:f7:ef:e7:cf:63:3e:
8d:9f:74:ce:5c:4c:50:f8:5d:c5:12:fe:6a:9a:f5:3b:af:18:
de:6e:f0:95:85:da:02:fc:a9:e0:68:19:49:f6:e0:ea:f4:4e:
e9:48:d0:3d:91:e5:75:c8:93:5d:dc:31:86:e3:9c:c9:74:67:
fe:03:2a:ce:d9:97:f7:10:93:80:53:ba:10:d1:09:55:bc:cd:
a1:5c:9f:43:b2:f9:25:59:3e:13:ce:3d:d3:bc:ff:ee:35:fe:
a8:eb:11:f7:9d:54:2d:ed:4d:ff:24:47:e8:f4:44:ab:51:90:
37:e9:41:14:4f:b0:7b:fd:38:ac:20:13:a4:08:8d:70:0e:da:
c0:5a:43:07:02:d2:18:10:77:ea:96:40:95:ad:0b:02:9e:e0:
2f:5d:35:47:89:37:b9:4a:27:af:11:28:ec:2c:5a:35:e8:15:
0e:0f:8f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org