Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/z9vlGzMax58ikQEGbsgRCjeEUUU.roa
File: z9vlGzMax58ikQEGbsgRCjeEUUU.roa (raw, json)
Hash identifier: CAbKMm/JtteRzzuh0cNrVyMiORg7V0aZiQuG2Cfsi4I=
Subject key identifier: CF:DB:E5:1B:33:1A:C7:9F:22:91:01:06:6E:C8:11:0A:37:84:51:45
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 018C90C8F5A2A2233200FF40DC80D1355F73
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/z9vlGzMax58ikQEGbsgRCjeEUUU.roa
Signing time: Fri 22 Dec 2023 09:08:58 +0000
ROA not before: Fri 22 Dec 2023 09:08:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 95.183.228.0/24 maxlen: 24
193.140.192.0/24 maxlen: 24
193.140.193.0/24 maxlen: 24
193.140.194.0/24 maxlen: 24
193.140.199.0/24 maxlen: 24
193.140.196.0/22 maxlen: 22
193.140.196.0/24 maxlen: 24
193.140.195.0/24 maxlen: 24
193.140.200.0/24 maxlen: 24
193.140.201.0/24 maxlen: 24
193.140.200.0/22 maxlen: 22
193.140.203.0/24 maxlen: 24
193.140.204.0/22 maxlen: 24
193.140.208.0/21 maxlen: 21
79.123.179.0/24 maxlen: 24
79.123.178.0/24 maxlen: 24
79.123.176.0/23 maxlen: 23
79.123.181.0/24 maxlen: 24
79.123.180.0/24 maxlen: 24
79.123.183.0/24 maxlen: 24
79.123.182.0/24 maxlen: 24
193.255.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:c8:f5:a2:a2:23:32:00:ff:40:dc:80:d1:35:5f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Dec 22 09:08:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfdbe51b331ac79f229101066ec8110a37845145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:d4:c4:f2:50:56:31:54:5a:7d:f1:79:0d:
72:06:a8:3b:d8:e7:fe:d3:4b:96:cc:9c:1f:66:19:
26:48:8e:f0:7a:8a:21:a1:df:24:17:e7:ca:66:8a:
d3:2a:69:6a:0f:37:2a:c5:4e:b5:bc:a3:9a:48:d8:
98:97:1f:fb:40:61:9c:5d:0c:79:ff:68:00:69:8e:
da:98:58:12:a2:b7:85:8b:67:9c:1e:31:36:08:c8:
e6:1e:d7:9e:61:9b:82:6a:68:e1:67:89:12:19:61:
ad:8e:01:ef:ba:04:8e:ec:b9:bd:9b:bb:ec:8a:c0:
66:d4:1f:4f:76:49:db:db:59:e0:b3:34:82:0c:fc:
b4:85:ed:0e:0b:6b:77:d3:9a:70:7a:47:ca:59:b5:
b2:14:ab:91:c0:e2:0e:48:dd:33:50:64:bc:f0:ec:
41:46:5c:d8:ed:71:52:93:c6:1f:c3:cd:ea:64:e2:
00:b5:5b:8d:c0:fc:c9:f7:80:72:3d:23:2e:0c:c5:
1c:a9:66:73:70:6e:1a:73:20:dd:0b:17:6e:79:2b:
5b:b2:c4:94:98:4f:cb:d9:48:ab:04:38:e9:e7:9c:
89:54:ef:1b:21:7f:bc:3d:10:8c:c4:c0:0d:3b:10:
78:9d:6a:1b:1f:e0:a7:70:56:e9:c3:26:78:2d:e2:
ea:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DB:E5:1B:33:1A:C7:9F:22:91:01:06:6E:C8:11:0A:37:84:51:45
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/z9vlGzMax58ikQEGbsgRCjeEUUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.176.0/21
95.183.228.0/24
193.140.192.0-193.140.215.255
193.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:5f:d0:78:e4:9e:80:6b:79:39:9c:85:10:b5:b0:38:3a:41:
b3:a5:59:b6:e1:c7:6f:e3:0a:a8:c8:07:57:9a:07:df:c3:ad:
5f:e8:5a:d8:31:bc:d1:ca:09:1d:15:32:e9:d0:cc:d4:ef:01:
3b:ff:94:25:63:dd:b6:84:b7:3e:82:c3:d6:2d:34:e9:57:17:
21:1b:13:06:de:18:43:07:9a:ac:e4:c0:75:3b:e8:ba:7a:d3:
8b:7e:94:53:6b:22:3b:aa:b5:99:e0:bf:1b:bf:ed:1d:3d:e9:
5a:dd:69:54:2c:80:ef:36:25:3b:38:f0:30:9d:7e:9a:4a:81:
4f:1c:98:f3:ef:a1:7d:10:a3:33:96:4c:bd:8b:36:fe:7b:d4:
1a:ec:c4:b1:3a:b3:93:9f:34:1a:19:20:b6:cd:fc:62:af:83:
e1:cd:fc:a8:62:00:bd:e5:31:ab:d3:66:d3:b9:07:d9:60:ef:
22:94:59:72:d9:e8:d6:dc:47:f1:50:b5:e1:a0:7f:1b:b5:c8:
b2:90:e0:be:81:98:dd:ff:5b:8b:bd:aa:29:71:53:51:2c:58:
d2:de:f5:59:76:6d:b3:3e:c7:e6:c9:cf:d7:b2:83:64:41:68:
3b:72:45:58:55:26:e1:84:43:9c:96:25:5a:6f:28:98:1d:9f:
05:f4:8c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org