Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RZxEjT4udQvYHF0WY7F6V7iU8mI.roa
File: RZxEjT4udQvYHF0WY7F6V7iU8mI.roa (raw, json)
Hash identifier: 3Li+q3ziZ/GsE6W32OBQq9EU33PLCWBU0xfW3bOnM5Y=
Subject key identifier: 45:9C:44:8D:3E:2E:75:0B:D8:1C:5D:16:63:B1:7A:57:B8:94:F2:62
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 01926BD45BCAB2975DE24680745529ADF1C8
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RZxEjT4udQvYHF0WY7F6V7iU8mI.roa
Signing time: Tue 08 Oct 2024 11:12:12 +0000
ROA not before: Tue 08 Oct 2024 11:12:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/19 maxlen: 19
79.132.160.0/20 maxlen: 20
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/18 maxlen: 18
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/20 maxlen: 20
88.223.160.0/22 maxlen: 22
88.223.192.0/19 maxlen: 19
88.223.192.0/20 maxlen: 20
95.173.32.0/19 maxlen: 19
95.173.32.0/23 maxlen: 23
185.104.176.0/22 maxlen: 22
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Thu 10 Oct 2024 08:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:d4:5b:ca:b2:97:5d:e2:46:80:74:55:29:ad:f1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Oct 8 11:12:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=459c448d3e2e750bd81c5d1663b17a57b894f262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:04:82:71:64:6c:d5:8e:57:08:1e:dd:e8:48:
d1:1a:7a:c5:1b:ea:93:dc:cc:bf:69:c1:59:97:87:
81:96:95:6e:5e:3a:38:0d:2c:d7:c1:1a:d7:9c:ad:
dd:ad:18:de:b5:d5:a9:ae:a9:a6:45:83:92:61:a5:
9b:0f:23:aa:9e:db:35:b5:b3:a3:7d:86:fb:f0:a0:
ad:70:ba:ee:24:39:fd:a1:44:0a:a1:9b:e0:b1:a2:
7b:3a:a5:20:42:94:07:f3:f6:8d:8f:d5:a0:6c:97:
8f:db:b5:e6:a6:da:22:9f:eb:9e:09:3e:20:6d:19:
7f:3b:87:22:6d:3c:bd:58:ec:d6:1a:4f:99:bb:88:
8d:d1:5f:a5:d9:85:7b:69:1a:3a:a5:58:c8:5b:b8:
88:46:1d:52:aa:70:3f:7e:31:fd:1f:59:68:59:4e:
3a:8a:f6:2b:f3:1c:03:a7:04:94:38:d1:55:c0:76:
c9:5d:31:83:45:73:4c:a5:fe:0c:39:55:60:24:1f:
8e:37:47:6d:fd:6c:cc:35:9e:87:c3:db:c4:d8:da:
c8:07:e9:85:02:29:9a:ae:14:c9:14:dd:27:f9:c4:
f4:84:ca:70:25:12:14:20:c4:e6:99:88:c2:d9:24:
15:42:6d:fd:46:9d:d9:dd:8f:d9:60:15:9b:12:41:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9C:44:8D:3E:2E:75:0B:D8:1C:5D:16:63:B1:7A:57:B8:94:F2:62
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RZxEjT4udQvYHF0WY7F6V7iU8mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/19
84.55.32.0-84.55.37.255
84.55.48.0/20
88.223.0.0/18
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/20
88.223.192.0/19
95.173.32.0/19
185.104.176.0/22
213.164.112.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
6a:fd:4c:88:10:10:b5:3d:92:ca:3e:3e:41:da:8e:d3:59:19:
5c:27:77:b7:d0:7a:a1:7f:03:4c:bf:5a:56:6f:c2:ad:06:48:
ed:83:88:9f:1f:11:fd:b1:39:cd:04:61:79:a7:51:e1:67:8d:
c7:65:68:06:32:93:82:92:6f:96:6c:a8:cd:d0:fc:a8:71:74:
5c:72:2b:9d:7f:60:63:9a:c3:ed:e5:5d:96:15:9c:80:18:73:
6d:ba:43:5a:5d:df:56:1b:0c:c6:4e:6c:18:d2:34:ac:c0:71:
a1:ab:96:e8:05:53:e5:39:d8:c7:0b:8a:1c:63:41:76:de:58:
ad:74:e2:6a:7f:8e:cf:52:df:4c:a2:23:32:cb:99:7e:cb:ba:
65:2e:21:4e:2a:63:49:0f:cc:22:47:89:e8:81:f8:4f:3f:4e:
b3:e6:cd:1b:28:b1:10:59:8e:62:57:bb:30:92:67:e5:1a:e3:
2f:9b:b0:a5:a4:b8:85:8b:a6:25:7a:ee:d9:12:41:68:d5:74:
36:73:15:f0:2e:e8:65:f1:25:c5:72:92:97:55:8a:ff:0b:c3:
6c:c9:1c:87:04:27:33:7a:46:48:30:49:18:4c:11:e9:d8:02:
8f:5a:02:7e:90:77:0a:d0:32:fa:d0:dd:dc:79:51:e0:96:97:
5b:b7:c2:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 12:45:07 2024 by rpki-client on console-fra.rpki-client.org