Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/_eHYDZ6hJpZOxaI9O2padz7wKs8.roa
File: _eHYDZ6hJpZOxaI9O2padz7wKs8.roa (raw, json)
Hash identifier: M3xb3JE4ha55g+9YtZ25gns6gl6IZWRbP3GyZ9NTTPE=
Subject key identifier: FD:E1:D8:0D:9E:A1:26:96:4E:C5:A2:3D:3B:6A:5A:77:3E:F0:2A:CF
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 01926B8B1F1055DBD4A9DEB29182E9E0D19F
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/_eHYDZ6hJpZOxaI9O2padz7wKs8.roa
Signing time: Tue 08 Oct 2024 09:52:12 +0000
ROA not before: Tue 08 Oct 2024 09:52:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/19 maxlen: 19
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/18 maxlen: 18
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/20 maxlen: 20
88.223.192.0/19 maxlen: 19
95.173.32.0/19 maxlen: 19
95.173.32.0/23 maxlen: 23
185.104.176.0/22 maxlen: 22
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 08 Oct 2024 11:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:8b:1f:10:55:db:d4:a9:de:b2:91:82:e9:e0:d1:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Oct 8 09:52:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fde1d80d9ea126964ec5a23d3b6a5a773ef02acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:94:ce:32:4e:fb:1c:69:14:ae:5c:44:74:a7:
5f:2d:bf:8a:c6:5a:f6:5e:25:0d:b7:7a:ee:a1:a1:
bd:0e:0e:50:f8:09:41:1a:2d:28:35:3a:4b:34:75:
dc:00:cf:32:8c:e7:2c:02:c1:ba:8d:06:e8:4c:9d:
ca:3a:4e:e4:82:bd:3c:26:20:08:37:61:63:dc:11:
89:a6:93:b3:cb:fe:56:94:70:b4:13:e9:9b:32:73:
d9:3b:5a:0b:a4:25:47:0d:ff:cd:45:b4:70:72:4c:
96:31:c0:bb:8f:ac:a0:61:be:0b:4c:df:75:6b:a7:
39:d7:88:6a:78:78:94:9b:d9:5a:9c:cc:56:3f:c7:
f2:82:74:f7:5b:ab:ab:8f:e6:0a:c8:81:db:ec:c4:
5c:57:56:ae:25:78:1c:c4:d2:07:e1:32:bb:c6:30:
5b:f8:4c:9f:c7:a1:b3:96:ab:e9:28:37:08:ca:dd:
5b:6d:fb:b6:d2:0b:12:88:08:97:39:b1:57:4f:65:
b7:10:5f:59:94:39:42:4d:57:65:c3:91:8c:9f:85:
97:65:9e:b0:74:cc:b9:3f:a3:05:52:03:7f:87:24:
32:b4:89:a2:b9:af:3a:a2:7d:6e:05:35:7e:5f:c5:
48:79:b7:06:35:e8:13:1a:ef:ce:71:4f:45:ad:10:
67:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E1:D8:0D:9E:A1:26:96:4E:C5:A2:3D:3B:6A:5A:77:3E:F0:2A:CF
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/_eHYDZ6hJpZOxaI9O2padz7wKs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/19
84.55.32.0-84.55.37.255
84.55.48.0/20
88.223.0.0/18
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/20
88.223.192.0/19
95.173.32.0/19
185.104.176.0/22
213.164.112.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
27:b6:10:7c:24:3c:e6:bf:99:a2:a3:7d:4d:9c:20:d2:88:d7:
39:ab:68:57:4c:d0:93:6f:53:4a:96:a6:81:df:d4:9b:b8:67:
a7:66:06:5b:46:f6:aa:69:a8:b1:ec:6c:33:b6:e3:2c:f4:0f:
b6:d8:05:4f:58:be:6e:22:91:1b:4d:45:1e:39:ac:45:1f:d1:
01:7d:a2:4c:87:59:b6:d6:04:21:22:39:b0:a5:ef:29:af:70:
8a:ab:87:87:75:f4:bb:56:dd:50:a1:14:25:70:d0:e3:07:35:
ad:ad:55:1c:51:a9:8a:69:98:f8:09:72:75:42:6f:b5:c9:08:
86:ba:ac:54:29:f9:33:99:c5:81:25:94:7d:3b:5b:08:47:2e:
f9:71:f8:7b:38:c4:9b:56:27:18:8b:30:04:19:ef:08:8b:86:
fa:a7:a7:eb:f9:c9:3c:ce:d4:b3:58:f2:2a:ce:91:8a:c5:9c:
6c:0a:2d:e6:c3:a0:16:3b:61:6a:08:02:62:b8:84:d7:2a:2e:
96:a1:91:da:26:b9:cd:51:29:fd:f3:48:27:a1:d1:77:20:03:
ab:61:d2:50:87:bd:03:80:c2:d8:2b:33:ed:6e:4f:7f:3b:63:
a1:d9:37:80:17:34:70:37:fd:08:cf:f6:af:fb:c1:22:69:f4:
5d:04:61:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 18:03:47 2024 by rpki-client on console-ams.rpki-client.org