Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/ZYflQ7-bY2QYoeUBzT2T8kRXFQI.roa
File: ZYflQ7-bY2QYoeUBzT2T8kRXFQI.roa (raw, json)
Hash identifier: sOffcCwxe40YLTcuTRGpBacPUE5FcftU0nfkwdQ9E5c=
Subject key identifier: 65:87:E5:43:BF:9B:63:64:18:A1:E5:01:CD:3D:93:F2:44:57:15:02
Certificate issuer: /CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Certificate serial: 0185703028BBEAA090E75FE9A3DE6073A986
Authority key identifier: 79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/ZYflQ7-bY2QYoeUBzT2T8kRXFQI.roa
Signing time: Mon 02 Jan 2023 01:54:42 +0000
ROA not before: Mon 02 Jan 2023 01:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48424
IP address blocks: 77.32.240.0/24 maxlen: 24
77.32.244.0/24 maxlen: 24
77.32.246.0/24 maxlen: 24
77.32.245.0/24 maxlen: 24
77.32.242.0/24 maxlen: 24
185.48.178.0/24 maxlen: 24
185.48.177.0/24 maxlen: 24
185.48.179.0/24 maxlen: 24
185.48.176.0/24 maxlen: 24
188.164.240.0/24 maxlen: 24
188.164.246.0/24 maxlen: 24
188.164.245.0/24 maxlen: 24
188.164.243.0/24 maxlen: 24
188.164.242.0/24 maxlen: 24
188.164.244.0/24 maxlen: 24
188.164.241.0/24 maxlen: 24
188.164.247.0/24 maxlen: 24
95.182.29.0/24 maxlen: 24
95.182.31.0/24 maxlen: 24
95.182.25.0/24 maxlen: 24
95.182.28.0/24 maxlen: 24
95.182.27.0/24 maxlen: 24
91.210.240.0/24 maxlen: 24
188.95.24.0/24 maxlen: 24
188.95.27.0/24 maxlen: 24
188.95.29.0/24 maxlen: 24
188.95.28.0/24 maxlen: 24
188.95.26.0/24 maxlen: 24
188.95.25.0/24 maxlen: 24
188.95.31.0/24 maxlen: 24
188.95.30.0/24 maxlen: 24
91.210.242.0/24 maxlen: 24
91.210.241.0/24 maxlen: 24
91.210.243.0/24 maxlen: 24
2a02:5ac0::/33 maxlen: 33
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:28:bb:ea:a0:90:e7:5f:e9:a3:de:60:73:a9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Validity
Not Before: Jan 2 01:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6587e543bf9b636418a1e501cd3d93f244571502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:4a:48:bd:ec:bd:d1:68:bb:83:bd:86:28:7f:
b1:e7:cb:93:e3:95:a3:f9:4c:f4:67:03:59:9d:0c:
f5:58:e9:d0:ed:6e:de:bd:4f:89:41:06:91:e1:4a:
fa:98:c0:1f:4f:61:7a:6d:4b:5c:e6:36:8c:25:85:
40:e4:38:f5:5b:b7:4a:74:94:66:6b:1e:7d:ff:8d:
d6:0c:21:27:56:c5:19:33:3c:06:95:1a:f1:4e:6d:
dd:74:d9:38:5b:29:fd:3e:ee:f7:39:74:8f:b6:63:
11:89:07:52:cd:e1:38:8f:5f:81:ca:60:93:58:e9:
19:32:df:ec:f8:91:9a:59:42:20:0b:9c:a9:fc:8e:
ae:d5:83:2c:cb:0a:6a:db:09:79:f9:f6:7d:d9:01:
ce:be:e1:63:81:f3:1c:48:1f:e5:e2:28:e4:5f:20:
71:e0:40:28:7c:32:46:da:21:ce:ae:ae:ac:ad:86:
76:e0:d9:9a:07:b6:1e:e7:bc:20:7c:f8:e9:81:87:
09:da:9a:ef:8c:e6:e8:06:fd:a1:2a:fb:d4:f9:98:
26:7c:e9:6a:67:9f:b6:71:fd:05:e7:9b:7e:5f:e7:
1f:46:5c:07:4a:b8:37:60:48:a9:0b:f8:f8:ca:4f:
26:39:4d:30:4c:d8:d8:23:a8:a0:a5:e8:00:f6:55:
ea:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:87:E5:43:BF:9B:63:64:18:A1:E5:01:CD:3D:93:F2:44:57:15:02
X509v3 Authority Key Identifier:
keyid:79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/ZYflQ7-bY2QYoeUBzT2T8kRXFQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/eWRrOMPYfTMUW2NLTh3MIUX2QWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.32.240.0/24
77.32.242.0/24
77.32.244.0-77.32.246.255
91.210.240.0/22
95.182.25.0/24
95.182.27.0-95.182.29.255
95.182.31.0/24
185.48.176.0/22
188.95.24.0/21
188.164.240.0/21
IPv6:
2a02:5ac0::/33
Signature Algorithm: sha256WithRSAEncryption
79:74:eb:bb:56:46:93:51:e6:83:1c:ad:4f:bb:27:c4:41:2e:
39:43:ce:ee:b9:02:23:44:f1:54:dc:d0:17:f8:57:8a:03:a9:
71:78:b6:8a:05:55:8d:6d:e4:c7:c2:89:1f:9e:8e:32:6c:f2:
55:2d:50:7b:93:fb:b0:4e:b9:60:f2:93:d8:64:44:41:d3:ec:
0b:5b:1b:5c:c2:42:3b:73:e6:ef:f9:7b:66:c5:66:1e:44:02:
91:c5:52:c6:2c:c2:37:67:97:c1:eb:3a:16:6a:f3:aa:4b:a2:
d6:82:7a:78:ca:5a:bf:29:89:7f:d8:7d:f0:b0:4f:a8:cc:1f:
7d:8e:cd:ce:1e:da:db:34:a7:b0:b9:77:92:ba:b7:4d:4a:92:
a8:66:3b:95:63:28:81:a9:1f:1a:ad:58:d5:b2:ce:3c:cc:f0:
35:42:e4:97:81:8b:38:60:93:d9:67:ae:d6:58:89:24:65:44:
ea:44:81:2b:4f:9d:47:d5:4f:aa:9b:0b:11:b1:0d:2d:73:59:
2f:10:95:20:db:ec:cb:21:7a:b4:0e:be:8a:5d:6b:59:ca:10:
3b:8d:08:fe:74:35:a7:d8:de:ac:6b:52:ff:10:9a:85:4a:ed:
4f:1d:cd:85:a5:71:30:e8:c6:00:25:53:ef:a3:5e:3b:ea:59:
da:7d:dd:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:00 2024 by rpki-client on console-fra.rpki-client.org