Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FMTdNdpu5DcBZvkcr4X9cfRBeyA.roa
File: FMTdNdpu5DcBZvkcr4X9cfRBeyA.roa (raw, json)
Hash identifier: SHVHwkDdjfBXaVvLQTMtD9CXIx9ApYKS1BFeoNQmgrs=
Subject key identifier: 14:C4:DD:35:DA:6E:E4:37:01:66:F9:1C:AF:85:FD:71:F4:41:7B:20
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018AD1622FE18B4155D17AFB7B0940C783EF
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FMTdNdpu5DcBZvkcr4X9cfRBeyA.roa
Signing time: Tue 26 Sep 2023 12:06:27 +0000
ROA not before: Tue 26 Sep 2023 12:06:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
193.57.41.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
2.56.110.0/24 maxlen: 24
45.138.183.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 12:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:62:2f:e1:8b:41:55:d1:7a:fb:7b:09:40:c7:83:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Sep 26 12:06:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14c4dd35da6ee4370166f91caf85fd71f4417b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:2c:5b:47:14:15:b6:75:14:93:91:47:04:
bd:f9:38:11:22:08:62:9e:13:06:42:80:ab:45:87:
c7:36:07:c1:2e:9a:3b:51:03:6e:96:4d:5d:5d:54:
5f:5f:86:70:29:5e:68:56:a7:9d:7c:5a:76:92:d9:
11:9c:57:3d:aa:c0:7c:36:f1:13:bc:cd:94:a0:4c:
49:f7:2f:d4:5c:d1:5c:ef:91:a9:70:da:fd:4b:3e:
fa:8e:58:2a:93:81:6e:29:02:f2:4b:6a:2c:83:0f:
88:a5:9e:2b:79:fa:15:c7:cb:6b:25:35:7f:30:12:
f8:e7:d3:5e:b3:dc:fd:9e:84:24:93:e0:f9:63:5f:
6d:20:76:17:88:32:5c:14:96:45:ec:20:c6:af:c1:
1f:45:a9:16:95:6f:9b:e5:f5:9b:3c:d2:72:9f:e6:
64:45:44:f9:c5:53:3d:4e:77:ce:5e:9b:15:ec:d5:
7a:9f:83:16:b6:ef:53:f8:83:78:d0:9e:4b:1c:0e:
2d:d7:e9:81:2b:9d:dc:e6:7d:b6:4a:1f:d6:e2:87:
64:57:1f:fb:48:cb:cf:37:cf:8c:df:09:11:c9:8b:
af:17:89:62:af:cd:02:56:ea:d1:f3:0a:68:68:79:
8f:4e:2c:af:4b:d6:a9:4b:ae:a7:78:7d:4e:d4:99:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C4:DD:35:DA:6E:E4:37:01:66:F9:1C:AF:85:FD:71:F4:41:7B:20
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FMTdNdpu5DcBZvkcr4X9cfRBeyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.110.0/24
45.94.171.0/24
45.138.183.0/24
45.144.213.0/24
77.83.39.0/24
85.209.120.0/23
193.57.41.0/24
195.62.24.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b9:10:b0:99:a7:19:6a:b6:f6:05:30:af:74:ab:8d:c1:14:
cc:85:ed:9a:3c:1e:d8:b0:e7:82:3e:bd:08:e7:70:7e:cf:db:
7d:10:7a:cc:ac:a6:4d:4c:39:d4:67:0a:64:61:39:24:77:26:
c1:10:28:36:d5:4b:ff:a5:ab:3f:a5:4d:79:20:4c:a0:62:e6:
f9:67:f5:d3:6d:68:1b:35:47:7c:a4:b1:39:ad:5b:49:dd:43:
25:5e:b8:06:f8:35:31:3d:aa:d5:5b:e8:40:6e:1b:2c:1d:32:
11:36:18:c0:13:91:e9:a4:91:d7:26:b0:01:37:ef:be:5e:76:
7e:b6:d5:b4:d5:46:23:bb:78:f6:dc:ec:b2:2e:6d:69:77:be:
cc:97:50:70:b3:ff:22:69:41:3f:3a:63:68:03:92:6e:8e:19:
9c:40:ea:16:fe:1a:38:8c:6a:93:c0:4e:ce:49:72:81:26:3e:
e2:26:6a:35:0e:1a:ba:bd:61:63:da:b3:b7:9c:f9:aa:f8:1e:
08:73:d5:94:3d:9d:5a:72:31:a8:de:32:d5:90:22:95:00:48:
f4:44:07:f9:f0:94:93:8a:08:7c:5c:0d:f2:65:bb:a8:cc:b3:
c0:7e:6b:47:2f:61:26:57:6a:16:21:e8:1c:3f:ad:d5:1d:8f:
20:32:bd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org