Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/kQDlbxmQ-0-Q-MJpubG7lTz7lmc.roa
File: kQDlbxmQ-0-Q-MJpubG7lTz7lmc.roa (raw, json)
Hash identifier: mg7/TL48bSL6CIBqKecp27UoxmfjFcpwQ5SVCNiScsY=
Subject key identifier: 91:00:E5:6F:19:90:FB:4F:90:F8:C2:69:B9:B1:BB:95:3C:FB:96:67
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0188166E552783220816232903DBE75A525E
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/kQDlbxmQ-0-Q-MJpubG7lTz7lmc.roa
Signing time: Sat 13 May 2023 18:45:09 +0000
ROA not before: Sat 13 May 2023 18:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60588
IP address blocks: 77.74.226.0/24 maxlen: 24
77.74.224.0/24 maxlen: 24
77.74.227.0/24 maxlen: 24
109.105.206.0/24 maxlen: 24
109.105.204.0/24 maxlen: 24
109.105.205.0/24 maxlen: 24
109.105.203.0/24 maxlen: 24
109.105.201.0/24 maxlen: 24
109.105.202.0/24 maxlen: 24
109.105.200.0/24 maxlen: 24
109.105.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:16:6e:55:27:83:22:08:16:23:29:03:db:e7:5a:52:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: May 13 18:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9100e56f1990fb4f90f8c269b9b1bb953cfb9667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:22:99:27:03:97:87:57:2a:c6:a6:62:d1:b7:
f3:38:a6:06:c4:12:88:f8:6c:fa:be:f0:99:b4:10:
c8:4a:77:71:d2:cc:2a:00:8f:62:6b:62:cf:6e:6c:
f1:06:d1:b0:8d:65:4d:3f:92:8d:b2:bd:76:99:96:
5a:c8:a5:5a:a3:0f:9d:40:b4:8d:70:e3:bb:59:23:
cf:43:17:25:a9:e7:be:2b:f5:b2:da:92:7f:bb:a6:
bb:13:5d:2b:81:8c:58:5d:f2:93:62:f5:ff:28:2c:
c4:96:8f:45:f0:3b:64:db:5b:f1:9d:ff:2c:36:75:
8e:80:39:c5:a6:f3:2f:4c:de:21:de:fa:28:00:bb:
08:22:90:81:0e:f6:7c:bc:b6:12:39:c2:99:18:1a:
ed:59:8d:b0:70:85:6d:51:81:2f:c5:4b:8a:17:5b:
2f:85:0c:8e:64:1b:1e:54:73:08:78:e7:79:ef:1b:
bd:e6:d4:b7:f9:be:f3:c3:03:17:70:1c:6c:11:96:
cc:1b:8b:54:c4:56:1d:c7:cb:ef:c7:30:c6:53:e3:
be:0f:61:02:bf:fd:e4:2f:86:b7:b6:ab:90:7e:27:
25:44:7a:c5:de:ff:ae:c9:a6:05:20:30:c1:ec:58:
72:f6:66:cc:82:cb:fc:74:af:fb:e6:ca:e5:22:2f:
cd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:00:E5:6F:19:90:FB:4F:90:F8:C2:69:B9:B1:BB:95:3C:FB:96:67
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/kQDlbxmQ-0-Q-MJpubG7lTz7lmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.224.0/24
77.74.226.0/23
109.105.200.0/21
Signature Algorithm: sha256WithRSAEncryption
67:9b:87:a3:c2:97:e5:d2:b1:42:64:bc:84:b2:a5:96:8d:1c:
7e:91:68:f0:1e:58:86:df:5c:4c:bf:6c:17:76:7b:95:db:42:
45:25:ef:c0:c9:42:3b:1f:1d:5c:aa:63:c8:55:fd:4f:d2:1c:
9b:cf:07:d8:e1:e2:f7:cc:1e:29:d7:83:f6:b1:a2:8f:cd:92:
48:b0:de:f3:61:3d:bf:ac:e1:21:89:71:03:9a:e9:cf:92:42:
ca:cb:37:d1:28:10:93:db:a1:da:e9:19:67:de:9e:83:65:c3:
9f:61:50:1e:0e:fa:03:87:db:02:68:f7:b2:ec:da:f1:c7:e3:
8d:2d:f8:e2:4f:76:ca:bc:c2:89:a5:ae:57:74:cb:97:7b:43:
e3:d4:c9:9d:91:fb:40:2b:4c:c3:a8:de:73:20:55:52:b1:55:
b6:4b:2a:55:09:e0:d7:7e:57:aa:2f:94:78:9e:4d:eb:9b:a5:
18:19:4b:50:6b:9a:51:2b:c0:09:6d:e4:32:a4:06:4b:b7:61:
22:50:e8:fb:c4:69:78:cf:44:b2:46:80:bf:86:bf:e2:43:10:
7d:f1:f6:ac:ff:47:f4:92:41:02:da:84:26:a8:bb:9e:59:f8:
7e:79:c5:0b:fd:f7:66:78:8e:6b:bb:37:da:05:e8:c9:93:be:
db:8b:4c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org