Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Rzmyk8Q7KGz5ttFKE5dwTepD7Ms.roa
File: Rzmyk8Q7KGz5ttFKE5dwTepD7Ms.roa (raw, json)
Hash identifier: W+Hnw1EJGBAx+JOkeyTABDGeQKNbWjg4FgycKdU0s6w=
Subject key identifier: 47:39:B2:93:C4:3B:28:6C:F9:B6:D1:4A:13:97:70:4D:EA:43:EC:CB
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018D4951E45A6D6DAAB6890ACAA396D70BEC
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Rzmyk8Q7KGz5ttFKE5dwTepD7Ms.roa
Signing time: Sat 27 Jan 2024 05:08:39 +0000
ROA not before: Sat 27 Jan 2024 05:08:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 37.49.145.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.147.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
109.203.161.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.133.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 09:53:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:49:51:e4:5a:6d:6d:aa:b6:89:0a:ca:a3:96:d7:0b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jan 27 05:08:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4739b293c43b286cf9b6d14a1397704dea43eccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c3:d4:c6:7e:79:bc:56:7c:eb:ae:f5:6d:3c:
b0:f7:a1:6a:d5:a7:a8:fd:e8:1e:4b:b6:d6:c4:9d:
eb:92:92:72:a7:b9:a2:2b:c8:1a:26:d4:29:34:c6:
46:16:10:9c:2a:2a:68:61:41:df:6f:8b:6c:f2:33:
a1:fb:11:d5:c5:ef:17:fb:28:55:6c:ab:e4:0f:af:
2f:df:29:55:11:f6:be:04:d2:15:a6:ce:e1:74:a8:
39:e5:0d:2f:31:71:22:27:c6:90:d7:49:c8:70:1d:
2b:bd:81:b2:cd:fb:24:c7:ed:f4:11:70:c6:0b:45:
38:26:04:65:53:b6:77:aa:11:73:b7:58:23:9a:d1:
89:90:f9:db:c6:61:6d:a7:d9:06:97:99:03:f9:96:
f8:55:52:fa:de:10:1c:0b:9c:3e:75:b6:d1:ed:71:
ba:55:78:68:fc:ca:5b:74:b2:38:de:7c:be:a4:f7:
02:bc:82:df:26:76:87:74:3b:a4:60:55:96:5f:69:
50:75:29:14:24:db:7a:19:0b:fc:1b:74:25:9c:1e:
30:b0:3c:b8:01:52:6a:a7:32:57:6e:48:a5:ff:0b:
b4:ca:c1:a0:33:06:b3:2c:e2:cd:68:b0:ca:4f:bd:
f1:a8:0b:7f:68:d0:1e:0f:ff:1b:73:f8:7a:70:f9:
bc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:39:B2:93:C4:3B:28:6C:F9:B6:D1:4A:13:97:70:4D:EA:43:EC:CB
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Rzmyk8Q7KGz5ttFKE5dwTepD7Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.145.0-37.49.147.255
37.49.151.0/24
94.74.147.0/24
94.74.168.0/24
94.74.173.0/24
109.203.161.0/24
109.203.164.0/24
176.46.129.0-176.46.130.255
176.46.133.0-176.46.135.255
Signature Algorithm: sha256WithRSAEncryption
16:4b:65:0b:5a:b1:06:c6:65:11:b1:8f:70:39:ca:48:dd:22:
f1:a3:5e:b5:8b:77:92:64:af:b5:16:53:15:ed:e3:f5:c9:ea:
81:ab:90:d3:6f:7b:0e:e8:62:25:d1:10:b0:e2:7b:38:9f:18:
62:20:d1:8d:1d:4c:22:5d:38:eb:c8:1e:71:dd:33:0f:7e:28:
da:2d:99:cd:3f:44:e9:d3:9b:4f:e1:be:13:9c:06:4e:42:65:
3a:94:e8:77:21:e6:25:49:25:d2:ba:a8:8f:68:ff:14:5e:35:
87:f1:6b:a5:a0:34:74:7a:53:3c:cf:1a:ae:57:fb:a8:26:c0:
a9:fa:dc:e2:d4:80:d8:6c:8e:03:92:c8:3c:0c:4e:e4:66:b3:
cd:25:37:7e:63:3e:8a:02:b8:ad:e3:6d:dc:55:0f:bd:d1:75:
c2:55:a9:04:5f:ac:87:2e:5c:3f:4b:0e:e2:ac:3f:ad:82:16:
15:9d:62:45:df:8c:e1:ea:6a:a8:42:bc:c9:db:a2:84:80:9c:
37:ff:59:0a:eb:25:86:e9:9d:1c:4e:c5:25:ac:87:d4:f0:02:
86:11:82:a4:0b:2e:fa:3a:19:2e:86:28:d5:18:8a:9b:af:b9:
d7:9d:d5:dc:1b:d0:e1:5c:64:87:76:e0:ac:05:97:3d:cf:69:
b6:4d:15:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:46 2025 by rpki-client