Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/72FbktXkXntxt6UGB-M4AfmqG3E.roa
File: 72FbktXkXntxt6UGB-M4AfmqG3E.roa (raw, json)
Hash identifier: qNHWV1nQbACVGTI5nlsbqgahYKy5KVcn6JP7n8IJ8Cg=
Subject key identifier: EF:61:5B:92:D5:E4:5E:7B:71:B7:A5:06:07:E3:38:01:F9:AA:1B:71
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01890CA4DB2AFD73F3D3FAFDAC26C34886F6
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/72FbktXkXntxt6UGB-M4AfmqG3E.roa
Signing time: Fri 30 Jun 2023 14:11:17 +0000
ROA not before: Fri 30 Jun 2023 14:11:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 95.164.60.0/22 maxlen: 24
95.164.84.0/22 maxlen: 24
94.131.2.0/24 maxlen: 24
94.131.3.0/24 maxlen: 24
94.131.8.0/21 maxlen: 24
94.131.96.0/24 maxlen: 24
94.131.98.0/24 maxlen: 24
94.131.97.0/24 maxlen: 24
94.131.99.0/24 maxlen: 24
94.131.103.0/24 maxlen: 24
94.131.102.0/24 maxlen: 24
94.131.101.0/24 maxlen: 24
94.131.100.0/24 maxlen: 24
94.131.105.0/24 maxlen: 24
94.131.104.0/24 maxlen: 24
94.131.106.0/24 maxlen: 24
94.131.110.0/24 maxlen: 24
94.131.109.0/24 maxlen: 24
94.131.108.0/24 maxlen: 24
94.131.107.0/24 maxlen: 24
94.131.112.0/24 maxlen: 24
94.131.111.0/24 maxlen: 24
94.131.113.0/24 maxlen: 24
94.131.116.0/24 maxlen: 24
94.131.115.0/24 maxlen: 24
94.131.114.0/24 maxlen: 24
94.131.118.0/24 maxlen: 24
94.131.117.0/24 maxlen: 24
94.131.119.0/24 maxlen: 24
95.164.8.0/22 maxlen: 24
95.164.16.0/22 maxlen: 24
95.164.23.0/24 maxlen: 24
95.164.22.0/24 maxlen: 24
95.164.21.0/24 maxlen: 24
95.164.32.0/21 maxlen: 24
95.164.44.0/22 maxlen: 24
95.164.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 11:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0c:a4:db:2a:fd:73:f3:d3:fa:fd:ac:26:c3:48:86:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jun 30 14:11:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef615b92d5e45e7b71b7a50607e33801f9aa1b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c4:50:c9:65:aa:c3:b0:a2:86:d8:a5:f8:fd:
04:fd:73:b3:49:d1:d5:06:63:5e:c2:dd:8b:d5:99:
b8:6d:2e:2e:0d:d2:fc:45:42:a1:b0:78:e9:f4:85:
7c:2a:e5:85:35:93:35:77:77:b9:0b:eb:a5:96:03:
69:d0:63:5b:45:99:3a:96:23:95:83:54:4f:82:6e:
aa:8b:3a:24:92:88:1a:9b:2a:c9:ee:68:14:86:66:
f2:0d:50:3c:78:da:6d:e1:dc:5c:55:b8:e5:9c:06:
c6:fd:6a:9b:9e:f2:c5:d6:c5:ae:57:34:38:3b:4b:
7a:59:8d:03:81:28:cc:cb:e1:24:84:cd:c1:a7:40:
2e:58:65:61:b4:81:04:4f:a9:f7:ef:23:23:e7:9c:
55:8c:41:6b:fa:1b:95:3c:0a:c6:99:cf:0e:c6:0c:
28:89:f0:19:b2:26:77:14:84:80:48:09:7f:8b:91:
4d:9d:41:10:c2:d7:5a:1c:14:43:a1:84:57:b2:37:
c6:18:14:ee:3e:e1:0e:f1:e8:64:b3:83:12:fa:29:
32:78:d0:87:40:58:e8:3f:25:37:40:90:7c:f9:ec:
e1:5a:b1:ed:67:c8:b7:ed:46:7e:4f:1d:4c:54:b9:
22:2a:0f:47:ec:3c:41:88:48:84:f7:d1:6c:fe:12:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:61:5B:92:D5:E4:5E:7B:71:B7:A5:06:07:E3:38:01:F9:AA:1B:71
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/72FbktXkXntxt6UGB-M4AfmqG3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.2.0/23
94.131.8.0/21
94.131.96.0-94.131.119.255
95.164.8.0/22
95.164.16.0/22
95.164.21.0-95.164.23.255
95.164.32.0/21
95.164.44.0/22
95.164.51.0/24
95.164.60.0/22
95.164.84.0/22
Signature Algorithm: sha256WithRSAEncryption
23:05:0d:4c:07:4c:66:7c:a9:97:7e:44:20:4b:5e:26:93:9e:
5d:8c:93:75:a4:25:7b:53:02:f6:c2:ba:5a:ef:3b:d5:ce:d4:
d8:fc:12:40:68:0b:62:25:47:e4:47:2e:d0:2d:d7:f1:08:85:
f5:eb:09:2e:77:bd:1e:21:94:a6:52:aa:4d:93:74:7f:7f:4e:
f2:ee:2b:04:f3:fd:f8:70:df:89:64:8a:a7:4f:6d:fd:42:f4:
da:57:df:48:e4:7b:eb:cb:52:65:66:31:3c:8d:31:f1:a6:81:
da:58:8e:7f:20:d2:6e:fc:d5:0f:5f:fd:91:3a:5c:4c:c0:dd:
93:0a:2c:80:d6:7e:72:16:a4:33:d3:f1:65:92:fa:7a:43:6e:
93:7a:b8:5c:f1:b4:7b:91:b7:14:3e:1c:35:c9:fd:a2:b3:b9:
92:c4:d1:52:f8:46:91:9a:03:2c:08:bb:c3:8f:9e:48:55:e9:
0c:0f:17:cc:b9:6f:b0:4b:05:ed:9f:6b:d0:a6:e0:11:b8:f1:
1f:b4:43:55:f4:ea:b8:c4:b9:6f:26:8e:e3:8b:93:ca:07:f6:
da:c4:3c:82:a3:e7:05:c0:50:19:ee:44:b3:cf:61:91:71:9d:
c4:9d:8d:13:5e:2a:a5:32:53:82:36:91:71:23:12:01:a9:75:
e6:35:8a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org