Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/24Mo3d-F94YlRazn85OuJiK3pz4.roa
File: 24Mo3d-F94YlRazn85OuJiK3pz4.roa (raw, json)
Hash identifier: 45OhDgM38sCUiOTa83ADhxn97VqhQRuJEsjwtselptY=
Subject key identifier: DB:83:28:DD:DF:85:F7:86:25:45:AC:E7:F3:93:AE:26:22:B7:A7:3E
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DF53504759C70B010074E903B63906C51
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/24Mo3d-F94YlRazn85OuJiK3pz4.roa
Signing time: Thu 29 Feb 2024 14:11:48 +0000
ROA not before: Thu 29 Feb 2024 14:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 37.77.147.0/24 maxlen: 24
37.140.221.0/24 maxlen: 24
45.90.197.0/24 maxlen: 24
62.233.44.0/24 maxlen: 24
91.132.226.0/24 maxlen: 24
193.109.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 09:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:35:04:75:9c:70:b0:10:07:4e:90:3b:63:90:6c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 29 14:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db8328dddf85f7862545ace7f393ae2622b7a73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c5:20:91:78:c8:6f:05:df:1d:bc:ed:93:ea:
f7:b5:c1:f0:07:46:be:9c:ce:e9:5b:dc:39:46:ea:
c0:59:d7:96:92:f5:87:2f:19:5a:14:27:6f:53:c5:
de:a4:dd:7c:93:6b:13:43:29:47:e1:fb:d6:b6:7c:
ae:24:5c:20:66:42:19:78:19:03:a8:11:87:99:22:
c3:07:f7:75:81:c0:da:fc:68:2b:32:1b:d6:66:62:
b3:c0:70:04:45:37:c8:75:22:29:b3:c6:71:b0:29:
2a:5d:b5:c6:6d:0c:c7:6e:4d:cd:dc:9d:84:0c:1d:
03:be:c7:3f:9d:ec:9f:7b:e1:a5:1d:ba:02:d5:8a:
c6:96:b1:5d:48:bc:08:4e:16:f7:49:69:09:11:09:
da:25:e3:0e:5c:35:f6:30:d7:9c:ca:44:e6:22:2c:
94:2d:46:47:24:d4:63:5a:be:de:20:89:34:7c:84:
fb:9e:a5:d8:f2:fb:50:1d:7d:a7:2c:df:ed:9b:ae:
7e:75:00:aa:1b:d2:cf:8d:22:32:92:04:c2:fd:90:
b3:42:40:c6:5c:a0:0a:0a:6e:28:9f:20:de:02:fc:
04:97:75:e9:c2:80:07:59:99:97:bd:d0:00:d1:78:
15:e6:26:c0:62:a8:01:c7:f9:55:c3:0d:d2:56:53:
08:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:83:28:DD:DF:85:F7:86:25:45:AC:E7:F3:93:AE:26:22:B7:A7:3E
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/24Mo3d-F94YlRazn85OuJiK3pz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.147.0/24
37.140.221.0/24
45.90.197.0/24
62.233.44.0/24
91.132.226.0/24
193.109.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:91:59:44:ff:f1:56:65:24:d3:5c:eb:cb:f9:e7:c6:25:e4:
11:9b:76:ea:c4:10:51:8d:b8:b4:ab:e9:06:f3:ac:8c:1c:c4:
7c:7c:e7:b2:fc:39:20:1a:61:c9:98:d9:e3:0b:6c:34:00:4f:
e8:85:f7:78:ee:35:8d:1d:a6:0b:82:73:35:31:32:46:37:ed:
48:71:30:bf:2f:99:53:ce:5f:e5:f8:94:7b:47:1b:4b:96:19:
07:e9:c9:33:2d:c0:21:4a:cd:b5:a1:85:78:09:36:42:18:36:
d3:47:e5:19:f8:a8:6b:c7:92:f4:ba:f8:33:57:68:d6:2d:b1:
08:12:6b:28:1e:07:d0:7e:f9:d2:19:80:25:1c:5c:37:de:d7:
37:12:8c:2a:9e:75:11:b6:2c:a3:f2:99:9b:4b:06:47:f1:e9:
8b:11:70:ba:dd:e6:d0:44:ab:0f:66:75:97:cf:1b:5c:76:2a:
bb:66:8a:75:87:82:d8:60:e5:f3:c6:4a:c5:ae:54:b2:d2:3f:
9e:20:15:2d:b0:72:72:8f:cd:f9:a9:90:b3:80:27:da:00:fb:
ce:5c:dc:96:8b:11:18:74:07:fd:d7:7c:43:45:ab:8a:a4:d1:
c4:a7:6f:3d:d3:9b:69:e0:de:d7:21:8e:9f:50:40:7f:72:45:
fa:74:83:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org