Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/6P2NH9VJIdePbQNYa7nKg6KGh5s.roa
File: 6P2NH9VJIdePbQNYa7nKg6KGh5s.roa (raw, json)
Hash identifier: NnAnuPrVM2KDthttZUXMUXCS6lv1TDKspXtmEy/34ao=
Subject key identifier: E8:FD:8D:1F:D5:49:21:D7:8F:6D:03:58:6B:B9:CA:83:A2:86:87:9B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018A4B52613FCD0F31B224C56D6F3F03B094
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/6P2NH9VJIdePbQNYa7nKg6KGh5s.roa
Signing time: Thu 31 Aug 2023 11:20:04 +0000
ROA not before: Thu 31 Aug 2023 11:20:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.121.35.0/24 maxlen: 24
109.121.34.0/24 maxlen: 24
109.121.43.0/24 maxlen: 24
188.255.229.0/24 maxlen: 24
212.69.0.0/24 maxlen: 24
79.175.66.0/24 maxlen: 24
77.105.8.0/24 maxlen: 24
185.47.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 06:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:52:61:3f:cd:0f:31:b2:24:c5:6d:6f:3f:03:b0:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 31 11:20:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8fd8d1fd54921d78f6d03586bb9ca83a286879b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:59:52:b7:c9:e9:ac:ef:c7:d0:de:56:46:
44:bf:6e:a8:20:e1:81:22:d1:ce:1b:84:9c:96:4f:
dd:28:df:8b:60:f6:20:a9:4d:bb:27:7a:ba:1b:55:
43:e9:cc:56:ac:c0:7f:0c:76:6c:35:fd:66:46:42:
ad:7d:ff:97:a9:df:cf:40:c9:17:89:f1:27:56:f3:
2b:fe:39:ac:4f:e0:e7:80:e2:83:22:4d:7d:3f:9a:
1f:58:54:c4:90:02:db:49:b9:77:92:1b:51:d1:7f:
22:3e:d2:41:30:49:a1:0a:81:2d:03:80:27:34:29:
05:76:83:1d:45:77:12:97:37:6c:f3:2f:65:74:a5:
bf:d4:b5:84:04:87:83:26:c2:b5:75:ea:81:1e:26:
23:a2:7e:f0:ee:f0:d7:e2:d6:57:88:68:e9:8d:a5:
d3:1f:55:20:2f:c1:86:92:42:22:43:c8:0e:d7:a2:
b4:3b:98:aa:f1:4c:d1:a8:64:e2:3e:f6:6c:d2:a4:
5f:fe:e7:52:61:e2:01:0d:3d:38:fd:f5:c4:de:26:
97:23:a7:f2:7e:66:e1:56:fc:ee:bf:05:e1:ee:c0:
4e:39:14:57:15:51:d6:93:f2:c7:0c:6f:3f:6e:ec:
cb:60:e2:d1:85:9e:59:4e:e9:20:51:e7:90:c5:4e:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FD:8D:1F:D5:49:21:D7:8F:6D:03:58:6B:B9:CA:83:A2:86:87:9B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/6P2NH9VJIdePbQNYa7nKg6KGh5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.8.0/24
79.175.66.0/24
109.121.34.0/23
109.121.43.0/24
185.47.91.0/24
188.255.229.0/24
212.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
16:4b:5b:e7:7d:91:d6:57:aa:62:e2:29:ed:16:a6:38:53:42:
20:aa:c0:6d:41:74:0e:d3:61:ce:fc:9a:6b:f0:49:b8:11:8e:
f3:04:29:f9:2c:14:27:05:ba:02:8f:10:08:8a:d7:e7:af:8e:
18:d3:9e:59:92:7d:0f:e6:50:72:2a:00:50:ad:28:1d:eb:f4:
49:cc:f8:e1:8a:39:6d:e2:e3:74:e1:ea:5b:1a:0d:df:4f:43:
90:a8:63:b3:d9:86:5c:d9:d6:ae:13:79:90:16:29:95:28:6d:
9b:7a:a1:d8:53:2d:bf:3d:95:e3:b7:cd:b6:de:48:92:83:40:
6c:cd:cf:16:81:1e:b1:c7:bd:af:3a:17:21:a2:b1:bc:1e:11:
f3:8d:ca:e4:89:d4:4a:b2:49:5f:dd:bf:75:e1:f9:3e:77:ff:
6c:31:63:d7:a4:1b:75:57:25:5a:12:4d:a2:58:2e:69:96:94:
f6:a9:a9:6e:33:d7:4f:2b:55:90:22:75:73:9a:9f:e9:b4:45:
5f:fc:98:94:ca:8f:79:53:d6:86:19:6d:32:6b:14:fd:b2:a4:
e2:22:e1:25:c8:ce:e3:73:ea:17:c6:88:f0:e8:76:1e:cc:73:
03:9e:5e:db:4b:75:0f:7e:17:82:44:10:42:01:ea:5b:fb:51:
f0:b8:c2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org