Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/m2aWPXo5kRDtit5ss1GdCE8ofEY.roa
File: m2aWPXo5kRDtit5ss1GdCE8ofEY.roa (raw, json)
Hash identifier: zQP5nCdqikuAQfeyCfR0gOzIs1y8+taQSyp1v7H9hPQ=
Subject key identifier: 9B:66:96:3D:7A:39:91:10:ED:8A:DE:6C:B3:51:9D:08:4F:28:7C:46
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01921F39679066AD0AF2C323A2B0E582667F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/m2aWPXo5kRDtit5ss1GdCE8ofEY.roa
Signing time: Mon 23 Sep 2024 14:11:48 +0000
ROA not before: Mon 23 Sep 2024 14:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28964
IP address blocks: 77.105.8.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
79.175.66.0/24 maxlen: 24
79.175.85.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
178.253.235.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.195.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
188.255.253.0/24 maxlen: 24
212.69.2.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 21:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:39:67:90:66:ad:0a:f2:c3:23:a2:b0:e5:82:66:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Sep 23 14:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b66963d7a399110ed8ade6cb3519d084f287c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:63:55:65:50:b0:14:ab:8c:e2:de:ef:65:
f8:ec:7e:da:69:58:aa:b1:07:1a:2e:52:8a:f9:b4:
45:45:f3:58:e7:6d:d3:31:97:0d:04:fe:69:93:e9:
e5:7b:59:65:3e:de:75:cf:7c:7e:fa:89:05:e6:86:
31:75:58:7d:47:5c:04:bb:fa:74:26:78:48:6c:50:
a4:67:b0:c7:d9:e0:a5:5e:22:a3:e8:df:2b:a9:1a:
43:98:91:c2:a1:b1:b8:1a:57:f1:b2:0e:b0:60:ea:
10:cf:81:83:85:a6:a0:e4:66:b0:f6:fb:6a:5e:8e:
e6:9a:1b:13:d0:eb:f0:68:1d:48:0a:63:7c:ff:13:
05:14:68:ee:bb:02:70:49:5f:bd:e2:4f:7f:23:96:
61:b5:3b:e3:e1:58:0e:d6:ef:34:4b:b0:4b:91:e9:
ce:08:e0:55:44:03:9d:db:0d:2d:f7:e4:d0:49:0e:
6c:98:5a:d1:49:59:47:3f:e9:72:aa:2b:5d:2c:11:
cf:b9:5b:18:64:d3:e6:a1:cb:2b:56:98:5e:d5:50:
20:2a:57:f5:4c:00:bb:a4:5b:9b:8d:d2:7c:e6:15:
a9:48:bd:68:76:7f:d9:1f:0f:3b:de:59:65:ac:0b:
e9:ba:28:f9:be:f1:5c:49:7f:2a:dd:94:51:06:92:
f4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:66:96:3D:7A:39:91:10:ED:8A:DE:6C:B3:51:9D:08:4F:28:7C:46
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/m2aWPXo5kRDtit5ss1GdCE8ofEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.8.0/24
77.105.39.0/24
79.175.66.0/24
79.175.85.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
178.219.2.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.235.0/24
178.253.238.0/24
178.253.245.0-178.253.246.255
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.2.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
04:6d:7b:78:04:ff:d3:f7:56:ff:9b:fe:c6:14:2a:f4:17:ef:
2c:cf:0e:ea:c6:fa:77:64:e2:10:69:4b:a1:79:a3:c6:12:f9:
aa:3f:fa:90:4e:40:c8:ee:1f:cf:00:43:38:21:3b:8f:a1:0f:
ef:44:85:e4:cf:fa:dc:c8:c2:ad:12:74:16:aa:81:05:8a:d6:
45:fe:87:f2:53:64:ae:e6:8a:b8:b2:2c:d3:c8:35:3d:3a:97:
31:70:2b:54:d6:70:a3:8b:3b:84:df:4a:c5:7c:6d:fa:98:f2:
98:f2:68:30:a2:43:98:ff:df:d7:58:0e:af:b0:35:38:2a:b2:
4c:56:83:2f:fb:a8:41:e8:92:34:eb:6b:95:25:8a:ff:49:9f:
e5:e7:35:56:e9:bc:b1:87:95:f9:a1:4a:22:24:8f:9a:af:b4:
20:de:f7:ff:5d:eb:73:22:8f:03:9b:4f:8f:4c:36:81:51:9c:
11:47:58:77:32:1f:0c:fd:db:6c:c1:7c:73:e8:81:8e:6b:0f:
9e:f4:e6:88:92:f9:7a:7a:40:c1:83:de:54:5f:40:29:57:d8:
ca:1b:87:bb:a0:0a:2b:7e:e0:b3:7c:a1:b3:7d:6b:ee:86:e6:
5c:65:1a:11:df:f3:60:24:f3:7a:b8:b3:26:9c:54:00:93:23:
c4:9c:b9:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 23:48:16 2024 by rpki-client on console-ams.rpki-client.org