Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/faAxBY7q9cyvqSAHLhqBJpx5thk.roa
File: faAxBY7q9cyvqSAHLhqBJpx5thk.roa (raw, json)
Hash identifier: lrk6mlxTC/zdyysA9pw2wG5IMxucV1UcWnDel1PXcFg=
Subject key identifier: 7D:A0:31:05:8E:EA:F5:CC:AF:A9:20:07:2E:1A:81:26:9C:79:B6:19
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 018766747A10EE369FEE7E90D3C66584EAC6
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/faAxBY7q9cyvqSAHLhqBJpx5thk.roa
Signing time: Sun 09 Apr 2023 14:38:42 +0000
ROA not before: Sun 09 Apr 2023 14:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.3.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.5.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 10:19:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:66:74:7a:10:ee:36:9f:ee:7e:90:d3:c6:65:84:ea:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Apr 9 14:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7da031058eeaf5ccafa920072e1a81269c79b619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:70:27:41:82:09:d3:80:86:06:05:db:b7:
36:01:e1:91:94:95:a7:3b:79:36:6d:f3:d5:13:a2:
27:7d:6e:94:43:0e:0e:32:b5:ea:ac:28:22:9c:58:
a8:69:8b:70:71:24:14:85:b6:1d:aa:29:f3:c2:66:
1f:51:7e:5a:a5:b3:00:ad:9a:bd:f8:0b:b5:14:95:
56:21:6d:cf:77:89:e9:e5:ae:fa:e9:c3:81:33:97:
28:8b:a8:f3:52:cf:e1:69:4c:f5:75:1c:a4:1c:6c:
72:53:af:72:eb:ec:3e:db:2a:84:5f:20:a1:11:bc:
b3:86:b4:c1:f7:b4:38:9a:0b:9c:76:e2:bb:c2:56:
15:d9:39:26:03:28:bc:97:a4:7a:3e:12:58:3b:1d:
8f:fe:60:6e:6a:bf:8d:d8:37:31:31:fb:d5:5f:83:
01:7d:e7:44:40:a5:3e:23:3b:f2:74:1b:59:dd:32:
6e:a6:93:87:6d:8e:18:77:85:8b:27:9d:76:eb:24:
aa:67:80:27:66:2d:94:d8:81:d8:be:db:7a:6f:2a:
0c:84:bc:bc:0e:bb:e4:2e:72:68:e5:a5:8d:58:23:
d4:7f:d2:d3:67:1a:34:cc:c5:07:3b:1e:27:ca:a7:
94:16:c8:72:7d:9a:6f:e6:58:2c:12:83:f3:04:34:
bb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A0:31:05:8E:EA:F5:CC:AF:A9:20:07:2E:1A:81:26:9C:79:B6:19
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/faAxBY7q9cyvqSAHLhqBJpx5thk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0-188.124.16.255
188.124.18.0-188.124.31.255
Signature Algorithm: sha256WithRSAEncryption
77:72:57:0a:eb:e4:d2:d9:14:61:b2:6f:43:10:f4:e3:88:72:
da:05:94:70:81:c4:5b:de:55:c3:3c:2b:fc:d7:c3:1b:1a:be:
50:9d:c3:8f:f6:8f:7f:7f:f6:87:b1:f7:47:6e:95:3f:f0:62:
70:98:d4:bd:d2:5b:d5:f2:ef:f2:d0:86:fb:41:54:cf:4a:c6:
71:84:77:d8:75:98:ce:fb:76:50:26:b5:79:2e:9d:e4:1f:1f:
6f:1e:07:51:fc:c1:7e:88:76:65:50:21:ad:a6:20:f6:0e:fc:
1a:40:e7:f7:ef:88:34:91:5b:df:09:23:1c:0a:8a:a1:4e:6b:
e9:c7:aa:32:69:db:5f:7c:83:3c:86:75:3c:3f:dc:43:5a:86:
ce:df:1b:8c:93:16:12:87:b8:da:fc:30:5e:02:08:31:3f:03:
ca:5f:be:96:89:05:6e:98:a9:a2:c3:d2:85:57:a2:78:8e:71:
90:ed:e6:02:b3:7f:08:52:2a:ff:47:8c:11:fc:72:0a:4b:87:
27:0d:96:dd:9d:1f:9a:a2:a1:19:d2:30:99:b7:eb:43:c7:8a:
f2:6c:37:18:d0:f9:62:bf:e3:2c:84:ec:8e:52:b7:d6:89:b3:
31:e6:9e:39:dd:23:48:b1:f1:95:95:dc:df:5d:82:50:26:9f:
94:89:3b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:02 2024 by rpki-client on console-ams.rpki-client.org