Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/opzdOstl7OGnpE40nqyn9CdX75Y.roa
File: opzdOstl7OGnpE40nqyn9CdX75Y.roa (raw, json)
Hash identifier: LZIo9ndoI8i79eydwBUez8Nga55h3P5A6ZZBy38weGQ=
Subject key identifier: A2:9C:DD:3A:CB:65:EC:E1:A7:A4:4E:34:9E:AC:A7:F4:27:57:EF:96
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 01856EF438281DDDD0CFEBD6D80D04B30639
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/opzdOstl7OGnpE40nqyn9CdX75Y.roa
Signing time: Sun 01 Jan 2023 20:09:36 +0000
ROA not before: Sun 01 Jan 2023 20:09:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.3.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.5.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.17.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 16:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:38:28:1d:dd:d0:cf:eb:d6:d8:0d:04:b3:06:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Jan 1 20:09:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a29cdd3acb65ece1a7a44e349eaca7f42757ef96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:22:5f:8b:bf:dc:36:8b:c5:ab:95:0c:3d:ab:
35:0e:b0:2e:9a:f6:4a:3a:94:ed:2a:6a:2d:c3:52:
55:5e:91:3e:a8:63:e6:76:3e:cd:52:fb:0a:04:f1:
fd:2a:7f:3c:19:c2:ed:dc:28:16:ed:2c:5c:6d:fc:
b5:2d:39:e3:47:66:ee:41:94:0e:4c:6a:e5:19:ae:
b9:79:f0:0f:9a:1a:f0:05:be:a5:32:fe:d4:b5:5c:
e3:f9:6c:cf:94:99:54:e4:bf:d6:80:de:7d:52:30:
d4:60:ff:f2:61:64:aa:2f:7d:dd:50:b2:4a:75:b4:
b9:da:bc:25:ad:b8:c9:75:1d:3d:78:ba:52:56:92:
a2:45:b5:cb:ab:95:d7:3b:b4:9d:17:61:7d:8b:fe:
d9:d0:78:37:1e:92:94:f9:68:ab:c1:5e:4a:85:04:
6a:ee:7f:46:b7:ce:f1:90:e3:85:6c:05:2f:43:a6:
f2:ba:64:74:e6:9a:38:82:c7:ca:fc:db:3e:f1:b8:
a0:79:28:3d:d1:61:58:27:be:03:6f:8e:bf:76:5a:
30:fb:1e:1d:34:df:ac:83:45:16:bd:63:de:fc:42:
61:4e:ac:36:b0:c7:55:93:ab:95:8d:c0:76:d7:57:
bd:b2:2e:1d:c4:ca:31:86:ad:93:56:ae:ce:a3:2b:
b5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9C:DD:3A:CB:65:EC:E1:A7:A4:4E:34:9E:AC:A7:F4:27:57:EF:96
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/opzdOstl7OGnpE40nqyn9CdX75Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0/19
Signature Algorithm: sha256WithRSAEncryption
05:eb:f8:a7:99:e4:fa:dc:8d:93:99:b4:b1:af:cd:09:f6:90:
04:e3:5e:8b:c2:39:3f:9a:93:7d:cb:20:db:b1:52:43:05:12:
22:d6:ad:71:aa:09:97:6e:b4:89:7f:75:f0:0c:8b:d1:de:53:
3b:aa:c0:f1:f9:62:7c:92:c8:8f:46:6a:e0:9d:8b:65:f8:de:
e1:36:26:05:e6:59:f8:90:5c:4e:72:45:26:52:48:27:ef:31:
3e:da:24:cd:0d:c9:c9:b4:4b:c7:f7:34:d7:bb:32:6e:c3:11:
f7:49:b5:17:f9:61:21:2c:e2:a3:70:25:ef:6d:f4:9f:78:94:
70:3b:90:06:dd:f5:88:2f:7f:47:9d:e3:e7:6b:22:b4:e1:9f:
0e:ff:4c:04:87:af:e8:83:e5:2a:d8:6e:11:58:a5:96:db:75:
17:58:c8:d7:af:67:e5:5d:72:bc:bb:d3:30:61:dc:5e:23:55:
da:91:75:4d:72:8b:14:74:76:e2:1d:27:c1:82:e3:71:34:f6:
c3:8e:e0:94:b4:29:83:c5:65:39:bd:56:7c:c1:f1:89:d7:d8:
82:d3:06:c3:06:62:c0:fa:3f:59:16:f4:f5:02:55:98:2c:9f:
4e:a6:5b:37:89:80:8b:09:45:63:ca:72:a5:a7:c4:bb:ea:23:
03:aa:6e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:02 2024 by rpki-client on console-ams.rpki-client.org