Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/9lrRnKKr46V7zyPQ_fjNHvoprs8.roa
File: 9lrRnKKr46V7zyPQ_fjNHvoprs8.roa (raw, json)
Hash identifier: 8WHQZNllBTtc1SAdRLTl64wFycjZXVBYd7jJN0nucUg=
Subject key identifier: F6:5A:D1:9C:A2:AB:E3:A5:7B:CF:23:D0:FD:F8:CD:1E:FA:29:AE:CF
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F4E049F5F72A1572B51D13644AFCF02CA
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/9lrRnKKr46V7zyPQ_fjNHvoprs8.roa
Signing time: Mon 06 May 2024 13:07:56 +0000
ROA not before: Mon 06 May 2024 13:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 15:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:04:9f:5f:72:a1:57:2b:51:d1:36:44:af:cf:02:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 6 13:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f65ad19ca2abe3a57bcf23d0fdf8cd1efa29aecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b8:c6:c0:19:f6:cc:ba:e8:76:cf:69:03:f1:
0e:1e:1d:80:90:e4:80:da:5e:74:00:2f:5a:91:98:
d0:ff:a2:68:66:a4:58:9b:5e:95:4f:62:12:5b:b3:
be:34:6e:10:bf:d3:62:16:9f:4d:c9:86:a5:1d:c3:
10:ea:89:27:c4:cb:ec:37:3f:c1:64:13:5f:25:f7:
31:38:29:44:5b:1b:07:47:02:98:39:40:ec:1c:25:
9a:5d:cc:a8:72:35:67:84:30:d0:85:9f:0e:10:62:
0c:3f:c8:d2:a7:6a:e8:29:ea:cb:f9:5e:b9:e1:dc:
56:e2:98:48:ae:e7:52:86:29:4d:6d:55:dc:da:93:
0a:39:a7:5a:44:88:e0:fe:9d:6d:42:0b:79:b9:84:
77:eb:74:14:fe:0f:3c:98:1b:90:bb:5f:05:4b:78:
7d:27:52:ef:5b:17:bf:ac:9e:df:cc:43:54:6d:0d:
25:73:38:dd:6f:20:ff:7f:2b:33:f8:e7:e9:b6:78:
05:9a:de:b6:e2:f6:cf:71:2b:40:80:8c:a2:70:f4:
d2:9c:73:85:70:ca:5c:86:47:27:51:ad:f0:b8:ca:
f6:e7:d3:ea:7f:62:e4:66:d1:2f:64:e9:b7:a6:4e:
b3:9f:68:e3:45:0e:0b:2d:e4:b1:73:84:c3:f5:89:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5A:D1:9C:A2:AB:E3:A5:7B:CF:23:D0:FD:F8:CD:1E:FA:29:AE:CF
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/9lrRnKKr46V7zyPQ_fjNHvoprs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.22.0/24
87.229.48.0/24
87.229.50.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:12:b9:78:57:6b:d3:c2:29:15:42:65:ac:32:b2:68:04:03:
eb:a8:64:e0:fc:83:6b:86:7e:77:ec:92:ae:db:e0:06:0a:30:
e9:90:95:6b:ec:f4:ba:a4:92:f4:f1:01:60:86:45:5b:60:df:
60:a9:7d:de:19:d5:4b:8c:6c:72:db:6b:44:77:c4:f5:18:ba:
e3:cb:63:e0:6b:44:97:1f:46:32:72:52:5d:f2:ec:a1:a7:99:
67:bc:85:40:86:7d:1f:1c:5e:9a:a7:3d:87:ac:ed:5b:b3:84:
db:00:4b:fb:3c:02:56:bd:a7:18:2e:6a:fb:f8:28:aa:1d:88:
36:e8:27:6d:47:4b:9a:ee:e6:ec:50:e4:d6:c5:57:eb:2f:fe:
89:24:df:b7:82:28:54:e4:7a:ac:d2:bc:4b:d8:9f:d0:75:16:
67:18:d7:f0:ad:25:c4:e0:c0:00:22:09:53:2a:16:ba:2d:03:
ce:50:0f:6c:28:23:1d:2c:66:85:61:cb:92:60:3b:16:b1:0b:
8a:58:24:3c:5d:70:f4:4e:8a:38:44:02:e4:83:74:1e:c4:54:
3f:18:f9:2f:88:da:ff:28:60:7e:2f:48:d0:d9:53:40:b2:92:
01:a1:f5:9b:15:2c:8c:b0:e8:62:3f:21:e1:be:7a:b6:ef:38:
5e:5c:54:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 19:24:30 2024 by rpki-client on console-fra.rpki-client.org