Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/SChxLMeH_R3loZE5CdYwVHoLo4k.roa
File: SChxLMeH_R3loZE5CdYwVHoLo4k.roa (raw, json)
Hash identifier: H/vkEe9EpqwQgzROCmqSJPjAaaAi/8070YCnENHHEO0=
Subject key identifier: 48:28:71:2C:C7:87:FD:1D:E5:A1:91:39:09:D6:30:54:7A:0B:A3:89
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018CE9ADF4C32CFCBDA517EE396DD82DDFB0
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/SChxLMeH_R3loZE5CdYwVHoLo4k.roa
Signing time: Mon 08 Jan 2024 15:25:40 +0000
ROA not before: Mon 08 Jan 2024 15:25:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47159
IP address blocks: 79.172.229.0/24 maxlen: 24
87.229.86.0/23 maxlen: 23
87.229.88.0/22 maxlen: 22
79.172.244.0/22 maxlen: 22
84.21.12.0/23 maxlen: 23
87.229.20.0/23 maxlen: 23
87.229.60.0/22 maxlen: 22
95.138.197.0/24 maxlen: 24
95.138.199.0/24 maxlen: 24
95.138.198.0/24 maxlen: 24
213.181.192.0/22 maxlen: 22
213.181.208.0/23 maxlen: 23
213.181.213.0/24 maxlen: 24
213.181.214.0/23 maxlen: 23
87.229.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 15 Jan 2024 12:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e9:ad:f4:c3:2c:fc:bd:a5:17:ee:39:6d:d8:2d:df:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 8 15:25:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4828712cc787fd1de5a1913909d630547a0ba389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:f9:6c:06:8a:9b:d6:3b:1a:18:84:4f:a1:
85:3b:4e:0c:91:33:8e:26:92:8d:04:43:11:2d:f9:
c7:e0:25:86:2b:25:7a:42:de:a3:ea:ba:f1:25:87:
cd:6a:22:ba:4c:34:8f:5e:48:4f:64:c9:e6:74:96:
32:c7:9a:0a:4c:df:70:24:b8:da:ee:75:b1:36:31:
47:bd:7f:51:d5:2b:da:8a:e1:33:20:7f:b6:e3:45:
21:c7:6d:31:fa:42:21:42:ec:83:2a:96:01:51:85:
8a:ce:1e:07:ac:3e:1c:42:95:82:f5:b9:aa:28:6d:
ce:51:79:f0:76:b7:34:16:8a:fe:90:6a:ae:bf:e4:
a2:2e:6c:d8:7f:4e:aa:2b:21:82:82:9c:9b:c9:e9:
5d:02:61:64:0e:dd:cf:af:29:50:df:38:f5:2a:25:
ec:4c:75:ab:db:27:3e:8d:cf:ad:b7:86:c6:27:78:
48:4b:ae:3a:5c:e3:85:74:80:54:09:30:cd:db:95:
58:e1:47:4e:22:30:3f:41:ee:83:51:c4:9b:d7:33:
0a:bc:99:dd:44:82:f1:5b:b0:0b:35:6d:8d:a9:03:
3f:74:0a:55:c9:17:b8:c1:1c:35:ca:37:36:dd:0f:
fa:f2:7c:c5:4f:19:83:8d:62:8d:2c:62:3c:d7:3c:
2f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:28:71:2C:C7:87:FD:1D:E5:A1:91:39:09:D6:30:54:7A:0B:A3:89
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/SChxLMeH_R3loZE5CdYwVHoLo4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.229.0/24
79.172.244.0/22
84.21.12.0/23
87.229.20.0/23
87.229.60.0/22
87.229.86.0-87.229.91.255
87.229.122.0/23
95.138.197.0-95.138.199.255
213.181.192.0/22
213.181.208.0/23
213.181.213.0-213.181.215.255
Signature Algorithm: sha256WithRSAEncryption
07:2a:9c:1d:40:77:7d:20:38:e6:f8:9c:e0:27:0d:63:cb:d6:
f5:a7:12:32:de:11:1a:b7:f6:24:78:0f:66:55:98:12:3a:4f:
e8:90:c7:04:93:b1:1a:e4:bc:60:c1:b4:fa:9c:17:15:42:62:
7a:83:31:bf:18:a2:4e:31:b6:ab:ab:c9:da:96:c4:45:5a:3a:
6c:09:05:e4:97:84:8d:d5:b6:a7:98:8e:ec:cd:46:01:ff:40:
26:7f:7e:db:31:c5:56:ea:b2:c8:37:18:4b:0f:d8:e6:46:6d:
44:70:67:b2:bb:f3:5f:24:98:bb:55:1b:80:ec:e1:f1:15:32:
7b:01:af:fc:d0:99:be:cd:e8:50:56:d0:c4:5d:9b:28:85:d9:
c3:a8:b9:94:2b:df:5f:e2:bb:06:8e:7b:f7:53:f7:be:01:a6:
01:3f:25:41:ba:8d:76:6f:ec:3f:b1:fb:1b:7f:d0:c9:ba:1f:
f7:66:98:11:74:83:fd:51:a1:e0:7f:80:84:6f:69:22:fe:23:
c8:3d:c6:36:74:2c:a6:27:82:d4:3b:84:47:2b:6b:8e:3b:96:
03:73:62:6c:b5:25:90:d7:12:b8:a1:d0:09:e8:ed:6d:93:fc:
59:95:00:8c:e1:da:6f:79:0f:2c:c3:95:95:61:29:27:42:31:
39:4b:9d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:25 2024 by rpki-client on console-fra.rpki-client.org