Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/k73uhH4FLebCx6Mie_fuwc4ivnY.roa
File: k73uhH4FLebCx6Mie_fuwc4ivnY.roa (raw, json)
Hash identifier: E2w/ji3khIivIBP8fpAHYUj25PISvYACTZKsHzzIzhQ=
Subject key identifier: 93:BD:EE:84:7E:05:2D:E6:C2:C7:A3:22:7B:F7:EE:C1:CE:22:BE:76
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018DD160583053DBBCCA3AB17D3D12EED0BD
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/k73uhH4FLebCx6Mie_fuwc4ivnY.roa
Signing time: Thu 22 Feb 2024 15:12:48 +0000
ROA not before: Thu 22 Feb 2024 15:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29278
IP address blocks: 79.172.192.0/18 maxlen: 18
84.21.0.0/19 maxlen: 19
84.21.7.0/24 maxlen: 24
84.21.8.0/24 maxlen: 24
84.21.11.0/24 maxlen: 24
84.21.15.0/24 maxlen: 24
84.21.16.0/24 maxlen: 24
84.21.18.0/24 maxlen: 24
84.21.19.0/24 maxlen: 24
87.229.0.0/17 maxlen: 17
87.229.12.0/24 maxlen: 24
87.229.14.0/24 maxlen: 24
87.229.26.0/24 maxlen: 24
87.229.32.0/24 maxlen: 24
87.229.33.0/24 maxlen: 24
87.229.40.0/23 maxlen: 23
87.229.45.0/24 maxlen: 24
87.229.53.0/24 maxlen: 24
87.229.54.0/24 maxlen: 24
87.229.55.0/24 maxlen: 24
87.229.58.0/24 maxlen: 24
87.229.64.0/19 maxlen: 24
87.229.96.0/23 maxlen: 24
87.229.105.0/24 maxlen: 24
87.229.112.0/20 maxlen: 24
95.138.192.0/21 maxlen: 21
178.238.208.0/20 maxlen: 20
178.238.208.0/21 maxlen: 21
178.238.216.0/21 maxlen: 21
213.181.200.0/24 maxlen: 24
213.181.204.0/24 maxlen: 24
213.181.205.0/24 maxlen: 24
213.181.207.0/24 maxlen: 24
213.181.210.0/24 maxlen: 24
213.181.211.0/24 maxlen: 24
213.181.219.0/24 maxlen: 24
213.181.221.0/24 maxlen: 24
217.113.50.0/24 maxlen: 24
217.113.51.0/24 maxlen: 24
217.113.53.0/24 maxlen: 24
217.113.61.0/24 maxlen: 24
217.113.63.0/24 maxlen: 24
217.144.48.0/23 maxlen: 23
217.144.50.0/24 maxlen: 24
217.144.56.0/21 maxlen: 21
2a02:730::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 14:04:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d1:60:58:30:53:db:bc:ca:3a:b1:7d:3d:12:ee:d0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Feb 22 15:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93bdee847e052de6c2c7a3227bf7eec1ce22be76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e0:1e:a3:c7:0f:ca:48:9d:ee:55:7f:a3:9d:
57:17:ae:3e:d2:16:15:1d:4c:11:f0:04:21:7a:a7:
f0:53:65:92:d7:b8:bf:86:d1:79:af:d0:07:41:b6:
f8:e0:fe:eb:a6:24:b7:fb:f8:18:e5:1e:67:18:bc:
5b:fb:12:aa:a4:c7:d8:f6:70:a6:f2:66:ca:75:99:
d3:88:06:d9:21:14:66:b8:12:31:bb:85:82:4c:1f:
67:83:12:cc:7f:36:46:ba:91:e1:fe:45:f9:05:44:
5b:d4:79:e0:18:0d:9c:58:a7:80:ac:cc:e3:3e:b9:
18:86:dc:37:9d:a0:cf:2b:0f:27:b1:52:59:6d:d8:
46:0c:63:9c:ac:91:34:9e:15:1e:2c:60:22:93:ac:
c2:38:b2:31:8b:3b:53:8a:d5:6c:1d:fd:5e:54:4f:
13:1c:18:17:fa:90:77:f2:66:be:b3:90:7d:9d:69:
d7:b4:5c:d8:3f:e4:7d:0e:2f:82:af:74:5a:40:8b:
60:1d:b2:c3:f2:a5:87:c6:29:25:4f:a9:92:98:25:
37:c3:ee:38:47:3b:4c:84:a9:d8:f8:d3:54:47:30:
cb:35:ad:8e:ce:86:86:4d:7d:05:35:b4:11:a2:ae:
1e:0c:87:10:12:e1:5c:fd:f8:75:ba:59:f2:f8:40:
87:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BD:EE:84:7E:05:2D:E6:C2:C7:A3:22:7B:F7:EE:C1:CE:22:BE:76
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/k73uhH4FLebCx6Mie_fuwc4ivnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/18
84.21.0.0/19
87.229.0.0/17
95.138.192.0/21
178.238.208.0/20
213.181.200.0/24
213.181.204.0/23
213.181.207.0/24
213.181.210.0/23
213.181.219.0/24
213.181.221.0/24
217.113.50.0/23
217.113.53.0/24
217.113.61.0/24
217.113.63.0/24
217.144.48.0-217.144.50.255
217.144.56.0/21
IPv6:
2a02:730::/32
Signature Algorithm: sha256WithRSAEncryption
13:cf:dc:f7:53:5d:d6:2f:a2:28:e8:25:b3:2d:51:14:f1:f9:
e5:e5:13:0a:52:6d:ed:d5:9f:4a:0d:dd:b4:1d:3d:59:7b:ce:
e8:99:e1:c9:27:10:1e:38:3b:00:a2:83:63:cb:60:c4:53:b7:
c3:69:99:17:0c:6a:f9:e3:ff:e8:b5:81:6d:75:13:68:6c:1d:
d1:aa:2d:a5:8c:b3:5e:0c:fd:1c:e8:17:ca:a8:fe:e6:a1:70:
67:fd:1d:07:ff:d2:cb:23:ed:00:6e:d8:43:07:6f:00:55:2f:
c2:ce:0b:cd:3e:8f:26:d1:f9:ff:63:88:9b:d8:ab:43:9b:eb:
ac:a7:08:8a:6f:30:69:6b:46:d0:b9:05:6f:f6:1d:02:18:c0:
97:38:d1:a1:64:3f:e4:ff:20:1e:ed:af:58:00:ae:31:63:67:
9d:00:c2:3a:4d:78:e3:b4:e5:e9:45:ef:c9:e6:2b:a6:6f:b3:
3c:5c:0b:a7:5e:8f:66:65:c5:f8:1b:42:8f:be:d3:03:f7:5a:
bb:ad:01:e9:48:cd:2b:ee:19:63:46:e6:16:83:d7:5d:26:d9:
c8:33:49:0f:0d:c0:25:fb:98:44:b7:b6:fc:9b:82:20:65:fb:
29:a9:a5:5f:7e:c4:d6:ee:3c:75:25:56:7f:09:f4:61:a7:80:
10:39:2c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:21:03 2024 by rpki-client on console-ams.rpki-client.org