Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/7sOISzbK-tcphcdOwohk2js1-5o.roa
File: 7sOISzbK-tcphcdOwohk2js1-5o.roa (raw, json)
Hash identifier: pXTx5xm1ZmlyGVw/BEjBCLfINeFuDhY0hGzkODp+hdk=
Subject key identifier: EE:C3:88:4B:36:CA:FA:D7:29:85:C7:4E:C2:88:64:DA:3B:35:FB:9A
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018E2B98AE32A33E178CC5E4DC27788609D5
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/7sOISzbK-tcphcdOwohk2js1-5o.roa
Signing time: Mon 11 Mar 2024 03:40:10 +0000
ROA not before: Mon 11 Mar 2024 03:40:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205209
IP address blocks: 80.74.96.0/24 maxlen: 24
80.74.97.0/24 maxlen: 24
80.74.99.0/24 maxlen: 24
80.74.123.0/24 maxlen: 24
92.61.224.0/24 maxlen: 24
92.61.225.0/24 maxlen: 24
92.61.226.0/24 maxlen: 24
92.61.230.0/24 maxlen: 24
92.61.231.0/24 maxlen: 24
94.188.136.0/24 maxlen: 24
94.188.138.0/24 maxlen: 24
94.188.140.0/24 maxlen: 24
94.188.142.0/24 maxlen: 24
94.188.161.0/24 maxlen: 24
94.188.162.0/24 maxlen: 24
94.188.165.0/24 maxlen: 24
94.188.166.0/24 maxlen: 24
94.188.167.0/24 maxlen: 24
94.188.169.0/24 maxlen: 24
94.188.171.0/24 maxlen: 24
94.188.175.0/24 maxlen: 24
94.188.178.0/24 maxlen: 24
94.188.179.0/24 maxlen: 24
94.188.186.0/23 maxlen: 23
94.188.188.0/23 maxlen: 23
94.188.191.0/24 maxlen: 24
94.188.196.0/24 maxlen: 24
94.188.197.0/24 maxlen: 24
94.188.200.0/24 maxlen: 24
94.188.242.0/24 maxlen: 24
94.188.243.0/24 maxlen: 24
2a02:23b8:2::/52 maxlen: 52
2a02:23b8:1a00::/56 maxlen: 56
Validation: Failed, certificate revoked on Thu 28 Mar 2024 08:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2b:98:ae:32:a3:3e:17:8c:c5:e4:dc:27:78:86:09:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Mar 11 03:40:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eec3884b36cafad72985c74ec28864da3b35fb9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c1:cb:66:ea:20:df:17:8e:b7:cf:ee:51:9c:
2e:a5:62:3e:47:be:19:2f:ab:70:53:7b:d0:c0:3e:
1b:d6:d9:b4:fc:72:4f:af:e2:df:90:d9:75:b3:d1:
84:ee:cf:d8:1b:cc:2e:3d:97:d5:83:4a:3f:ae:31:
5a:17:f7:7f:1b:1a:57:93:51:57:e8:48:2b:91:a2:
fe:90:6b:48:04:36:9a:52:bd:6d:ad:9d:f7:45:c3:
86:0b:a5:e8:68:d7:de:0d:01:cc:16:78:ed:92:27:
1d:58:0e:99:f3:a3:6a:d1:c8:46:04:e8:ac:aa:b4:
5b:5f:6a:0b:0d:9a:1e:ee:9c:74:68:5a:57:49:f6:
e5:0c:c2:06:bb:58:39:0e:05:e6:25:2d:fc:c3:74:
7f:d6:14:91:3f:1e:bb:be:6b:00:1d:3b:54:87:c2:
b1:34:fc:15:c6:1e:da:1b:ad:91:3f:bc:21:13:71:
56:39:43:ca:ad:23:f3:8d:f5:c8:f8:40:6e:54:1f:
5a:e6:fd:19:e0:d0:42:35:b0:95:1b:83:67:d7:5a:
04:54:74:d8:ec:e2:5a:8e:1a:2e:a1:0f:76:a9:f2:
5e:ac:4f:b0:1d:e7:91:5c:76:82:0c:d0:93:71:8b:
f5:49:d7:5f:b3:48:a1:9f:e2:3f:3c:c5:86:b1:23:
0b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C3:88:4B:36:CA:FA:D7:29:85:C7:4E:C2:88:64:DA:3B:35:FB:9A
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/7sOISzbK-tcphcdOwohk2js1-5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/23
80.74.99.0/24
80.74.123.0/24
92.61.224.0-92.61.226.255
92.61.230.0/23
94.188.136.0/24
94.188.138.0/24
94.188.140.0/24
94.188.142.0/24
94.188.161.0-94.188.162.255
94.188.165.0-94.188.167.255
94.188.169.0/24
94.188.171.0/24
94.188.175.0/24
94.188.178.0/23
94.188.186.0-94.188.189.255
94.188.191.0/24
94.188.196.0/23
94.188.200.0/24
94.188.242.0/23
IPv6:
2a02:23b8:2::/52
2a02:23b8:1a00::/56
Signature Algorithm: sha256WithRSAEncryption
1b:f4:06:61:f3:14:41:68:90:91:8a:c9:bc:ae:9b:30:2f:1a:
e1:57:5d:28:38:5d:bd:23:66:04:ef:68:0c:f6:15:9f:09:c3:
bc:e6:de:02:c1:47:d8:8c:95:8e:86:a6:2d:70:99:c2:c5:f1:
ce:a4:03:63:f2:c1:ef:56:e9:0f:18:38:d4:18:31:d7:a1:f6:
72:68:50:62:70:7b:ab:af:fd:65:40:6e:28:28:79:ac:e1:92:
c3:3c:df:c9:dc:1f:7a:d3:2d:c3:02:5e:2c:bf:31:5f:05:24:
d0:e4:01:88:45:72:58:a8:e7:e5:23:a8:a1:db:c7:10:44:c8:
d7:dc:44:33:35:55:ed:d2:d3:13:46:38:70:a4:a5:f2:f1:07:
cf:3f:89:90:f0:78:b9:c6:29:eb:62:19:71:da:0f:b1:b7:74:
83:8e:7d:db:ae:27:b8:67:19:07:be:2d:81:91:e0:71:bd:cf:
4b:d6:a6:36:b6:1d:dd:b5:84:80:cb:78:24:87:80:6d:03:68:
8c:8a:1d:4e:d1:97:5c:2a:64:53:55:95:01:d0:1d:2e:c9:9e:
e7:0e:57:6c:27:a2:dc:f6:fc:65:0d:e0:ef:7d:d3:4b:97:35:
b3:79:5a:48:d6:2c:2a:7b:4a:f5:e3:82:88:ff:5e:d0:8f:e2:
5e:2c:68:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 13:23:07 2024 by rpki-client on console-fra.rpki-client.org