Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/6db264-73d4-43ac-a97e-590b1b2a4609/1/8XdOBX3RNSrSPwB4mjt1V_wSBdM.roa
File: 8XdOBX3RNSrSPwB4mjt1V_wSBdM.roa (raw, json)
Hash identifier: JEZU/fYpcbZBgAlROdDoZNHqcqDshR5QaKRkz87qvaI=
Subject key identifier: F1:77:4E:05:7D:D1:35:2A:D2:3F:00:78:9A:3B:75:57:FC:12:05:D3
Certificate issuer: /CN=6416bc721c740c10fc7b0d8b1b358a2d35f488b7
Certificate serial: 019006E56159C790EA7883E187671DC957E2
Authority key identifier: 64:16:BC:72:1C:74:0C:10:FC:7B:0D:8B:1B:35:8A:2D:35:F4:88:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBa8chx0DBD8ew2LGzWKLTX0iLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/6db264-73d4-43ac-a97e-590b1b2a4609/1/8XdOBX3RNSrSPwB4mjt1V_wSBdM.roa
Signing time: Tue 11 Jun 2024 10:43:34 +0000
ROA not before: Tue 11 Jun 2024 10:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43973
IP address blocks: 79.142.16.0/20 maxlen: 20
79.142.16.0/23 maxlen: 23
79.142.16.0/24 maxlen: 24
79.142.17.0/24 maxlen: 24
79.142.18.0/23 maxlen: 23
79.142.18.0/24 maxlen: 24
79.142.19.0/24 maxlen: 24
79.142.20.0/23 maxlen: 23
79.142.20.0/24 maxlen: 24
79.142.21.0/24 maxlen: 24
79.142.22.0/23 maxlen: 23
79.142.22.0/24 maxlen: 24
79.142.23.0/24 maxlen: 24
79.142.25.0/24 maxlen: 24
79.142.26.0/23 maxlen: 23
79.142.26.0/24 maxlen: 24
79.142.27.0/24 maxlen: 24
79.142.28.0/23 maxlen: 23
79.142.28.0/24 maxlen: 24
79.142.29.0/24 maxlen: 24
79.142.30.0/23 maxlen: 23
91.232.230.0/24 maxlen: 24
91.232.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 08:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:e5:61:59:c7:90:ea:78:83:e1:87:67:1d:c9:57:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6416bc721c740c10fc7b0d8b1b358a2d35f488b7
Validity
Not Before: Jun 11 10:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1774e057dd1352ad23f00789a3b7557fc1205d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4d:a5:13:b7:4e:3c:08:cc:3a:6b:e3:f1:cd:
1e:25:9f:c5:8a:dc:82:7e:be:83:25:4d:66:55:f3:
17:44:10:db:44:16:49:e9:8f:7d:9b:52:bf:d5:62:
62:5b:44:dc:1b:52:0d:c3:de:f8:61:ca:59:b7:38:
5d:2d:32:58:4e:44:95:86:cd:48:91:94:40:09:00:
38:6a:5e:25:29:3a:ef:3e:1f:d3:35:67:d2:be:c9:
c6:24:01:d9:28:b4:45:a1:fe:03:a7:82:a3:1e:ad:
61:70:e6:18:06:aa:7a:b0:5d:ac:97:04:fa:e6:93:
67:05:9a:63:1b:c9:52:bb:ea:b1:56:59:bd:e2:15:
62:b3:9b:96:6b:a3:26:b7:6d:74:46:89:2a:79:eb:
17:6c:72:ba:e5:f8:e3:1a:5b:91:71:3e:b0:e1:a7:
a6:02:c8:e9:34:00:0e:cc:28:98:9d:4e:e2:67:e3:
7c:b6:ad:e5:78:77:4a:02:61:f4:fa:b9:e7:0f:8a:
58:30:76:ba:5d:1b:4f:35:f3:db:e1:99:4d:98:06:
07:df:eb:ab:1b:0f:8c:45:d4:34:90:d1:a9:c9:24:
ab:c8:ac:30:d1:ed:63:de:4d:90:52:ba:4d:21:29:
a8:4d:3a:29:87:69:67:2f:93:02:ad:b7:71:1f:6d:
6f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:77:4E:05:7D:D1:35:2A:D2:3F:00:78:9A:3B:75:57:FC:12:05:D3
X509v3 Authority Key Identifier:
keyid:64:16:BC:72:1C:74:0C:10:FC:7B:0D:8B:1B:35:8A:2D:35:F4:88:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBa8chx0DBD8ew2LGzWKLTX0iLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/6db264-73d4-43ac-a97e-590b1b2a4609/1/8XdOBX3RNSrSPwB4mjt1V_wSBdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/6db264-73d4-43ac-a97e-590b1b2a4609/1/ZBa8chx0DBD8ew2LGzWKLTX0iLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.16.0/20
91.232.230.0/23
Signature Algorithm: sha256WithRSAEncryption
71:92:6f:c4:ca:bb:ee:a0:82:41:9a:8d:61:03:d9:57:13:6b:
6a:58:66:95:74:20:bd:bf:df:e9:47:96:c1:a1:a9:a8:ad:27:
8b:56:af:b0:2c:6d:8d:8f:0e:17:da:8d:83:e3:0c:e0:62:52:
90:6e:3a:a0:1f:32:fa:1e:5e:a2:0c:09:3c:92:78:18:c9:37:
fa:61:58:14:42:c1:b6:c4:5a:76:25:e6:bd:88:0b:26:02:70:
a9:ac:bc:27:6d:a4:98:6f:c8:9b:3d:48:b8:64:d8:75:a7:0b:
50:82:d8:7b:44:f7:80:53:73:96:72:20:67:5b:fb:8d:ff:17:
7b:58:ad:11:cc:41:d9:4c:cf:ef:ca:31:2e:44:a5:77:c0:8b:
1f:09:27:81:81:32:15:aa:30:a6:68:ee:e5:bc:96:ad:2f:a0:
80:8c:85:e7:e9:c0:c3:a4:a2:1f:44:84:bc:f6:a3:9e:5a:4e:
7b:e8:a3:d1:15:1c:33:a3:d0:07:46:3a:2a:2c:0a:0b:5a:5a:
5f:82:bd:12:2c:90:1e:6c:06:77:85:79:68:a0:3e:6c:89:13:
9f:b2:4c:76:96:0e:21:7f:3a:30:bc:8a:63:ad:6e:6c:b2:c5:
4a:80:22:7f:f6:72:9d:78:29:f6:96:ee:38:27:cd:68:c1:e9:
21:87:9a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:54 2025 by rpki-client