Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/zH7cJmJPg0qo-Tqxo6kQmZB_2Ag.roa
File: zH7cJmJPg0qo-Tqxo6kQmZB_2Ag.roa (raw, json)
Hash identifier: yy2erLhHHpgBGcTCNOVAEUU22BLxsparkvCxqaRnmHY=
Subject key identifier: CC:7E:DC:26:62:4F:83:4A:A8:F9:3A:B1:A3:A9:10:99:90:7F:D8:08
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018ACE756F83683E1AB2E417FEE03CC32A8F
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/zH7cJmJPg0qo-Tqxo6kQmZB_2Ag.roa
Signing time: Mon 25 Sep 2023 22:28:37 +0000
ROA not before: Mon 25 Sep 2023 22:28:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30738
IP address blocks: 195.211.53.0/24 maxlen: 24
109.248.5.0/24 maxlen: 24
188.130.182.0/24 maxlen: 24
2001:1468:8000::/36 maxlen: 36
2001:1468::/32 maxlen: 33
Validation: Failed, certificate revoked on Wed 27 Sep 2023 15:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ce:75:6f:83:68:3e:1a:b2:e4:17:fe:e0:3c:c3:2a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Sep 25 22:28:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc7edc26624f834aa8f93ab1a3a91099907fd808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:12:3b:58:27:aa:54:c9:d4:0b:f9:65:2d:c2:
9e:e6:9f:00:10:da:ea:62:cf:bc:e7:dd:ef:68:50:
04:a3:c6:e2:47:84:df:13:dd:51:f1:58:f0:36:c1:
2e:22:36:32:d5:71:57:94:c3:b2:e9:60:ec:9e:e5:
17:a0:85:bb:fa:35:a6:21:e9:fa:f4:ef:9e:89:82:
1d:9b:43:75:20:0c:a4:6c:e5:ba:eb:72:6d:36:ef:
3a:84:1a:b2:f3:68:56:12:a0:c3:09:99:b5:ea:ea:
ea:1c:d4:e3:4f:64:38:c6:bf:30:4f:b9:07:cc:44:
7c:10:94:67:7d:4d:d5:6e:38:44:e3:ab:c9:b9:ed:
8b:07:74:b5:f6:8c:7a:8a:76:62:a2:8c:e0:5f:d4:
50:5c:76:f9:65:0c:32:a9:4a:d5:a6:fa:c1:56:7c:
b0:71:75:2c:f9:f4:3b:68:ef:c8:e4:c2:55:80:61:
6d:90:11:91:65:7e:16:ae:46:78:68:e4:da:b8:f7:
b4:a0:42:b4:46:71:da:73:5c:f9:7b:f0:8a:79:93:
ea:89:19:14:98:02:65:6a:a7:20:9b:6c:47:17:9b:
6a:ea:7e:02:ce:3e:1e:d2:fe:91:35:f5:a6:7a:7d:
28:fd:bd:90:c4:f7:cb:e8:f1:9f:74:aa:2a:9b:ed:
18:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7E:DC:26:62:4F:83:4A:A8:F9:3A:B1:A3:A9:10:99:90:7F:D8:08
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/zH7cJmJPg0qo-Tqxo6kQmZB_2Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.5.0/24
188.130.182.0/24
195.211.53.0/24
IPv6:
2001:1468::/32
Signature Algorithm: sha256WithRSAEncryption
2c:e9:89:ff:62:7c:a3:ee:ae:f5:e4:7e:a4:ae:71:c4:13:3c:
f6:08:f2:04:bf:73:bb:5b:cc:cc:53:2a:0b:72:64:70:c5:d0:
c3:de:c3:1c:0f:1b:37:14:b8:0c:a4:4c:9e:47:c2:ff:a6:fb:
39:36:06:47:b2:8b:c3:9f:76:e6:c2:3b:38:6d:7c:8e:2f:c3:
11:c8:20:35:68:69:4d:ea:24:b2:09:57:05:2c:dd:a1:81:8f:
da:28:45:81:3d:e7:b5:30:ee:e1:b4:04:46:c6:98:a9:5e:d2:
50:db:96:b3:6d:ba:45:2c:e4:d5:5c:db:19:f7:d8:c8:14:2e:
fd:9b:40:f0:75:d3:ee:8e:48:8b:03:e3:6b:e5:f6:81:c1:e9:
9f:66:95:9f:10:28:ab:c4:54:2a:a5:fe:6f:69:4d:2f:7a:dc:
49:c5:3a:23:49:19:9f:d9:47:8c:d5:60:12:2c:e3:8b:2e:5f:
87:6f:3f:c5:ae:14:d9:43:2c:f8:cf:d9:6b:8c:61:a4:e1:b8:
91:d9:1f:b4:91:49:f6:20:02:cf:b2:74:cc:d7:47:ce:15:ae:
d1:ae:28:7a:2e:cd:7f:c9:4b:fb:90:1d:86:59:62:54:97:74:
2f:05:47:26:a0:53:29:43:8d:1f:8d:40:d2:cc:ba:3e:9a:f9:
c9:8f:8b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org