Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/_fIGtFXptXchRoqh2hSX3mz1eSM.roa
File: _fIGtFXptXchRoqh2hSX3mz1eSM.roa (raw, json)
Hash identifier: GPF8mDQ6Mnr2MxhR26KcQtpUOITYrcVzTbusfzqLRgM=
Subject key identifier: FD:F2:06:B4:55:E9:B5:77:21:46:8A:A1:DA:14:97:DE:6C:F5:79:23
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018B0F7D7CEDBE8736EF50E80076242C4E53
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/_fIGtFXptXchRoqh2hSX3mz1eSM.roa
Signing time: Sun 08 Oct 2023 13:32:44 +0000
ROA not before: Sun 08 Oct 2023 13:32:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 217.146.219.0/24 maxlen: 24
217.146.223.0/24 maxlen: 24
185.82.166.0/23 maxlen: 23
79.132.204.0/24 maxlen: 24
79.132.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0f:7d:7c:ed:be:87:36:ef:50:e8:00:76:24:2c:4e:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Oct 8 13:32:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdf206b455e9b57721468aa1da1497de6cf57923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a5:90:d8:8b:67:96:c1:44:7a:7c:67:b4:f0:
72:e8:50:d0:45:8a:f5:b6:de:a7:99:fb:c8:5d:13:
da:4a:0f:44:c3:ee:ba:c7:40:fd:13:91:75:24:92:
c0:23:47:ef:48:7c:3d:09:25:69:69:14:1a:ee:bc:
c7:00:d2:49:3c:72:8b:72:0a:51:0d:d6:54:7d:92:
16:a6:4f:d5:0b:9e:d8:44:17:6c:50:15:e1:80:25:
57:bd:81:cc:5a:1a:0a:df:93:19:3d:3d:94:07:7a:
2b:1e:dd:be:6e:6d:35:3f:b5:2a:96:6f:86:d4:e4:
e1:14:2b:ee:8c:00:df:84:b1:82:bd:d3:00:b6:87:
dd:0d:d0:28:6b:24:95:8a:99:a7:d4:91:dd:9f:76:
3d:53:1c:2c:b5:dc:ae:90:19:6e:d1:de:1d:48:7c:
87:23:56:f4:12:c2:f4:c6:79:e3:79:b4:04:5a:fe:
fc:58:c9:8f:92:dd:14:fb:03:f1:1c:8c:45:ea:99:
f9:64:7e:6a:0a:dc:10:77:a6:f8:cb:ce:41:8e:48:
62:33:f5:c5:2c:89:60:35:9b:9c:d4:6b:23:c1:5b:
ae:f6:17:dc:05:66:a7:e2:d2:74:77:75:15:6a:83:
94:b5:cb:c5:52:de:a5:e0:59:2d:06:7f:83:f3:1c:
6e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F2:06:B4:55:E9:B5:77:21:46:8A:A1:DA:14:97:DE:6C:F5:79:23
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/_fIGtFXptXchRoqh2hSX3mz1eSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.204.0/24
79.132.209.0/24
185.82.166.0/23
217.146.219.0/24
217.146.223.0/24
Signature Algorithm: sha256WithRSAEncryption
83:85:3e:98:34:36:18:41:73:ab:f2:fe:63:d6:b8:24:3e:90:
25:aa:91:27:e1:3d:ae:c6:29:99:19:11:14:d0:f5:43:cf:10:
d4:9b:bb:59:99:40:de:51:5b:86:4f:f0:e0:ee:8b:96:74:83:
f4:18:95:36:67:b3:4a:a2:dc:91:96:2d:27:77:79:7b:53:06:
c8:f3:28:35:c7:14:00:e0:63:7c:fd:e4:4d:57:58:65:c7:9b:
74:88:05:6a:7c:97:de:e8:e2:23:30:13:d0:17:2c:ad:49:62:
ce:80:64:ec:41:bb:24:88:12:13:6e:d3:b6:ab:ee:49:2f:a3:
12:13:15:07:d5:5f:05:0a:1a:b7:17:31:b4:5d:e2:21:c2:86:
f4:38:73:b6:7e:c6:ff:ae:a5:2b:84:b4:f8:75:95:5a:9b:59:
c1:03:2e:a5:50:9d:87:b1:e8:73:7c:fe:24:7f:be:fd:dc:b3:
b6:67:83:f4:ab:be:94:f6:a8:db:eb:30:ab:aa:dc:7a:49:d1:
b0:c1:d8:97:b7:a1:a4:72:7a:69:7a:13:e8:00:03:fa:49:8e:
d5:fa:85:97:3d:80:8d:08:ef:20:33:14:f2:84:65:b6:70:ff:
f8:b6:1c:1d:d3:7a:d4:37:a4:9a:7d:12:a4:28:ff:de:73:33:
a6:81:27:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org