Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0ViTyaKIyGM74sbqm_-S-mvESlU.roa
File: 0ViTyaKIyGM74sbqm_-S-mvESlU.roa (raw, json)
Hash identifier: lYl0g1Q8caC1C2P6HuFR29woXE0XCTzRe9f0fwp11jQ=
Subject key identifier: D1:58:93:C9:A2:88:C8:63:3B:E2:C6:EA:9B:FF:92:FA:6B:C4:4A:55
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01877E1471DCD4D4568B884049854BED4328
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0ViTyaKIyGM74sbqm_-S-mvESlU.roa
Signing time: Fri 14 Apr 2023 04:44:41 +0000
ROA not before: Fri 14 Apr 2023 04:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
185.112.249.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Apr 2023 12:36:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7e:14:71:dc:d4:d4:56:8b:88:40:49:85:4b:ed:43:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 14 04:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d15893c9a288c8633be2c6ea9bff92fa6bc44a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2c:ec:17:16:53:8b:c7:e3:ce:97:2d:90:ec:
e8:22:fb:55:57:99:ee:9a:c8:43:25:c4:1d:bb:83:
a8:b8:c2:dd:c0:df:61:d2:ba:8e:4e:e4:93:b6:4c:
9f:87:79:33:a6:0c:8d:30:4f:a1:a4:04:06:3b:39:
9f:ef:cb:ec:7d:b9:51:c7:51:e2:46:23:8f:98:64:
a2:b6:2a:96:f5:58:45:7a:b1:32:23:5e:4c:bb:f8:
7f:bb:05:f4:b9:b8:7a:9a:7b:1b:a4:c4:fb:1e:3d:
49:3b:52:e9:64:f9:87:13:cc:c4:a1:8c:0e:ee:ae:
49:e5:b6:d5:21:91:7b:95:71:62:10:39:67:29:11:
37:55:94:d6:27:1e:16:44:be:28:8e:7c:4c:3e:e1:
4c:9c:d2:91:c6:6e:38:44:e7:50:39:b6:b0:0f:bd:
ff:e7:6b:35:18:ea:ed:67:bd:f6:b1:f8:c9:34:65:
16:5e:ba:89:41:ef:7f:5f:61:3f:d7:a6:05:cb:73:
4d:cf:29:22:ec:b1:6c:66:01:5d:c8:72:3f:f3:42:
ba:97:9d:cc:91:0b:ac:08:74:80:d8:a2:81:a5:f4:
3e:44:a7:ca:78:be:6b:d5:c5:bb:a8:be:49:cb:42:
56:fb:3d:76:2c:ef:c4:d6:d4:0c:01:17:e2:da:13:
a0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:58:93:C9:A2:88:C8:63:3B:E2:C6:EA:9B:FF:92:FA:6B:C4:4A:55
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0ViTyaKIyGM74sbqm_-S-mvESlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
86.107.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.119.0/24
89.35.129.0-89.35.131.255
89.40.70.0/24
89.45.35.0/24
89.47.55.0/24
94.198.171.0/24
176.223.188.0/24
185.112.249.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
57:81:b3:ad:ed:8b:a8:bc:ef:3b:55:ef:df:97:38:48:18:d1:
1a:f0:9f:5e:8e:06:12:8c:6d:81:78:77:51:5a:25:c0:35:21:
dc:2a:ae:4e:b7:aa:b0:e2:83:d8:95:43:d7:ff:27:0d:c9:28:
4e:c4:6d:c4:1c:69:b4:f2:ee:3e:70:41:a6:44:19:27:8e:7d:
22:0a:86:1c:18:ca:10:04:40:7d:5b:9a:4c:a4:f8:b5:bf:1c:
bb:32:32:e3:18:d4:48:cb:fd:4b:15:78:64:2f:e9:f6:0b:62:
a0:29:f0:dd:97:f9:7c:a1:e4:d0:9c:d2:7f:ca:6f:ac:ed:67:
c4:b9:8a:fc:b3:70:6d:97:ce:da:7d:45:ad:a7:55:15:dd:28:
e1:ab:b6:c0:0c:32:d8:2b:01:4f:85:b2:01:6f:49:fe:55:6b:
10:8a:2d:47:41:0f:13:c3:88:28:2d:a0:a6:ec:e2:53:04:47:
4e:79:fa:0e:01:76:12:94:2f:e1:9d:4c:97:ba:6d:80:ba:b0:
81:79:3a:12:50:86:04:fb:40:4a:63:5d:7c:ad:a9:c3:19:1b:
2e:cc:92:2c:ab:87:1d:52:cd:66:2e:75:73:ce:2d:84:82:1f:
b2:09:f4:2f:9d:70:70:0a:ef:a6:d3:a4:20:b3:48:3a:54:f5:
56:12:50:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org