Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/1-s8rZ5qJNIBHPvWcOfDrrT-UE64.roa
File: 1-s8rZ5qJNIBHPvWcOfDrrT-UE64.roa (raw, json)
Hash identifier: ZvdpgAJGLC3EJPBa6eguT8TQ+8K+DwvdMUhErfYIMpI=
Subject key identifier: FA:CF:2B:67:9A:89:34:80:47:3E:F5:9C:39:F0:EB:AD:3F:94:13:AE
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019151462E62D792B638B3142088CACB5AFC
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/1-s8rZ5qJNIBHPvWcOfDrrT-UE64.roa
Signing time: Wed 14 Aug 2024 14:23:59 +0000
ROA not before: Wed 14 Aug 2024 14:23:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 45.88.12.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
45.88.15.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
79.110.227.0/24 maxlen: 24
85.204.18.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.46.42.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
93.115.106.0/24 maxlen: 24
93.115.107.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
93.118.36.0/24 maxlen: 24
93.119.154.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
185.198.233.0/24 maxlen: 24
185.212.119.0/24 maxlen: 24
188.212.121.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
188.241.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 14:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:51:46:2e:62:d7:92:b6:38:b3:14:20:88:ca:cb:5a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 14 14:23:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=facf2b679a893480473ef59c39f0ebad3f9413ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:54:7a:dd:f9:80:36:4b:fb:bc:eb:cf:ea:
c1:2c:e5:57:3b:90:cd:0c:e3:44:1a:01:94:16:18:
d1:fc:0d:64:d4:55:7a:0f:c1:a6:e7:50:86:fe:31:
cc:c1:23:cc:08:df:62:ca:45:93:39:23:1a:d9:05:
18:9d:fb:e6:37:61:16:c1:b9:90:58:98:d7:47:10:
ae:f1:0f:2c:56:92:15:7c:d3:c5:9e:5a:90:64:05:
3d:80:e7:46:33:7a:0f:74:16:c0:6e:3c:20:81:c9:
c3:ed:af:f3:a3:25:f0:ed:da:c7:5b:c2:e6:e9:96:
66:40:7e:e6:ab:e1:20:a2:22:93:08:59:99:15:97:
1c:50:e3:b2:e5:7f:d3:f0:82:73:08:e4:0c:14:52:
71:34:b5:27:a4:b4:9e:10:36:75:d3:a7:e1:ff:74:
0b:3f:39:1c:9a:87:96:0f:61:31:3e:36:38:62:9c:
2a:7b:02:11:2b:21:19:23:e0:28:b1:dc:ac:87:a1:
b7:ea:b9:1c:e1:8d:ca:49:18:48:25:8e:d2:62:2e:
aa:27:59:83:b6:2f:86:52:1b:8e:ec:60:d9:e8:1b:
38:04:45:1f:50:8c:81:a4:53:ef:ae:43:cc:ea:04:
fd:53:15:a7:82:72:90:70:8e:5e:82:7d:e3:f3:0f:
5c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CF:2B:67:9A:89:34:80:47:3E:F5:9C:39:F0:EB:AD:3F:94:13:AE
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/1-s8rZ5qJNIBHPvWcOfDrrT-UE64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
45.88.14.0/23
62.192.152.0/24
77.81.182.0/24
79.110.227.0/24
85.204.18.0/24
89.34.106.0/24
89.35.129.0/24
89.37.192.0/24
89.40.36.0/24
89.40.215.0/24
89.45.35.0/24
89.46.42.0/24
89.47.36.0/24
93.115.106.0/23
93.115.203.0/24
93.118.36.0/24
93.119.154.0/24
94.198.171.0/24
128.0.41.0/24
176.223.188.0/24
185.198.233.0/24
185.212.119.0/24
188.212.121.0/24
188.215.31.0/24
188.241.221.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d7:f5:72:c4:97:97:53:0c:fc:1f:4c:1b:7d:13:55:a7:b9:
79:f0:f8:91:6e:5a:0e:0a:c6:8b:74:7f:30:da:e8:23:35:44:
04:66:47:9d:08:0b:27:19:fa:ed:f2:37:7c:d1:50:fe:9f:93:
dc:84:bc:56:7b:b5:1f:33:4b:bb:c8:b3:21:ec:83:3c:3b:fa:
5f:08:66:f4:2a:81:7e:a1:de:06:3c:2f:3e:fb:d8:bb:7e:4a:
41:f8:6d:a5:b3:02:a1:cd:31:de:3c:e5:9e:7c:ad:0a:52:f8:
6e:ea:84:62:36:7e:a8:a2:fd:c6:ae:6f:61:cc:8c:03:14:e7:
1d:ed:d8:6a:cd:8a:c1:29:2e:97:4e:be:61:1a:2b:26:21:47:
ae:c1:be:c5:80:43:1c:fd:08:51:9e:40:57:87:c8:0e:a7:ad:
99:be:91:46:a9:6d:dd:7f:d8:3e:a9:93:c9:b5:eb:0c:4b:d2:
2c:d9:62:7c:ad:48:35:83:a7:e2:2d:c4:c3:76:26:57:76:f4:
8b:b2:21:f4:48:d8:79:66:cd:e5:55:63:c5:80:24:6b:f5:5d:
2d:ed:ed:2c:ad:ce:68:33:7e:17:78:5f:f1:63:70:f5:f2:d7:
87:6e:72:dd:1a:10:87:97:b8:9a:37:b6:b6:d3:b4:b4:72:e6:
87:d4:e7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 19:31:58 2024 by rpki-client on console-ams.rpki-client.org