Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/279gVdG3jFt8pYymkkk0YtYPqnA.roa
File: 279gVdG3jFt8pYymkkk0YtYPqnA.roa (raw, json)
Hash identifier: aQNA5t/bmGdV8Bwhcj6d/NJ+Kl5shhR/iL3tSPiPRu0=
Subject key identifier: DB:BF:60:55:D1:B7:8C:5B:7C:A5:8C:A6:92:49:34:62:D6:0F:AA:70
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01896EDEDD52693A029AF924C4532CC920B5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/279gVdG3jFt8pYymkkk0YtYPqnA.roa
Signing time: Wed 19 Jul 2023 15:57:26 +0000
ROA not before: Wed 19 Jul 2023 15:57:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 86.107.50.0/24 maxlen: 24
2.57.241.0/24 maxlen: 24
37.153.158.0/24 maxlen: 24
176.126.174.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Aug 2023 08:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:de:dd:52:69:3a:02:9a:f9:24:c4:53:2c:c9:20:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 19 15:57:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbbf6055d1b78c5b7ca58ca692493462d60faa70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c2:8a:76:41:de:45:09:ca:6f:e2:1d:9d:71:
6e:7d:86:3e:ab:ba:72:08:27:eb:9c:7a:fb:d0:ec:
2a:33:62:04:50:d4:ae:bc:48:de:d2:86:66:80:c9:
2e:50:92:2f:97:8f:0a:dd:8a:13:c4:36:41:22:71:
1c:a9:93:8c:8d:f1:70:56:ab:4b:32:c6:15:e2:56:
d4:d1:04:81:b0:af:76:d3:3b:82:a2:60:d9:a5:e7:
ff:57:fc:ad:b4:a7:53:f2:97:06:a4:d5:e0:af:48:
2b:d3:e0:72:66:7d:4d:43:b0:61:20:77:5c:68:d2:
23:50:53:af:be:0a:3e:93:d0:04:a6:dd:77:08:e7:
6e:b3:e2:86:69:86:6e:a3:93:eb:42:ad:f6:73:dd:
2c:a5:7a:71:c9:a2:bc:59:4e:2f:e1:5b:5e:fd:85:
21:6b:10:04:0d:3f:73:84:eb:8e:34:b1:19:92:8a:
9d:d5:13:16:ff:5b:c5:48:b5:36:0f:d6:b4:61:de:
bd:0e:2d:95:1e:6f:c8:e4:13:c6:9c:50:85:ec:01:
4e:2e:63:54:de:51:45:7f:7b:d0:85:e0:3a:b1:88:
7d:65:de:97:1e:b4:4f:0c:4c:00:c7:95:2f:b8:00:
9d:e2:a7:e6:1a:66:6c:20:3b:3d:5b:4d:2c:8e:fc:
65:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BF:60:55:D1:B7:8C:5B:7C:A5:8C:A6:92:49:34:62:D6:0F:AA:70
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/279gVdG3jFt8pYymkkk0YtYPqnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
37.153.158.0/24
45.88.12.0/24
86.107.50.0/24
93.115.203.0/24
94.177.106.0/24
176.126.174.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c9:9a:b5:70:00:02:a1:bc:b1:1e:40:2d:a0:de:6b:eb:9a:
ad:c4:78:80:ba:fa:b4:d4:78:11:01:37:c4:49:8a:17:ce:fd:
4e:e1:61:fd:5e:28:fb:e8:04:f5:93:ce:3b:ed:06:1f:bc:68:
a4:9f:60:2d:56:09:cc:9e:f9:f6:fe:4f:73:38:97:b0:c5:aa:
82:23:cc:ec:3c:b0:fa:37:37:e5:47:f1:04:40:d8:4d:10:bf:
ef:02:82:ce:04:1d:60:61:25:68:43:78:cb:78:6b:00:43:93:
af:d8:db:06:cc:b7:84:54:49:5a:44:b1:c9:09:59:90:68:78:
d1:b2:0b:bd:16:df:fa:d4:69:ff:0b:37:06:36:1d:88:f6:09:
a1:64:7e:53:ce:30:a6:a5:1f:11:37:11:a6:6d:5f:5c:39:14:
85:37:51:99:ea:6d:7a:7d:0a:cf:a2:0e:15:6b:30:cf:9b:ea:
d9:35:5c:8b:52:c1:23:94:41:5f:98:5f:d7:92:5b:d8:53:40:
1e:f0:51:b4:63:57:0e:dc:27:98:fd:a6:70:48:88:6c:6a:a0:
8d:5c:93:7f:ca:7d:53:2e:92:90:ba:c4:e0:9c:14:b9:f3:17:
c2:8b:8b:4e:1d:9d:1f:8a:46:c1:99:cd:1b:10:2e:6f:17:ff:
d1:8c:e0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org