Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6xZP26YhgM91IHesizyEadTcnHU.roa
File: 6xZP26YhgM91IHesizyEadTcnHU.roa (raw, json)
Hash identifier: aXIHOPW+lgp+eTwRgUgiQq6fk/7IJDKIkisn1B4epus=
Subject key identifier: EB:16:4F:DB:A6:21:80:CF:75:20:77:AC:8B:3C:84:69:D4:DC:9C:75
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01894E69EB7C95AA83B93F631B367F565184
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6xZP26YhgM91IHesizyEadTcnHU.roa
Signing time: Thu 13 Jul 2023 08:41:51 +0000
ROA not before: Thu 13 Jul 2023 08:41:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 89.47.55.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 08:12:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:69:eb:7c:95:aa:83:b9:3f:63:1b:36:7f:56:51:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 13 08:41:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb164fdba62180cf752077ac8b3c8469d4dc9c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:af:f9:e5:e7:0e:21:7a:14:74:97:ec:c1:69:
4c:9a:80:87:0b:1f:48:9e:4e:b9:79:8d:28:04:b0:
7b:91:96:85:9b:b4:d1:fb:3f:8b:89:f8:65:f9:08:
3b:cf:0d:36:3e:ce:a8:18:79:d5:2c:b4:6b:3e:55:
67:67:e1:71:75:a5:12:d4:d4:2a:a5:ed:f0:8d:49:
de:1e:9a:2e:c9:0f:7b:b6:66:c1:60:60:b3:b2:0e:
a4:8d:8e:27:64:f6:f8:be:eb:d9:3a:13:fa:a9:46:
a4:cd:a2:51:04:bb:c5:36:14:88:60:57:94:87:c7:
c4:9e:e7:95:76:9e:94:8d:fe:38:1c:83:ce:91:ca:
b3:2e:80:9c:1e:04:9f:aa:35:d6:6c:28:f1:09:e0:
3d:2f:43:1e:8e:6c:ba:a9:46:db:39:b1:9a:bc:5d:
c5:77:c7:80:9f:0c:07:4f:ca:d4:4f:60:f6:0f:64:
63:57:99:f0:11:86:f8:d0:85:52:46:4d:db:57:54:
d3:46:b0:1c:7c:d2:1a:6f:42:ca:32:8d:b3:1c:cd:
03:76:a5:2a:c8:65:66:7b:68:1f:4d:5f:33:72:cd:
31:1a:ff:54:a2:16:3e:c7:ea:e7:d3:b1:f7:ae:dd:
35:52:7e:37:d2:11:2f:9f:b1:83:63:32:cc:5a:2f:
35:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:16:4F:DB:A6:21:80:CF:75:20:77:AC:8B:3C:84:69:D4:DC:9C:75
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6xZP26YhgM91IHesizyEadTcnHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.13.0-45.88.15.255
77.81.65.0/24
86.107.100.0/24
89.34.106.0/24
89.35.130.0/23
89.45.162.0/24
89.47.36.0/24
89.47.55.0/24
92.114.32.0/24
93.90.74.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:76:1f:2f:07:1a:99:fa:7a:6f:7f:04:9f:e5:17:3b:53:09:
2b:50:2e:8f:76:ca:18:8d:4d:57:b8:e7:6f:01:c8:71:d5:fe:
9c:81:d4:c6:03:a5:d3:40:70:34:88:6f:71:80:f4:5c:82:25:
c0:6e:71:d7:7c:8e:92:f1:f6:43:d7:d8:af:34:8c:36:ae:d9:
23:28:40:b8:db:86:97:16:8a:2b:7f:cf:e3:ae:b7:c6:40:3d:
3d:19:54:f1:93:9b:d1:34:d3:c4:13:05:71:59:bd:7a:91:4f:
ae:bb:62:88:09:8d:6d:b4:fa:37:0e:4f:5a:36:72:8a:be:a7:
d7:ae:28:76:0f:59:ee:5f:10:bf:eb:4a:ed:f8:0d:9a:a5:8a:
c7:9b:d6:0c:98:9b:6b:8e:cf:e9:4a:c7:8b:0f:37:2a:bf:0d:
59:51:aa:a6:fd:7c:2f:61:bf:b5:7a:99:ca:45:88:4a:5d:c4:
4c:20:0f:16:be:a2:52:5a:cc:dc:d2:13:b3:4d:3a:90:a9:d9:
ee:37:23:31:bf:8b:7c:23:0b:9b:ae:26:7c:0e:09:b0:f8:38:
34:5d:01:0d:e9:2f:07:4f:9e:4c:8e:5e:4a:be:f7:4f:b0:98:
67:43:d8:00:e4:9e:55:60:bc:5b:42:4b:0c:15:fd:13:10:e4:
b0:4d:81:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org