Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7N80sK7PG9lPoLO-i6ResAnKgdI.roa
File: 7N80sK7PG9lPoLO-i6ResAnKgdI.roa (raw, json)
Hash identifier: GBMNSdYgEb0xdzFARZjjFtFm+WQnPcHfjfMX3eqxwrE=
Subject key identifier: EC:DF:34:B0:AE:CF:1B:D9:4F:A0:B3:BE:8B:A4:5E:B0:09:CA:81:D2
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192DF46555A389F0777B297C9A2A2E089A2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7N80sK7PG9lPoLO-i6ResAnKgdI.roa
Signing time: Wed 30 Oct 2024 21:13:01 +0000
ROA not before: Wed 30 Oct 2024 21:13:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.57.242.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
103.245.228.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 09:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:df:46:55:5a:38:9f:07:77:b2:97:c9:a2:a2:e0:89:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 30 21:13:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecdf34b0aecf1bd94fa0b3be8ba45eb009ca81d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8e:77:4a:95:36:1c:c6:92:74:5f:9a:cb:47:
52:58:0a:e0:29:c6:bc:a4:37:d0:47:6c:b6:7d:22:
85:0f:c3:7e:37:12:60:03:5f:6b:f2:70:26:1f:8a:
87:68:5c:7c:b7:92:30:28:54:36:42:b9:2b:5a:97:
20:a4:03:05:4b:84:00:db:91:74:31:47:eb:87:b4:
de:cc:ac:9c:58:c1:5b:67:b4:b8:9c:01:2a:d7:4f:
70:37:9b:07:49:f9:9d:59:83:86:12:41:3a:ea:11:
a7:80:df:fe:7c:d9:bd:c0:8d:d7:6f:eb:df:2b:18:
3c:d4:eb:11:08:27:29:20:2a:65:44:f3:99:79:ee:
9b:0c:29:2d:76:ae:89:08:81:ba:4c:87:bf:af:b7:
32:cf:11:11:45:4e:38:f7:c1:8a:59:84:c0:50:2c:
a5:bd:2c:8c:02:13:f4:c7:b8:85:fe:cb:d4:9d:2d:
ba:36:0b:6f:07:1b:c0:59:b3:db:9e:1f:dd:e6:32:
b1:19:86:2e:15:6d:c8:03:94:14:da:7e:62:c9:93:
32:26:dc:50:36:59:c6:6d:71:63:ad:cf:c7:b3:1a:
f9:55:d4:f9:f6:60:6e:4e:bd:e3:cb:07:ca:ec:90:
1f:43:be:10:a0:8c:6c:36:f1:9f:74:12:30:98:c9:
08:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DF:34:B0:AE:CF:1B:D9:4F:A0:B3:BE:8B:A4:5E:B0:09:CA:81:D2
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7N80sK7PG9lPoLO-i6ResAnKgdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.242.0/24
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
103.245.228.0/24
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5c:a0:0d:66:be:77:0b:08:fc:98:c7:59:92:30:f2:d1:a7:
58:24:f1:98:df:e1:48:75:07:6c:65:d1:2a:2b:49:8f:ab:7c:
c8:8b:d2:91:3c:9f:a8:98:ae:d7:7f:64:92:a1:1f:21:34:81:
39:27:74:92:1b:a8:41:eb:0c:df:6a:b2:f4:35:43:d7:e7:95:
f8:f2:38:55:60:79:61:2c:12:1a:62:c6:fa:42:57:4f:ab:9c:
12:69:a0:48:a0:49:f4:ba:09:a9:6f:11:7b:c0:0d:06:2a:b3:
1b:00:08:6a:c0:95:c8:26:ba:82:cb:06:fd:1a:f8:93:ab:b7:
34:06:90:4d:fc:0b:79:33:49:7b:6e:79:8c:8e:5e:39:f9:72:
8b:76:35:1b:ad:24:3d:02:be:f8:ec:ea:61:e2:f0:5e:b9:ca:
06:ba:10:59:7a:40:33:9b:aa:31:f1:c1:93:54:01:42:a0:b1:
1e:7f:cf:f4:ff:52:9c:b3:08:ae:ea:4c:d3:44:91:b1:51:3b:
57:ed:9e:4f:ea:8e:22:14:c3:2e:38:e5:22:72:38:59:c3:30:
c5:7a:05:9c:fb:fe:8a:e6:61:29:f1:61:b5:b6:f1:f5:61:dc:
bf:1c:8c:48:c2:cc:94:cd:2f:7b:b5:2e:d4:c5:6d:ff:66:db:
10:c4:e3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 10:47:12 2024 by rpki-client on console-fra.rpki-client.org