Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9goc0z7-IIqMPb3SzSGzif7_EkI.roa
File: 9goc0z7-IIqMPb3SzSGzif7_EkI.roa (raw, json)
Hash identifier: VjcQAW3BDOyjm21wdRBKwvEKdpp22FZownnm0O+uUBY=
Subject key identifier: F6:0A:1C:D3:3E:FE:20:8A:8C:3D:BD:D2:CD:21:B3:89:FE:FF:12:42
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192AED4D66849B27E03CB80D3EBDD758A43
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9goc0z7-IIqMPb3SzSGzif7_EkI.roa
Signing time: Mon 21 Oct 2024 11:27:16 +0000
ROA not before: Mon 21 Oct 2024 11:27:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.45.44.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 19:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:d4:d6:68:49:b2:7e:03:cb:80:d3:eb:dd:75:8a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 21 11:27:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f60a1cd33efe208a8c3dbdd2cd21b389feff1242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:af:94:26:17:35:e3:14:ef:6c:55:2a:a8:fb:
99:be:73:b4:f3:ee:e5:73:f0:67:9d:ea:e0:07:6a:
21:37:13:72:38:2d:4f:b2:ad:5e:2c:4a:93:7c:35:
6f:ac:47:30:96:50:3d:f4:93:08:b6:d3:c6:c3:e7:
24:03:21:70:fe:29:d3:b4:0c:b2:e9:ad:6b:19:50:
d3:9a:81:3c:82:02:38:c3:06:57:13:0c:5d:f7:cc:
f3:ed:ef:08:4d:1c:c3:a6:d2:ca:6a:df:96:f6:ef:
bf:9e:eb:c2:61:cf:ba:a4:b6:a8:e9:84:08:61:34:
59:3d:41:9a:e7:70:58:e2:f3:c2:10:99:3f:b2:6e:
96:3e:b4:d2:4d:c0:7a:af:7d:a8:7d:4f:fa:63:4d:
39:28:4b:5f:46:9b:3e:87:ce:75:3d:a2:46:00:9f:
1b:1e:d5:8e:ec:e8:70:84:91:52:55:76:53:a3:c9:
62:b1:91:38:e9:79:bf:cd:03:ac:88:a4:66:9f:f6:
1a:aa:94:7f:aa:09:7e:fb:ca:29:57:a2:ca:4a:58:
c0:76:51:65:5b:71:f1:94:67:01:21:b0:3b:16:86:
f8:dd:98:ce:88:d2:02:32:98:91:ed:51:41:3d:35:
a6:18:55:ef:4b:a5:59:19:53:b3:56:60:8b:d6:16:
00:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0A:1C:D3:3E:FE:20:8A:8C:3D:BD:D2:CD:21:B3:89:FE:FF:12:42
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9goc0z7-IIqMPb3SzSGzif7_EkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
89.45.44.0/24
93.114.183.0/24
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
94:61:1b:46:ad:8d:14:c7:49:61:8b:5b:a1:ba:8d:43:26:be:
d4:27:9c:5a:42:a2:71:ae:e8:6c:4e:87:d6:ca:eb:a6:92:01:
d5:26:45:b1:ed:a4:04:fd:e0:ed:b9:9e:3a:49:53:f7:b0:c7:
66:ed:4c:a7:d7:06:9d:3a:ac:f5:46:56:a0:7e:5d:36:5b:14:
11:63:d4:c2:b8:7b:85:48:6c:c4:35:7e:40:e6:75:10:4f:d5:
67:ec:dd:17:2f:18:2d:49:8d:78:b6:71:bc:0c:1b:07:59:c8:
cb:ac:c7:b6:36:ad:53:fb:b2:ce:e3:91:e5:36:51:3f:95:3c:
83:3a:08:fa:40:19:be:09:82:93:3e:fe:10:9c:08:c6:67:1f:
28:e8:fd:70:a0:5d:d3:49:7b:a0:e2:f5:4e:7a:56:f7:aa:7c:
ea:93:47:ee:58:0c:ca:5e:f2:72:fd:84:d4:49:b9:bb:57:c2:
e8:e3:12:d5:16:1b:71:cf:2f:02:a6:64:43:5e:11:dc:19:5a:
9e:c2:0c:dc:41:03:56:29:f7:dd:b1:e0:b5:ea:74:69:b4:2c:
a5:b8:e3:5c:25:e6:8f:ca:01:80:a9:32:52:94:a1:cc:84:f8:
cf:44:6d:30:33:9b:27:bb:4e:46:3d:82:61:1e:b7:9f:f9:0a:
ca:8a:f6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 20:57:38 2024 by rpki-client on console-fra.rpki-client.org