Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9wrTaNL0zqFKpiZWO44lIxu0ykE.roa
File: 9wrTaNL0zqFKpiZWO44lIxu0ykE.roa (raw, json)
Hash identifier: Kzer7ZHWQ2y6VBtyscRhahjYxpj88Vp6t/zjMPqFc4s=
Subject key identifier: F7:0A:D3:68:D2:F4:CE:A1:4A:A6:26:56:3B:8E:25:23:1B:B4:CA:41
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188F7375EF3445E1957904BB51DEFA54ED6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9wrTaNL0zqFKpiZWO44lIxu0ykE.roa
Signing time: Mon 26 Jun 2023 10:19:41 +0000
ROA not before: Mon 26 Jun 2023 10:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
37.153.158.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
77.81.88.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 08:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:37:5e:f3:44:5e:19:57:90:4b:b5:1d:ef:a5:4e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 26 10:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f70ad368d2f4cea14aa626563b8e25231bb4ca41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:fc:2e:fe:68:83:4f:e8:96:5d:81:a7:92:
75:6d:45:41:14:1d:e7:16:cc:a8:8a:f2:c6:ae:b7:
18:30:56:56:4d:c8:3b:20:e6:df:6f:37:d8:d4:9d:
a4:10:cf:be:0c:e0:91:d3:bc:1d:e1:e7:7c:1b:04:
ea:7e:9d:99:ca:bc:65:cc:9a:ec:b7:65:82:f1:4b:
f0:9c:60:8e:16:06:f5:86:f8:6f:d0:ca:3e:fb:d6:
73:fd:a7:bb:1a:21:29:ab:bd:b8:70:52:26:99:73:
d0:c1:fa:f7:4d:3f:6d:59:3b:9c:d0:2d:16:1e:09:
d6:89:b7:96:e3:3e:52:b5:8a:5e:d2:b3:f5:4d:47:
dc:4b:e7:33:e0:5a:99:e0:11:55:18:4b:b3:4e:67:
27:8e:1b:53:37:e9:a1:9a:6c:96:2d:a2:fd:6d:ef:
02:d8:f2:11:84:10:c7:9f:35:fa:57:67:ed:f0:16:
ac:2d:d3:a9:74:c6:3c:ba:03:61:2f:bb:6a:05:93:
09:cf:4d:25:50:a2:b8:5a:68:b6:2c:8e:e3:04:6c:
46:00:dc:ff:40:6e:e0:ae:8a:08:c6:1c:d4:49:64:
ec:28:0c:48:f1:97:c4:91:7f:03:64:79:a4:39:69:
8d:63:8b:1d:08:9f:e0:d9:cc:7a:8b:86:86:8a:66:
41:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0A:D3:68:D2:F4:CE:A1:4A:A6:26:56:3B:8E:25:23:1B:B4:CA:41
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9wrTaNL0zqFKpiZWO44lIxu0ykE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
45.88.13.0-45.88.15.255
77.81.65.0/24
77.81.88.0/24
86.107.51.0/24
86.107.100.0/24
89.34.106.0/24
89.35.130.0/23
89.40.215.0/24
89.45.162.0/24
89.47.36.0/24
89.47.55.0/24
92.114.32.0/24
93.90.74.0/24
94.198.171.0/24
176.223.188.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
84:63:62:57:83:f7:36:87:dd:1d:01:cf:94:9b:4a:4d:6e:5f:
19:61:d5:9d:9e:ed:dc:cf:6a:ea:29:fa:53:d0:89:d5:6a:18:
7f:c4:13:2e:dc:36:b4:46:dc:f0:e1:13:16:13:c2:fa:e8:60:
b6:7f:99:30:56:47:cd:76:cb:27:1a:4c:d5:07:08:b1:15:ea:
c3:9e:4e:c9:82:4b:38:ea:66:c3:de:87:45:c6:0a:2f:a3:6b:
b5:52:4a:70:0d:bc:02:ea:13:97:42:64:22:df:da:e1:e4:21:
43:e1:c6:7e:d8:2e:e9:6d:b1:26:d9:3c:2f:15:61:0e:46:b2:
a7:82:16:0e:b6:64:85:bc:dc:04:4d:cf:e3:ca:6e:2a:55:c9:
0c:eb:26:6b:b4:b4:3c:1d:96:33:da:80:6c:c1:37:31:27:3a:
93:82:93:57:bb:07:f6:ab:3a:b1:40:a5:a7:06:fc:c4:dd:1c:
f8:00:b8:d2:ba:98:da:22:82:f2:eb:53:e6:20:a9:39:d7:44:
e2:ea:ae:e9:1a:91:c7:28:61:4c:85:ac:4e:e0:50:f7:25:af:
62:85:b4:96:ce:80:77:d6:71:24:6d:56:fc:eb:20:ae:24:f5:
8d:71:a4:96:93:be:57:a2:28:6a:2e:39:5a:63:da:be:3b:24:
d9:d2:09:5e
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAYj3N17zRF4ZV5BLtR3vpU7WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNjI2MTAxOTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzBhZDM2OGQyZjRjZWExNGFhNjI2NTYzYjhlMjUyMzFiYjRjYTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnr8Lv5og0/oll2Bp5J1bUVBFB3n
FsyoivLGrrcYMFZWTcg7IObfbzfY1J2kEM++DOCR07wd4ed8GwTqfp2ZyrxlzJrs
t2WC8UvwnGCOFgb1hvhv0Mo++9Zz/ae7GiEpq724cFImmXPQwfr3TT9tWTuc0C0W
HgnWibeW4z5StYpe0rP1TUfcS+cz4FqZ4BFVGEuzTmcnjhtTN+mhmmyWLaL9be8C
2PIRhBDHnzX6V2ft8BasLdOpdMY8ugNhL7tqBZMJz00lUKK4Wmi2LI7jBGxGANz/
QG7grooIxhzUSWTsKAxI8ZfEkX8DZHmkOWmNY4sdCJ/g2cx6i4aGimZBdwIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFPcK02jS9M6hSqYmVjuOJSMbtMpBMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvOXdyVGFOTDB6cUZLcGlaV080NGxJeHUweWtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwegMEACWZ
njAMAwQALVgNAwQELVgAAwQATVFBAwQATVFYAwQAVmszAwQAVmtkAwQAWSJqAwQB
WSOCAwQAWSjXAwQAWS2iAwQAWS8kAwQAWS83AwQAXHIgAwQAXVpKAwQAXsarAwQA
sN+8AwQAvNXYAwQAvNZrAwQAvPGJMA0GCSqGSIb3DQEBCwUAA4IBAQCEY2JXg/c2
h90dAc+Um0pNbl8ZYdWdnu3cz2rqKfpT0InVahh/xBMu3Da0Rtzw4RMWE8L66GC2
f5kwVkfNdssnGkzVBwixFerDnk7Jgks46mbD3odFxgovo2u1UkpwDbwC6hOXQmQi
39rh5CFD4cZ+2C7pbbEm2TwvFWEORrKnghYOtmSFvNwETc/jym4qVckM6yZrtLQ8
HZYz2oBswTcxJzqTgpNXuwf2qzqxQKWnBvzE3Rz4ALjSupjaIoLy61PmIKk510Ti
6q7pGpHHKGFMhaxO4FD3Ja9ihbSWzoB31nEkbVb86yCuJPWNcaSWk75XoihqLjla
Y9q+OyTZ0gle
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org