Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BfDnGZdGkxg34aKv93lzy5NP2cY.roa
File: BfDnGZdGkxg34aKv93lzy5NP2cY.roa (raw, json)
Hash identifier: DUJMShn0UBczS2AimzkuUANBl/f5SSOCsrxSyBECSZo=
Subject key identifier: 05:F0:E7:19:97:46:93:18:37:E1:A2:AF:F7:79:73:CB:93:4F:D9:C6
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A69FF8C25BE7B34520A2B39E45AF5B6CE
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BfDnGZdGkxg34aKv93lzy5NP2cY.roa
Signing time: Wed 06 Sep 2023 10:17:49 +0000
ROA not before: Wed 06 Sep 2023 10:17:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 91.216.185.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 13:13:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:ff:8c:25:be:7b:34:52:0a:2b:39:e4:5a:f5:b6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 10:17:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05f0e7199746931837e1a2aff77973cb934fd9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4c:18:2a:42:7b:b3:4e:55:0f:c9:2c:c2:2c:
86:11:7d:f4:b8:2f:f7:0b:c3:ec:cc:d2:fc:49:4b:
9d:87:12:32:9e:08:1c:61:82:bc:5a:d5:d7:89:56:
e4:d8:d3:92:a9:04:62:dd:c1:ce:03:31:fc:f7:e7:
65:08:ee:b7:7f:86:6d:5a:9c:b6:df:d8:cc:b2:2e:
18:75:6c:dc:9a:9e:b0:f0:dc:3f:76:66:f1:fd:d3:
8d:6b:6f:35:ac:ab:16:f8:dc:dd:28:3b:05:1c:a1:
38:d2:9c:91:a6:77:e6:2d:04:59:52:d3:6a:f3:80:
a6:00:19:c1:73:3c:3d:c5:81:30:5d:2b:b1:bf:d5:
04:05:25:a4:74:3a:f2:f4:47:88:71:cc:eb:54:6a:
30:17:8e:23:fb:d3:2d:33:43:57:d6:6d:09:9c:9a:
e8:45:14:8f:7f:9a:77:85:44:32:f6:b3:05:fb:39:
79:b8:9b:ab:f8:f4:47:c4:cc:21:a0:3b:ac:f1:0e:
d7:24:8d:23:6b:45:bc:f7:f8:65:9d:b4:fd:5f:17:
81:b5:5a:94:41:61:1d:de:08:e8:0c:71:6f:31:97:
bd:a1:ac:15:28:46:59:ad:8d:1a:2f:3d:c1:f1:eb:
ae:ce:46:fa:df:05:0f:a7:84:a6:b3:11:5e:d4:c7:
02:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F0:E7:19:97:46:93:18:37:E1:A2:AF:F7:79:73:CB:93:4F:D9:C6
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BfDnGZdGkxg34aKv93lzy5NP2cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
86.105.4.0/24
86.107.100.0/24
89.36.140.0/24
89.40.36.0/24
91.216.185.0/24
93.115.203.0/24
94.177.106.0/24
Signature Algorithm: sha256WithRSAEncryption
22:2e:15:a9:62:77:1a:d8:08:55:23:3b:4f:40:b3:ae:d8:ba:
53:a3:b8:53:4d:f2:c5:6a:d5:c3:cf:86:1a:9e:1c:17:96:32:
95:8d:c4:48:85:da:7d:a3:bf:1a:37:61:26:d9:a8:e9:d2:62:
d2:50:33:ff:05:ac:20:37:8f:e5:7f:fd:48:5d:d1:ad:e4:93:
1a:89:71:e0:81:df:a7:53:0b:d5:36:37:ff:e4:8a:9a:a5:1a:
03:45:00:73:57:b6:14:2c:44:62:6f:70:56:a1:e0:f4:30:9d:
42:6d:1e:ae:b4:cf:08:51:cd:df:07:77:c0:09:77:8c:5d:71:
99:67:31:af:7d:75:82:b1:2c:cd:22:33:97:55:7d:73:48:fa:
51:ea:b7:70:94:67:0f:d5:65:da:cb:d7:b4:94:86:9f:ad:a4:
bf:36:2c:67:f4:1a:5d:6e:77:ba:6a:95:78:d1:9b:7e:e1:36:
69:ca:d9:77:8d:21:58:a5:d2:ab:6f:5e:97:08:79:72:26:bd:
48:79:f7:f0:4d:ae:4b:01:34:cc:60:7e:24:6e:c2:f2:33:4c:
c4:21:5b:9c:e2:db:4b:cd:85:91:e7:63:80:e9:21:23:75:e1:
38:51:a4:7b:c0:0c:c5:0d:49:7b:6e:cd:b8:17:6f:51:2f:1a:
68:55:ff:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org