Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H60TL_R1tJFCMCeB_W2xPbssCMg.roa
File: H60TL_R1tJFCMCeB_W2xPbssCMg.roa (raw, json)
Hash identifier: mDHSk69VrMaRfDDSbtu0Oi0DHwfLuQghDyFuTTfatWg=
Subject key identifier: 1F:AD:13:2F:F4:75:B4:91:42:30:27:81:FD:6D:B1:3D:BB:2C:08:C8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01878EF964C5234471612B64EDADB5319C80
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H60TL_R1tJFCMCeB_W2xPbssCMg.roa
Signing time: Mon 17 Apr 2023 11:28:41 +0000
ROA not before: Mon 17 Apr 2023 11:28:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 04:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:f9:64:c5:23:44:71:61:2b:64:ed:ad:b5:31:9c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 17 11:28:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fad132ff475b49142302781fd6db13dbb2c08c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:16:f7:34:84:0c:25:ef:76:b1:02:a3:80:ad:
aa:5f:6f:62:92:4d:90:92:bd:b8:d2:6b:54:71:a8:
30:19:d0:e2:ce:aa:60:ec:c0:51:ca:2d:b8:bd:f3:
47:c9:cb:33:7b:ee:85:ec:75:d0:18:5e:8f:76:40:
cc:68:cd:26:0e:9d:72:2d:7f:18:4a:64:04:c0:93:
3e:69:eb:20:92:09:cc:2d:7b:f4:d6:6f:bc:e2:3e:
76:36:5f:61:59:3e:02:35:27:cc:62:ea:21:e0:9b:
e2:78:9a:79:ed:6d:91:27:2e:54:b6:7f:8d:19:d8:
99:2b:1d:27:3f:7d:fb:11:ee:2a:34:bf:dd:32:c4:
3f:9c:bc:a9:7f:48:61:8b:60:6b:de:76:7e:72:01:
b0:27:24:b1:a0:0b:fc:9f:55:4e:8a:16:cb:79:06:
60:b1:53:f8:3e:9d:5e:af:64:5d:52:a2:8e:5b:38:
60:9d:67:56:c7:80:8c:df:15:68:f5:bb:fc:aa:f1:
d7:da:24:97:62:e8:53:4b:e0:56:9d:33:17:11:7b:
fc:ad:91:da:4e:06:0c:50:a0:46:ae:22:79:1b:0e:
5a:fd:e6:88:db:bd:63:e3:04:19:1c:1d:56:0d:1f:
cc:b9:34:0b:32:35:03:b5:71:62:a2:1a:99:bf:65:
46:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AD:13:2F:F4:75:B4:91:42:30:27:81:FD:6D:B1:3D:BB:2C:08:C8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H60TL_R1tJFCMCeB_W2xPbssCMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
86.107.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.119.0/24
89.35.129.0-89.35.131.255
89.40.70.0/24
89.45.35.0/24
89.47.55.0/24
94.198.171.0/24
176.223.188.0/24
188.214.107.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
44:7d:64:a6:40:4a:45:dc:65:8a:6c:e4:e5:48:0a:93:ea:a8:
8f:3a:a7:c9:d3:a1:49:ba:e9:27:ca:34:6a:16:ef:d2:eb:03:
fc:1d:31:4c:ba:be:5d:36:d9:1b:c3:6d:3b:ad:3c:4a:b3:16:
33:97:e4:5c:14:a7:55:e3:be:03:03:6c:88:41:43:a0:df:16:
5c:8c:ab:e5:9f:50:0c:d8:05:c3:14:44:e3:ca:97:d5:83:3e:
38:21:c6:c2:c0:66:a7:8d:e2:36:e7:43:96:22:37:c1:ef:67:
42:f2:33:7c:66:fe:da:5e:6c:05:d2:8b:6b:f5:34:f6:e7:e5:
a9:62:35:73:2f:bd:cd:a0:a1:df:6d:d2:22:34:a7:b0:f7:fd:
b0:18:31:61:75:75:65:2d:88:ab:85:6d:c5:30:b6:50:25:d3:
b5:e3:c2:6f:9d:b2:98:3d:ea:c4:34:61:4d:e3:4e:1a:d3:f7:
18:b0:f7:31:d9:c3:82:23:66:f2:af:0b:80:10:48:df:7f:bb:
8e:dc:2f:1c:68:37:f7:bd:10:2c:8f:b9:bf:a0:8c:d4:bb:b8:
cf:8b:79:06:4b:64:ed:4e:11:0a:3e:32:ce:dc:77:7f:c6:15:
1c:b1:38:35:09:e1:6a:62:40:97:a4:ff:43:85:d1:d6:fa:14:
57:eb:a4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org