Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/HTFm9RGgG1vpn9IQ1_j8GJnF6TU.roa
File: HTFm9RGgG1vpn9IQ1_j8GJnF6TU.roa (raw, json)
Hash identifier: ys1hk/PCMkSsQ7rL5OOFGpa8Qt4HIUzZhb0P3ymCkkM=
Subject key identifier: 1D:31:66:F5:11:A0:1B:5B:E9:9F:D2:10:D7:F8:FC:18:99:C5:E9:35
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01894E69EBB4BC62EA442942D6C3C05B1439
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/HTFm9RGgG1vpn9IQ1_j8GJnF6TU.roa
Signing time: Thu 13 Jul 2023 08:41:51 +0000
ROA not before: Thu 13 Jul 2023 08:41:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 86.107.50.0/24 maxlen: 24
37.153.158.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 15:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:69:eb:b4:bc:62:ea:44:29:42:d6:c3:c0:5b:14:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 13 08:41:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d3166f511a01b5be99fd210d7f8fc1899c5e935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a5:78:50:93:e6:20:a3:07:64:48:95:02:fe:
9e:0d:dd:e6:9b:e1:7a:6a:d1:ae:04:79:12:86:c9:
6b:cf:90:1f:20:2e:16:84:d3:a4:99:c7:d6:33:ca:
77:80:cd:35:3a:ba:8e:69:d7:d7:66:8f:ca:79:b4:
2b:56:7c:82:33:cd:fc:07:5e:2b:c3:ab:a7:78:0a:
8b:60:77:33:d6:a9:57:c2:de:6c:4e:f8:50:3d:70:
39:66:97:16:17:5c:f3:23:a3:dd:cb:f2:6d:a0:12:
45:25:37:c5:a9:87:65:d2:04:91:4e:ee:41:e0:6b:
aa:5c:e4:80:97:30:57:e7:81:f1:d7:ed:09:ea:c2:
1e:39:27:dc:a2:7d:03:83:e0:3a:f0:3c:2a:74:fd:
09:56:15:f2:5b:29:59:36:2b:fc:58:9b:8e:cb:07:
10:1a:a4:94:e6:bb:0a:cf:46:7d:df:37:1e:4e:fe:
b7:6a:0b:5c:6d:ab:d4:d5:53:e0:24:1f:36:01:d4:
ee:16:37:25:11:ee:7d:bb:9a:c3:13:e7:a3:97:ef:
6b:7e:1b:60:19:35:e5:70:f0:0e:b7:d9:b1:60:63:
87:ef:e5:da:05:c0:18:30:f7:d1:ff:da:6c:08:df:
2d:f7:1a:71:f8:ba:7e:58:21:1b:ac:9f:f7:63:f8:
ca:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:31:66:F5:11:A0:1B:5B:E9:9F:D2:10:D7:F8:FC:18:99:C5:E9:35
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/HTFm9RGgG1vpn9IQ1_j8GJnF6TU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
45.88.12.0/24
86.107.50.0/24
93.115.203.0/24
94.177.106.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:e9:87:1c:a4:cd:81:e2:ab:da:8b:6c:6a:a7:e1:94:2a:32:
10:dc:a2:a2:5f:e8:7e:0f:aa:44:68:f0:b5:b0:8c:fc:cc:04:
aa:fa:39:81:a9:31:8d:2e:49:93:51:d8:5a:dd:ad:cf:b5:22:
29:35:04:c5:22:b7:ed:c1:10:f8:e9:6e:69:37:d6:b8:3b:06:
ce:39:91:9c:96:86:93:37:8f:ff:65:11:e6:bd:7a:55:09:b4:
d0:f1:de:02:52:ac:b3:52:2a:94:6d:a8:2e:aa:f9:2b:89:fd:
7b:57:f6:19:81:99:b6:7f:80:41:5a:d4:c3:8e:d2:eb:37:f5:
40:f4:21:3f:2f:c8:86:fb:89:d0:9c:0e:d4:66:6a:b3:7f:cd:
f2:f3:cf:14:87:53:c5:62:f6:b6:d3:ad:98:2d:c3:5d:be:70:
71:b2:27:8c:0a:bb:45:b9:dd:2b:c8:95:07:62:86:26:20:70:
0b:98:52:ce:9c:30:6a:98:64:9e:94:8e:ae:e0:97:5a:70:3e:
de:7c:84:d3:90:c6:b1:69:29:bd:89:55:c7:7a:c4:0e:d1:eb:
39:38:62:36:6f:30:0f:73:a8:c1:43:3f:1f:b3:3d:86:4b:95:
bb:53:e5:b5:1c:26:5f:d5:33:3c:14:2d:ab:bd:94:7d:d0:12:
e9:c3:22:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org