Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7TZkJNLEzT3vs1oJfILlDGbMjQ.roa
File: I7TZkJNLEzT3vs1oJfILlDGbMjQ.roa (raw, json)
Hash identifier: Q+v+/PwF1ZWR8CNG1YD3vlw7yHbTRYL5ixa8LIT9eaY=
Subject key identifier: 23:B4:D9:90:93:4B:13:34:F7:BE:CD:68:25:F2:0B:94:31:9B:32:34
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018784EAECF845F85C95331F2FA9EE8D1532
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7TZkJNLEzT3vs1oJfILlDGbMjQ.roa
Signing time: Sat 15 Apr 2023 12:36:41 +0000
ROA not before: Sat 15 Apr 2023 12:36:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 11:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:ea:ec:f8:45:f8:5c:95:33:1f:2f:a9:ee:8d:15:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 15 12:36:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b4d990934b1334f7becd6825f20b94319b3234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:d9:1e:2a:fb:74:69:c4:44:fb:e5:e0:ec:
d3:6a:e1:e6:40:9d:2c:ab:6b:3d:74:74:9d:ec:fe:
95:fe:ab:a4:ea:bc:c7:cb:28:c2:78:d3:25:b7:b4:
f8:1f:b9:0c:d7:e0:e4:d3:77:74:92:dd:a6:26:77:
4d:ef:0d:7c:98:b3:48:e8:f9:9a:fb:99:e0:80:30:
47:4a:63:a0:ad:02:d5:1b:d9:4f:a8:4b:96:3f:2f:
0e:87:3c:5e:bf:0d:14:12:75:1c:7a:95:43:e9:3f:
a8:7c:ab:7c:a4:10:de:3f:73:4a:e6:6a:49:d6:c7:
c8:fa:f1:64:94:66:a8:75:ef:83:73:bb:cd:5f:e1:
61:a0:78:ab:ad:67:36:28:92:e2:f2:e2:c9:97:4d:
41:03:7f:25:d3:9a:a8:2e:5a:e7:e8:01:db:a0:72:
0a:e5:f2:8b:5c:27:8b:51:58:f8:fd:8e:f1:e2:2b:
4c:6e:56:92:e3:6a:e7:a6:b0:8b:f8:91:e2:fe:64:
19:83:d0:e1:93:66:ac:2a:55:ce:10:db:62:48:46:
dd:09:83:8d:d1:ba:47:16:b8:e7:06:80:19:4f:21:
6b:d3:c8:d4:be:20:31:9c:8e:5e:7e:31:98:d9:88:
b6:b9:dd:0d:cf:41:ba:7a:57:98:da:52:1f:de:7c:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B4:D9:90:93:4B:13:34:F7:BE:CD:68:25:F2:0B:94:31:9B:32:34
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7TZkJNLEzT3vs1oJfILlDGbMjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
86.107.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.119.0/24
89.35.129.0-89.35.131.255
89.40.70.0/24
89.45.35.0/24
89.47.55.0/24
94.198.171.0/24
176.223.188.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
04:c4:38:bb:29:29:50:c4:97:de:5a:41:10:f7:64:7b:23:d2:
b0:e7:1d:0c:c4:ed:fb:e8:54:6d:4b:14:3c:98:ce:15:03:03:
5f:a8:a5:c8:93:52:ee:18:03:cb:29:27:de:fa:32:52:8c:da:
3e:c5:29:88:61:b4:72:57:09:21:dc:24:3d:5c:8f:32:7a:1a:
3b:dd:38:0c:b1:be:96:66:a0:82:99:41:bd:1e:ea:91:a7:80:
da:f5:f2:e7:f2:1c:c7:81:66:a6:d1:90:81:cd:8a:f3:75:c1:
c7:c0:e9:f4:a4:55:62:75:7b:7b:43:a6:f1:81:59:ad:67:a3:
51:4f:09:4b:b1:0a:78:d8:ab:7e:35:d1:98:2a:8c:76:22:49:
6b:e0:de:99:e2:57:76:49:61:45:9f:9c:31:70:c8:42:e0:b8:
b2:bb:6a:07:d1:83:66:79:18:88:46:38:bb:56:6d:25:c7:58:
ed:f2:22:b0:e5:71:b8:c1:59:1a:6f:c4:98:86:c4:30:5a:21:
e2:f3:46:b5:7c:fc:40:c1:ba:d8:65:72:fe:12:63:82:13:0f:
7f:12:77:72:42:7e:74:84:8f:bd:6f:83:f8:fe:a0:ee:0a:6f:
8e:89:12:ed:91:7f:31:f2:09:88:b3:fe:e5:2a:a4:f7:f3:6a:
7d:51:6d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org