Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IEUjwvx3wtQCEqM0A0UdeQob9_w.roa
File: IEUjwvx3wtQCEqM0A0UdeQob9_w.roa (raw, json)
Hash identifier: jyQxMyIKPBivvTzJizg5cgEZwtam34pWXsW2zXEtUnM=
Subject key identifier: 20:45:23:C2:FC:77:C2:D4:02:12:A3:34:03:45:1D:79:0A:1B:F7:FC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A69067E82A0779DDB48651735BF3381CB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IEUjwvx3wtQCEqM0A0UdeQob9_w.roa
Signing time: Wed 06 Sep 2023 05:45:47 +0000
ROA not before: Wed 06 Sep 2023 05:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
2.57.240.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 12:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:06:7e:82:a0:77:9d:db:48:65:17:35:bf:33:81:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 05:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=204523c2fc77c2d40212a33403451d790a1bf7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4d:64:df:46:ce:32:ce:3d:0d:12:9f:4c:e7:
20:2e:db:c5:b5:aa:bc:b9:6f:28:33:39:97:29:45:
78:97:50:ae:0a:8c:3d:36:db:a1:8a:14:a9:28:2f:
c8:d7:3e:6a:8c:d9:fa:f9:02:38:f4:b2:53:48:a9:
eb:2b:a5:fb:f8:72:5e:75:e6:14:54:4c:c5:b5:13:
0d:56:04:ea:99:aa:c2:95:61:7d:d8:c6:8b:78:5e:
3d:1a:30:dc:85:1a:cf:b5:11:a8:6d:5c:bf:37:25:
96:b1:99:6f:6d:da:5a:e9:8b:b2:ba:a2:24:df:1b:
ff:11:9a:7e:b7:8a:da:d0:d9:85:b8:8b:d7:79:5a:
56:4e:8d:81:a2:c8:ca:bc:32:73:2a:c5:06:27:d3:
6c:89:5a:17:56:ca:bd:ff:ee:7c:b7:58:a6:ba:05:
3d:fb:a2:56:ea:c8:87:ac:12:2b:5c:f2:97:e7:dd:
83:2d:01:6a:85:d2:5c:67:c9:19:e5:83:7d:05:b7:
08:8e:9d:19:92:89:14:7e:e4:82:05:3b:1e:a7:9c:
9a:2c:57:8d:e0:48:c7:8e:33:6a:eb:a6:97:11:7c:
00:65:5b:15:dc:92:88:12:36:2a:dd:69:1b:82:17:
4e:28:d4:d0:7d:e4:c1:00:74:28:87:ea:cf:f2:75:
fc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:45:23:C2:FC:77:C2:D4:02:12:A3:34:03:45:1D:79:0A:1B:F7:FC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IEUjwvx3wtQCEqM0A0UdeQob9_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
45.88.13.0/24
86.107.51.0/24
86.107.168.0/24
89.34.106.0/24
89.34.219.0/24
89.35.119.0/24
89.35.130.0/23
89.43.62.0/24
89.47.36.0/24
94.177.51.0/24
94.177.150.0/24
188.214.107.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
07:45:5d:47:77:19:50:17:1a:9f:5d:7b:42:f3:ad:63:df:28:
fc:8e:14:e3:6b:4c:3b:4a:24:55:19:43:c2:93:40:14:89:45:
67:1a:be:5d:2d:ca:9f:b1:ad:6f:09:5b:39:c6:66:62:51:2b:
03:60:98:cc:9a:7f:0c:b4:b4:99:d2:05:67:b0:ef:96:c9:95:
53:e0:e5:d8:3f:e9:ef:99:f8:47:0b:30:90:86:72:1b:ae:a6:
6c:b6:03:4a:46:20:95:b0:36:63:56:17:bc:81:3a:3e:ba:24:
33:86:a5:f2:82:59:5b:b4:a9:2b:45:42:c5:de:01:cc:57:ff:
78:59:ab:9d:01:e8:4c:51:90:1f:9c:b9:fd:ef:d7:3f:8b:29:
6c:64:29:43:2a:7f:ba:13:4a:69:98:72:ec:d1:45:a2:9c:9c:
f1:43:ee:58:35:10:31:b9:9d:cf:a7:cb:45:c8:6b:a4:da:73:
87:c3:c7:af:b3:2a:38:54:82:68:6a:22:ce:e9:e7:84:82:3e:
9f:3c:67:24:f4:54:9e:9b:a3:7d:41:23:86:33:9b:c5:ef:64:
ad:8e:1f:d1:2b:2f:95:4c:46:13:72:48:b1:b5:d9:99:ba:eb:
f8:ec:6e:bc:2f:62:78:e2:8b:7f:5d:17:65:5e:f3:a8:d0:8c:
b2:02:1b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org