Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IKP9YFZq3ewEd3Zk4pB1xCr5KRA.roa
File: IKP9YFZq3ewEd3Zk4pB1xCr5KRA.roa (raw, json)
Hash identifier: zdJ5ufG0Jmpqr7LFv8h2EYBQ+wOaiDL4RXJAnjfXFW0=
Subject key identifier: 20:A3:FD:60:56:6A:DD:EC:04:77:76:64:E2:90:75:C4:2A:F9:29:10
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189203A2AE6759DF09BBFC4F6040D9253B6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IKP9YFZq3ewEd3Zk4pB1xCr5KRA.roa
Signing time: Tue 04 Jul 2023 09:27:10 +0000
ROA not before: Tue 04 Jul 2023 09:27:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 37.153.158.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
77.81.88.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 09:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:3a:2a:e6:75:9d:f0:9b:bf:c4:f6:04:0d:92:53:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 4 09:27:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20a3fd60566addec04777664e29075c42af92910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:16:7a:68:b6:e6:18:42:d2:35:e7:63:fd:8f:
87:19:4e:4a:55:15:41:93:b0:59:3e:f8:74:a1:72:
37:4a:1a:b8:61:45:72:fc:95:b9:2a:40:59:3c:30:
f6:c9:9f:fd:34:53:42:e7:8d:16:9e:b9:19:e2:31:
90:71:9e:af:7c:33:b1:2c:5f:31:b2:c8:10:59:9b:
50:d7:8b:71:b9:ed:86:3a:fb:02:6f:c7:8f:03:4e:
63:90:a1:f3:69:3f:c1:4e:18:cc:d7:55:ac:5b:6a:
35:c1:98:11:64:40:bc:f6:19:5e:f0:da:ee:f5:0c:
46:ee:72:54:dc:23:76:9a:dc:84:a5:01:b5:2c:be:
67:bb:3e:49:83:dc:0e:48:2d:20:82:18:a8:83:7c:
2e:3f:22:a3:fd:32:8f:93:47:e2:58:e9:ac:f1:0b:
4d:c8:a1:94:81:4a:91:a7:f8:63:d2:dd:e6:66:90:
38:f5:0f:40:9e:1f:79:2f:f3:bf:72:cf:1e:98:94:
da:f1:f0:c0:c6:fb:de:19:9a:7c:63:e2:4a:d3:09:
72:9c:39:b0:3e:28:eb:ce:eb:14:40:07:a5:de:34:
0d:fa:fe:8d:be:40:ef:b0:6f:76:d7:71:5d:bb:58:
44:96:33:1d:67:19:4d:52:0c:2e:6b:0a:9a:a5:f6:
76:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A3:FD:60:56:6A:DD:EC:04:77:76:64:E2:90:75:C4:2A:F9:29:10
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IKP9YFZq3ewEd3Zk4pB1xCr5KRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
45.88.13.0-45.88.15.255
77.81.65.0/24
77.81.88.0/24
86.107.100.0/24
89.34.106.0/24
89.35.130.0/23
89.45.162.0/24
89.47.36.0/24
89.47.55.0/24
92.114.32.0/24
93.90.74.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:88:b3:96:a2:98:9a:22:5c:19:4b:5f:e3:41:85:09:dc:d5:
ee:bc:d0:c8:3d:f5:67:8b:16:19:30:55:eb:b1:e2:1f:6e:3a:
14:c3:3c:04:22:ac:6f:a6:88:e8:d7:3e:8d:57:79:7a:57:e7:
dd:4b:9d:1e:78:22:75:3d:9a:70:7b:9b:e7:f2:ac:b6:67:99:
89:2f:af:06:7b:20:67:c2:f6:fc:f5:28:3b:90:61:7a:26:6b:
c7:07:48:88:7f:6d:f3:bd:75:c8:3c:01:4d:1c:93:66:10:82:
26:44:c1:14:e5:08:54:15:31:82:28:cc:89:eb:17:bf:de:73:
0b:c0:61:52:e6:dc:63:c4:2a:12:a3:75:aa:2b:35:4a:72:c2:
38:9c:d6:23:3c:4b:7c:81:ec:3a:3f:77:0d:9a:c9:49:70:28:
15:43:ad:b0:8f:d8:d7:97:43:85:e8:cb:82:7f:08:92:74:5b:
bc:64:15:4c:46:44:a6:b6:36:02:0a:ad:bb:57:e4:9e:9e:51:
a6:b5:3c:3e:dc:a1:41:ca:10:a4:2f:ec:e0:82:e6:da:7a:5d:
3a:f1:88:da:e9:5b:f4:1f:87:0d:bb:9a:b1:f6:66:c0:b5:4f:
e8:e4:a4:f6:ca:d1:0e:96:d1:82:ef:9a:fa:e4:92:e3:a8:ae:
85:ac:22:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org