Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ito99u8mcCF2jiaQTxtZJ5AFH_o.roa
File: Ito99u8mcCF2jiaQTxtZJ5AFH_o.roa (raw, json)
Hash identifier: OUMgNifzLT6ohkBjYqqZucWNAwqbuNCbw3/dOd3tOjY=
Subject key identifier: 22:DA:3D:F6:EF:26:70:21:76:8E:26:90:4F:1B:59:27:90:05:1F:FA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01910A0AC906C93D57412686A41799F3213A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ito99u8mcCF2jiaQTxtZJ5AFH_o.roa
Signing time: Wed 31 Jul 2024 18:26:04 +0000
ROA not before: Wed 31 Jul 2024 18:26:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
91.132.51.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 16:10:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0a:0a:c9:06:c9:3d:57:41:26:86:a4:17:99:f3:21:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 31 18:26:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22da3df6ef267021768e26904f1b592790051ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9a:0a:c1:ad:a3:94:76:76:dd:f1:db:47:e3:
5c:4b:31:78:9b:f8:e2:d8:a9:28:84:6f:c3:db:74:
d6:72:b1:b9:07:d8:02:cc:41:4e:c4:95:f4:01:04:
f1:85:9c:e9:87:80:26:cb:05:98:f8:4f:c6:10:73:
40:97:c1:1f:c4:fe:e9:1b:9f:f8:ae:1a:be:16:f8:
99:b3:e9:4b:5d:88:52:73:0d:c7:8c:d4:0e:5a:bd:
72:73:27:4b:b9:21:6d:85:25:20:a6:f1:ba:a6:b3:
09:1f:1d:96:fb:15:89:ef:d3:6c:3f:9e:00:68:d6:
54:1d:65:a2:f3:db:6d:ec:bf:50:53:b7:7f:ac:e6:
32:93:79:de:8b:38:df:54:91:5a:49:fc:dd:1f:5e:
f4:d4:27:2f:62:df:a1:8e:91:27:b3:5f:22:ca:bf:
42:d6:9c:16:c6:1b:c1:3c:38:cd:9d:2e:40:f5:74:
17:03:8b:a3:d0:85:0d:bc:30:79:46:2c:41:9b:3c:
44:1c:7f:00:ed:43:ca:bd:a6:6a:ac:1b:e7:5e:05:
14:60:36:95:7b:85:da:27:36:2b:91:e1:d3:68:37:
b6:79:11:38:e0:1b:89:d9:4d:e6:f6:9b:25:f1:98:
e2:15:40:08:a5:4c:bd:9b:17:0c:7f:72:a5:73:a5:
64:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DA:3D:F6:EF:26:70:21:76:8E:26:90:4F:1B:59:27:90:05:1F:FA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ito99u8mcCF2jiaQTxtZJ5AFH_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
91.132.51.0/24
93.114.183.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
38:42:47:f9:03:0a:10:fc:4a:ae:8c:fa:3e:55:79:bc:da:c9:
f2:f9:90:f6:20:65:72:f3:5c:22:c0:66:64:4b:c3:65:94:09:
54:97:8b:81:27:03:38:b5:88:d8:c3:f7:3c:5e:dc:1c:9f:04:
31:eb:76:a3:7a:4c:20:61:9f:c1:37:f4:12:ac:aa:a8:70:70:
e1:d5:4a:be:4c:dd:2d:4d:4e:0d:30:8d:3a:c6:ba:6c:f8:49:
1c:2f:ac:f0:e0:d3:21:06:65:40:77:8a:a8:f7:94:02:a1:12:
4c:b2:ff:8a:c9:92:57:55:ec:3f:08:fb:b1:3c:87:f4:9f:5d:
43:5a:c5:23:2a:1d:e8:02:7a:27:d2:9e:0c:a8:4f:db:dd:db:
02:c3:e2:4a:38:c0:60:7b:de:2a:dd:7e:dd:27:39:68:29:6b:
5f:00:3d:43:c9:32:ba:bc:3b:65:7b:7a:7f:65:18:fd:49:96:
88:60:26:82:c4:72:f6:7d:f2:04:9b:7e:6a:a7:b3:6b:e3:db:
a0:91:da:29:de:a4:11:fd:19:51:70:61:af:eb:77:01:5b:05:
68:6b:ae:4b:c8:68:80:5e:d5:82:b7:90:cd:80:c9:d7:d0:02:
21:0c:96:0d:24:09:66:c4:5d:07:aa:60:1c:93:57:ab:1e:96:
0b:c3:fa:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 17:43:46 2024 by rpki-client on console-fra.rpki-client.org