Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KGVmHlhtpJB2xdKjRDJSY82dBMI.roa
File: KGVmHlhtpJB2xdKjRDJSY82dBMI.roa (raw, json)
Hash identifier: TEShp3OiEbCJwoDnz5f4RMRJPC9WUedYFB5xV12PrMs=
Subject key identifier: 28:65:66:1E:58:6D:A4:90:76:C5:D2:A3:44:32:52:63:CD:9D:04:C2
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A6AA0BF7340A2DD9A7EAF269083DABE3C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KGVmHlhtpJB2xdKjRDJSY82dBMI.roa
Signing time: Wed 06 Sep 2023 13:13:54 +0000
ROA not before: Wed 06 Sep 2023 13:13:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 91.216.185.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 11:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:a0:bf:73:40:a2:dd:9a:7e:af:26:90:83:da:be:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 13:13:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2865661e586da49076c5d2a344325263cd9d04c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:9d:74:2e:d5:ed:45:1e:c0:e4:4b:04:a6:
8e:09:c0:04:8e:a2:99:65:67:cd:f5:93:ba:7a:19:
99:98:01:2d:ea:11:bd:b0:3a:df:86:1a:f4:4c:45:
0a:ee:d2:83:b9:e0:61:38:41:dd:c0:6d:5f:43:ea:
d5:96:ea:f4:06:bb:1c:c9:7b:f4:81:28:fa:b7:83:
3f:99:d8:62:79:a4:66:42:04:9d:a1:5f:16:8b:1f:
f7:2f:27:00:11:26:77:b6:b2:0a:d7:48:c1:02:26:
46:42:ed:ae:8f:c4:e2:29:dd:4d:7f:ef:9e:4d:ed:
b6:c8:e7:ea:70:9f:9f:94:5f:97:38:35:05:2a:5d:
71:90:ea:74:ee:0b:f5:5e:6f:16:d9:d9:48:a8:e3:
21:c1:79:57:e7:1c:91:0b:6c:ff:81:e4:93:fc:94:
a6:ea:9f:04:52:b2:54:16:97:6d:59:98:a6:39:e0:
28:31:ec:e5:2a:a3:43:4a:d6:86:d2:62:a3:0b:f0:
05:f9:b1:55:33:00:3c:49:ce:1e:a5:04:12:00:38:
3a:7a:7f:ff:fb:8c:88:a7:91:85:18:15:b1:a3:8a:
82:2a:76:e8:e0:41:22:36:fa:27:d0:cc:1d:ed:0f:
e9:98:52:37:8c:e8:c6:ca:82:82:34:a8:af:d8:b1:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:65:66:1E:58:6D:A4:90:76:C5:D2:A3:44:32:52:63:CD:9D:04:C2
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KGVmHlhtpJB2xdKjRDJSY82dBMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
86.105.4.0/24
86.107.100.0/24
89.36.140.0/24
89.40.36.0/24
89.45.35.0/24
91.216.185.0/24
93.115.203.0/24
94.177.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:de:ae:28:0e:d8:b6:5a:3b:d4:93:e4:e3:2c:60:d2:60:fa:
36:81:c1:e8:ee:ce:e6:94:8a:17:a1:16:a1:5f:47:57:c2:e1:
12:32:ad:02:9d:b2:c7:08:8d:5e:d9:2f:72:67:c5:f2:d6:7b:
4e:8f:cb:ba:c8:71:d9:c3:85:b4:5d:60:42:31:92:7e:22:c5:
fb:e4:f1:e5:98:0e:71:05:c8:1d:4c:ad:4b:5a:8e:e8:c2:df:
b5:4b:46:21:16:36:88:76:72:1c:ef:07:4a:13:7b:88:3d:94:
1e:57:12:a0:a2:3f:42:af:8a:89:48:12:d9:2c:50:58:7d:86:
23:28:82:fd:b6:cd:de:64:54:c0:1e:12:dc:6f:0e:0c:b5:65:
a4:bf:6f:ea:57:8f:1c:81:a1:2f:f1:7a:56:26:4c:21:f1:29:
ab:43:4b:8e:5b:50:5d:e4:d8:8d:eb:a4:75:ce:6f:b4:1d:48:
87:48:fa:8a:38:d7:2d:3a:82:91:cc:f6:8e:82:d7:6c:29:b6:
df:fe:b5:1a:30:9c:ae:de:bf:42:36:9c:5e:dd:93:e5:56:0a:
ba:9f:38:4b:92:dd:9b:b5:0f:9c:a5:84:c4:59:39:41:f2:65:
26:85:02:7f:fa:e7:f9:2f:87:f5:6c:38:73:6f:87:47:ad:3e:
50:b3:5f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org