Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KOvPJXGSr68UUrXsn_TaksxK_qQ.roa
File: KOvPJXGSr68UUrXsn_TaksxK_qQ.roa (raw, json)
Hash identifier: tap+iceIRWHhmjrBBzyBm4NhM/o65HvhNiYDHTKnG8E=
Subject key identifier: 28:EB:CF:25:71:92:AF:AF:14:52:B5:EC:9F:F4:DA:92:CC:4A:FE:A4
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188D214E3CEB3D5C892C27A222BFEE46F0E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KOvPJXGSr68UUrXsn_TaksxK_qQ.roa
Signing time: Mon 19 Jun 2023 05:16:04 +0000
ROA not before: Mon 19 Jun 2023 05:16:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 37.156.5.0/24 maxlen: 24
86.107.51.0/24 maxlen: 24
37.153.158.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
89.46.42.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 05:22:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:14:e3:ce:b3:d5:c8:92:c2:7a:22:2b:fe:e4:6f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 19 05:16:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28ebcf257192afaf1452b5ec9ff4da92cc4afea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ca:c5:17:36:07:3c:fe:4d:26:53:61:1f:ec:
83:a2:44:6f:fe:4f:7e:0e:b4:1a:44:5d:8a:9e:d0:
94:f5:6c:a6:40:d1:d4:c5:b2:6e:98:ed:05:c0:4d:
94:fc:c2:bc:56:f7:b6:4d:37:1f:5b:a9:1e:08:1c:
4b:64:59:27:f7:a7:84:5c:60:51:eb:2f:f4:99:4a:
35:65:d0:f2:34:38:af:94:99:60:68:e2:bf:00:e0:
21:3d:e9:63:fc:73:eb:fb:d1:f2:6a:4e:5e:b9:03:
5c:0e:59:d9:46:21:4e:9f:ce:31:ca:2f:14:2e:6a:
7e:52:99:d2:34:5d:1b:f1:be:26:96:3a:7e:84:6e:
af:ce:ca:8a:48:e5:34:b9:82:37:d1:25:0f:2d:8d:
5e:f0:0a:13:b3:d5:54:d9:7f:bc:d3:42:9e:ce:ae:
f3:98:6b:28:65:d2:ea:bd:8f:3c:4f:a7:d9:b6:54:
4c:71:b2:b3:3b:51:cc:1e:45:8e:ee:d2:58:c3:bf:
f4:a9:0e:b8:3b:3e:9a:93:96:6b:f7:7b:f7:6a:c1:
4d:1b:64:41:98:66:a2:27:7c:0f:65:1f:28:31:5f:
5a:1d:1e:58:ba:e3:9c:53:b0:f9:dc:48:54:4c:e7:
4c:14:a8:8d:37:c6:98:8a:f5:70:26:26:bf:35:a3:
a2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:EB:CF:25:71:92:AF:AF:14:52:B5:EC:9F:F4:DA:92:CC:4A:FE:A4
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KOvPJXGSr68UUrXsn_TaksxK_qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
37.156.5.0/24
45.88.13.0-45.88.15.255
46.102.237.0/24
77.81.65.0/24
77.81.88.0/24
86.107.51.0/24
89.34.106.0/24
89.35.130.0/23
89.40.215.0/24
89.45.35.0/24
89.45.162.0/24
89.46.42.0/24
89.47.36.0/24
92.114.32.0/24
94.198.171.0/24
176.223.188.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
74:89:bc:e4:9d:3d:45:cd:58:09:b1:9e:81:db:71:3d:aa:64:
f5:8f:2c:82:d0:c5:53:11:33:44:2f:af:5f:c7:ca:bc:36:b8:
6e:cd:e4:4d:5d:a0:d5:ac:5d:f0:2d:e5:f6:ad:76:f1:01:1d:
f4:57:2c:8e:81:9d:31:b5:9b:c3:29:38:7d:ff:16:36:77:e2:
e4:f9:6c:7f:0a:f3:e0:f2:54:d6:76:38:42:f5:e5:0b:1f:33:
d8:e4:cf:bf:fe:9d:b9:1d:23:60:f7:01:dd:c1:10:38:e8:95:
9e:bf:45:ea:a8:00:34:b0:df:64:18:c3:33:05:b8:fb:e0:35:
0e:99:a2:d2:0e:ab:0e:e6:19:40:cb:d4:f2:6a:6f:25:bd:15:
8d:aa:c1:38:5b:f4:62:bc:13:a6:cf:5c:01:ad:db:62:e1:3d:
22:97:0c:ff:83:a2:9f:79:de:75:e6:84:2a:89:77:c9:53:9f:
50:06:47:72:4d:dc:e4:14:75:c0:ba:36:09:2a:42:7b:fe:43:
2d:ce:3c:6b:0a:e7:d3:97:49:80:6f:7f:eb:19:43:d7:6e:54:
63:1c:da:8e:63:73:5a:22:50:6f:ac:79:03:2a:45:45:dc:27:
b7:b2:ea:82:36:3d:d8:29:62:1c:4e:4e:f5:14:e2:d8:c1:21:
21:cc:d2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org