Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RR9M0pUEcdBHk5XXrWU6cguCzGk.roa
File: RR9M0pUEcdBHk5XXrWU6cguCzGk.roa (raw, json)
Hash identifier: 9b3EMLpxvEGa3Z6SHw1lPTzAGpZ2HMMeORPKwhdkltU=
Subject key identifier: 45:1F:4C:D2:95:04:71:D0:47:93:95:D7:AD:65:3A:72:0B:82:CC:69
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A416077071818EC8C01AA150B6B5E41AF
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RR9M0pUEcdBHk5XXrWU6cguCzGk.roa
Signing time: Tue 29 Aug 2023 12:59:15 +0000
ROA not before: Tue 29 Aug 2023 12:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
2.57.240.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 07:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:60:77:07:18:18:ec:8c:01:aa:15:0b:6b:5e:41:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 29 12:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=451f4cd2950471d0479395d7ad653a720b82cc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:7c:bf:c8:a4:b8:61:27:37:be:a7:65:5f:
f0:39:89:eb:c8:ea:96:f0:e6:30:87:73:e1:89:3f:
56:81:80:c6:e1:e6:c2:ca:6e:3d:a8:c3:9e:1d:dd:
44:5a:9e:5d:bb:2f:a9:1e:83:4c:da:a3:3e:22:03:
0b:10:18:73:23:a1:1a:60:56:40:cc:b0:df:f0:dd:
98:c7:a0:ee:04:f5:9b:7b:15:5e:2d:2b:8f:8b:e8:
27:e7:16:34:69:9f:ab:06:97:88:43:47:49:4e:c6:
3e:c0:bf:6c:63:68:11:04:64:1a:25:6b:7d:7c:50:
60:07:48:f4:19:0f:1c:5c:9e:a9:68:82:36:b8:01:
3d:98:78:7e:e1:fd:4a:89:2e:82:7c:81:3c:78:f2:
07:14:68:d9:ce:77:b0:40:64:c0:e9:01:41:0f:84:
f7:d0:02:b3:28:34:70:fb:dd:d4:e1:55:a4:70:83:
96:f9:4b:6a:a2:b8:e1:67:5e:56:02:59:ce:52:14:
06:e4:3e:c1:e7:98:67:24:b0:9f:41:2f:43:f8:66:
40:08:61:3f:be:35:56:bd:0f:f8:c9:d0:4f:db:a7:
47:f4:87:b4:1d:be:90:b5:45:80:e2:64:1e:55:5f:
71:7c:4e:44:0e:75:c2:a3:f4:b3:c0:4d:c8:bb:98:
c2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:1F:4C:D2:95:04:71:D0:47:93:95:D7:AD:65:3A:72:0B:82:CC:69
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RR9M0pUEcdBHk5XXrWU6cguCzGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
45.88.13.0/24
77.81.182.0/24
86.107.51.0/24
86.107.168.0/24
89.34.106.0/24
89.34.219.0/24
89.35.119.0/24
89.35.130.0/23
89.40.215.0/24
89.43.62.0/24
89.47.36.0/24
89.47.55.0/24
94.177.51.0/24
94.177.150.0/24
188.214.107.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e4:96:f5:0e:5f:58:dc:2f:8c:6f:87:95:20:4e:0b:af:ef:
ba:b7:b3:97:87:96:ce:40:ff:6a:e7:5a:59:24:f1:02:5d:4c:
0d:21:07:6d:12:d8:dc:9d:d0:9e:d3:7e:5d:a1:b7:bd:da:bf:
17:ca:6b:5b:13:01:bd:f4:ac:58:9c:eb:72:b4:5d:cc:d6:37:
92:82:8e:13:e9:78:ba:f0:cd:34:c0:3d:10:0d:fb:a9:b8:2d:
4a:b3:d6:4b:80:96:dc:40:93:a8:b8:cb:e4:86:d5:a8:91:ea:
5c:cf:77:08:00:e0:ae:0a:19:9b:2a:ff:2a:48:b7:ba:e3:90:
cf:b4:d9:42:86:b8:4b:c0:69:a7:7b:18:8d:da:d0:25:4b:0a:
5b:9f:b7:35:d2:fa:bf:32:40:1b:7a:c4:9c:b5:06:65:63:95:
b5:90:3a:79:66:61:66:31:bf:e0:45:1b:07:54:4a:ca:b7:94:
6c:61:64:10:92:18:d7:85:40:ec:48:d7:c4:aa:2d:68:5f:fd:
94:83:d8:d1:55:43:3a:43:71:fc:cb:72:98:9f:7d:68:28:51:
00:49:8f:d5:d4:ad:ad:6f:b0:f4:2b:b7:49:f4:3a:0c:dd:b5:
14:77:09:f6:e8:74:12:4d:92:6c:ae:04:73:ff:00:86:b2:4d:
73:bd:77:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org