Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RVFgtaMoCovI23btxGV7eULISog.roa
File: RVFgtaMoCovI23btxGV7eULISog.roa (raw, json)
Hash identifier: 65Z32bxZxshGL9xO7rl/UmwQ5r7ezxFvujbd/RCbTVM=
Subject key identifier: 45:51:60:B5:A3:28:0A:8B:C8:DB:76:ED:C4:65:7B:79:42:C8:4A:88
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189442E979B9B073A0A49B100143CE2BF73
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RVFgtaMoCovI23btxGV7eULISog.roa
Signing time: Tue 11 Jul 2023 09:00:51 +0000
ROA not before: Tue 11 Jul 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 37.153.158.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 08:41:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:2e:97:9b:9b:07:3a:0a:49:b1:00:14:3c:e2:bf:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 11 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=455160b5a3280a8bc8db76edc4657b7942c84a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a2:a2:11:7e:6e:ae:54:c4:ab:c4:5c:e7:13:
a2:b8:5f:58:ee:d8:f2:5e:cb:7f:83:30:f1:02:03:
06:d7:dc:e9:e4:aa:f2:86:26:bf:8c:c9:eb:21:31:
60:46:10:11:6d:b5:18:bf:cc:0d:11:10:88:80:ae:
d0:f4:87:db:93:7f:6c:4a:a9:4b:ab:03:16:aa:2b:
ee:23:cb:7f:93:b7:92:a0:98:18:da:f5:e1:fa:62:
3f:61:fd:3f:57:5e:3b:8d:19:90:5f:4a:a3:95:82:
3c:8f:4c:2f:02:45:61:cc:58:c6:0e:f5:58:c7:3e:
71:9e:55:da:88:31:de:e4:a7:13:84:a3:15:92:eb:
b7:8e:45:ee:36:50:d1:08:14:c4:d6:4a:00:5e:29:
b4:18:49:bf:4a:79:0e:34:c2:b3:10:56:68:c4:d7:
44:01:f4:12:c2:ac:65:6b:35:72:da:fd:a7:f7:7f:
40:51:8e:35:ec:8a:65:07:ec:30:20:ae:c2:07:29:
30:d8:6a:54:1d:8c:fc:42:d7:02:c5:d3:16:8a:f3:
35:8e:65:fd:57:a7:57:7b:fa:83:e7:9b:96:93:b2:
6d:75:13:3b:5b:2e:07:c4:7d:1b:2f:64:d6:a0:5b:
60:67:3a:81:e0:55:ac:2d:1e:67:e5:13:a6:e1:45:
6f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:51:60:B5:A3:28:0A:8B:C8:DB:76:ED:C4:65:7B:79:42:C8:4A:88
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RVFgtaMoCovI23btxGV7eULISog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
45.88.13.0-45.88.15.255
77.81.65.0/24
86.107.100.0/24
89.34.106.0/24
89.35.130.0/23
89.45.162.0/24
89.47.36.0/24
89.47.55.0/24
92.114.32.0/24
93.90.74.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
32:b4:eb:10:6c:68:e4:c5:af:aa:d1:c8:f5:8e:16:a3:da:d2:
57:39:03:4e:38:5c:58:8b:18:32:91:67:cd:41:91:82:96:6e:
f4:e0:78:71:29:77:61:08:62:58:c2:b1:75:f2:85:7a:78:92:
29:18:b9:bc:d0:49:7c:7c:f6:d4:56:4f:5c:89:68:79:6a:1b:
24:0e:17:c7:d1:5a:8a:72:17:82:e8:b0:be:ff:f8:ed:1f:97:
03:83:8b:71:ca:08:1d:cc:41:37:e4:3c:04:ff:0b:00:2f:3d:
cb:79:22:ef:09:8c:a5:aa:24:e6:1a:9a:2e:17:e6:87:25:ec:
59:bc:a0:9d:94:91:a1:f5:12:68:b8:02:d6:26:00:c3:75:41:
9a:40:de:8a:f3:85:39:58:21:86:cd:5a:12:bc:d2:20:5b:06:
6f:2b:f2:94:78:37:51:2e:75:d7:6e:a8:09:bd:c2:d2:67:32:
c0:67:59:40:61:42:34:59:72:f6:d8:34:c6:46:a3:be:9e:a1:
ee:a1:bb:a1:49:32:13:aa:e3:d1:66:a4:9c:60:85:f8:9d:7e:
f8:fb:67:3e:4a:57:ce:a5:31:07:f1:84:51:e9:e6:95:11:51:
dc:90:0d:a5:b4:a7:d1:f8:aa:76:00:10:8e:6c:04:be:f7:a7:
ec:49:ed:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org