Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SkX5TgpTBgBAY3J9ltljFyZtlDs.roa
File: SkX5TgpTBgBAY3J9ltljFyZtlDs.roa (raw, json)
Hash identifier: naWLaNmMsKkgJnToIecfhYqT9MDvIbFIm+nIbI67KCg=
Subject key identifier: 4A:45:F9:4E:0A:53:06:00:40:63:72:7D:96:D9:63:17:26:6D:94:3B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0187E0A8AC47549E128DC75EBDCFB18D41E8
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SkX5TgpTBgBAY3J9ltljFyZtlDs.roa
Signing time: Wed 03 May 2023 08:09:23 +0000
ROA not before: Wed 03 May 2023 08:09:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.50.0/24 maxlen: 24
86.107.51.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 May 2023 08:54:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:a8:ac:47:54:9e:12:8d:c7:5e:bd:cf:b1:8d:41:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 3 08:09:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a45f94e0a5306004063727d96d96317266d943b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:00:ed:56:a7:b6:f9:a2:79:0f:3a:30:f3:ba:
e2:18:22:d7:5a:b9:4f:4b:40:4c:2c:a6:93:72:19:
5f:33:a4:f0:65:34:52:8d:76:36:bc:88:41:7c:b4:
4e:b4:86:1c:51:70:18:9c:35:13:92:68:ea:f1:c8:
0a:a4:e6:06:d5:46:85:d1:b3:c0:21:17:d2:83:0b:
5b:17:07:63:e7:7b:2a:9f:9e:22:11:93:68:ab:f0:
3c:0b:3f:a0:33:4c:95:3a:8f:a2:fd:e9:50:49:ad:
00:af:f7:ae:98:30:83:79:50:de:e1:9a:cb:45:1d:
c9:40:89:ff:51:e1:64:70:ea:26:b6:b3:81:f1:16:
7f:6b:99:9e:62:a7:1e:60:14:fa:d4:e1:90:5f:f3:
20:9b:f2:91:98:db:1a:35:fb:d4:be:d5:d5:01:98:
c6:ee:7b:2c:df:ec:4e:cb:f2:95:16:d7:c8:8b:42:
f8:ba:1d:99:f1:71:3f:aa:ed:7b:5c:f3:d1:20:b7:
1b:08:b4:4f:e6:77:07:96:1b:b7:ab:b7:b2:25:93:
5c:90:7b:54:5a:1e:c2:24:08:89:03:05:cd:c1:b3:
db:f6:49:71:cc:e3:c2:38:e3:25:f0:ff:ff:d6:bd:
f2:be:ff:d0:78:65:04:8a:b5:91:62:93:c5:69:c7:
54:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:45:F9:4E:0A:53:06:00:40:63:72:7D:96:D9:63:17:26:6D:94:3B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SkX5TgpTBgBAY3J9ltljFyZtlDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.50.0/23
89.34.219.0/24
89.35.130.0/23
89.45.35.0/24
94.198.171.0/24
176.223.188.0/24
188.214.107.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
99:76:5a:9d:0b:00:3f:a3:6d:44:51:e8:51:f5:37:af:d4:0f:
91:07:91:7b:f7:61:77:4f:03:f9:48:db:25:a3:8c:df:0b:34:
4b:db:6c:92:37:2c:3f:0d:4d:fb:7f:07:b0:17:b9:d3:44:6d:
f8:4c:eb:fc:d6:15:52:3e:ce:d6:1e:a4:bc:89:1f:20:dd:fc:
c1:0a:59:db:5d:96:4e:20:1a:95:c2:fe:42:ec:da:d4:8f:83:
74:18:20:39:28:ca:e0:5b:f1:20:1e:90:d5:85:62:36:1a:18:
fc:7a:22:29:f1:97:4b:56:c3:2b:cd:ef:ab:fd:4b:52:4c:de:
6d:e3:06:f4:01:09:09:34:4d:da:fb:f8:18:68:90:44:f8:d2:
a6:dc:a4:4b:05:17:c5:53:c9:02:94:2c:11:63:c6:b2:1d:aa:
e8:76:1b:cf:fc:72:75:da:5f:63:a8:3d:d5:54:62:04:9f:5e:
74:03:b6:92:96:74:82:46:79:49:73:bb:de:f8:31:b9:8a:f5:
94:d0:23:19:50:59:a9:4a:4c:c8:49:ec:67:f4:fc:ad:75:25:
47:94:71:b9:99:43:a0:29:a9:81:b6:3d:1e:72:bb:2f:5e:9b:
5b:ba:bb:3f:08:41:4c:32:f2:19:53:c3:1a:4b:3f:f7:99:68:
d9:96:f0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org