Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tbu61MwVxIb5-1vBHKAERTvZTfU.roa
File: Tbu61MwVxIb5-1vBHKAERTvZTfU.roa (raw, json)
Hash identifier: I3qUljSFeE82fTtx+o+3Bfpe7WUuGHLyPTlg5tAAuWk=
Subject key identifier: 4D:BB:BA:D4:CC:15:C4:86:F9:FB:5B:C1:1C:A0:04:45:3B:D9:4D:F5
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01871836A4700DD1DB9B01740514124AF69E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tbu61MwVxIb5-1vBHKAERTvZTfU.roa
Signing time: Sat 25 Mar 2023 10:00:46 +0000
ROA not before: Sat 25 Mar 2023 10:00:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
185.112.249.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 04:52:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:18:36:a4:70:0d:d1:db:9b:01:74:05:14:12:4a:f6:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 25 10:00:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dbbbad4cc15c486f9fb5bc11ca004453bd94df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:24:29:65:12:ee:59:70:a1:05:9c:25:55:84:
cf:91:90:a8:5d:a9:cf:c1:29:9e:20:0e:5b:32:48:
9a:54:78:ed:69:3f:44:bf:a6:fb:c2:6b:ba:3e:15:
e3:f8:66:38:2c:50:57:38:4b:60:70:09:d7:83:f7:
0c:de:8e:bf:01:e2:fa:5a:cc:a7:71:e8:ee:48:ba:
c0:47:81:64:fe:3c:c5:a1:48:8d:f1:51:0c:65:8a:
57:34:67:30:66:94:48:f8:1b:db:4c:15:82:c2:ed:
23:25:81:67:85:82:2f:fc:8e:5f:a9:7c:c1:52:81:
7f:7c:40:d5:a3:ea:04:3f:3a:cb:17:cd:e1:b2:59:
ad:e7:f8:4e:c5:68:19:9c:00:e2:ef:27:f8:aa:a2:
f2:a2:fe:54:2d:20:f3:6f:df:4e:b7:57:45:89:96:
ee:87:30:0c:85:78:2e:38:04:07:c0:b4:06:25:b9:
b9:5c:4f:74:06:c4:21:c8:e0:b2:94:55:56:c0:b1:
8a:85:26:27:30:dd:ae:bd:2f:60:b3:63:80:5d:d4:
f3:13:8f:f3:5c:a1:16:90:67:aa:d1:e1:17:2e:ad:
ff:82:1b:f7:72:7c:0c:ee:32:b3:c7:65:8a:55:27:
a9:0a:7a:ed:38:0f:b5:db:97:94:28:3c:5f:0a:bd:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BB:BA:D4:CC:15:C4:86:F9:FB:5B:C1:1C:A0:04:45:3B:D9:4D:F5
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tbu61MwVxIb5-1vBHKAERTvZTfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.129.0-89.35.131.255
93.114.244.0/24
94.198.171.0/24
185.112.249.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:7a:2b:4e:51:1f:ee:18:23:22:e3:3c:9f:9a:cb:05:64:51:
ff:6c:81:7b:2a:82:1f:82:e3:4f:ff:c1:9e:2b:7b:ac:5b:a5:
ec:95:bc:15:15:1b:38:e7:2e:e8:9a:d0:80:47:23:2b:82:72:
cf:59:80:36:34:40:c2:f1:22:d9:5c:6c:1f:af:3c:a3:1d:6c:
f5:ec:9d:92:12:37:18:32:61:13:9f:74:d8:4f:de:88:1e:81:
c3:76:28:12:5b:4a:5d:7a:16:76:7f:83:a7:ee:aa:59:c1:28:
c3:bb:33:ff:1a:73:99:fd:d9:8c:9b:7a:47:9c:a4:c6:85:c1:
3c:6c:f7:91:54:fd:f3:d8:fd:5f:f4:8f:40:77:bf:49:9e:c8:
81:f6:4b:10:ef:59:8c:4a:2b:bf:fb:23:19:9f:70:5c:ea:f6:
67:5d:e8:31:29:2f:e9:51:e5:fd:a4:17:42:d5:5f:1b:80:73:
27:4a:6f:dd:86:4c:59:2f:4c:87:fb:9f:f3:83:39:2c:1f:9c:
46:ca:ac:9a:cd:d3:6e:85:79:a5:67:2f:b6:b3:b2:52:6d:44:
13:bc:72:43:c0:4f:64:95:66:a5:be:aa:9b:76:8a:28:b0:83:
cb:88:61:97:4b:66:bd:07:4b:96:0a:61:a7:71:8c:7a:02:c5:
d0:b2:49:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org