Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Xdye1SZK1MMZWNOC03XUlQvKbfg.roa
File: Xdye1SZK1MMZWNOC03XUlQvKbfg.roa (raw, json)
Hash identifier: qOpyXxxYxHL3gdTxekJLDYYgU4cO15euSg6wgAZuKNc=
Subject key identifier: 5D:DC:9E:D5:26:4A:D4:C3:19:58:D3:82:D3:75:D4:95:0B:CA:6D:F8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01892049BB6D53D3F5674BE3A8850BF2569C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Xdye1SZK1MMZWNOC03XUlQvKbfg.roa
Signing time: Tue 04 Jul 2023 09:44:10 +0000
ROA not before: Tue 04 Jul 2023 09:44:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 2.57.240.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 19:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:49:bb:6d:53:d3:f5:67:4b:e3:a8:85:0b:f2:56:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 4 09:44:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ddc9ed5264ad4c31958d382d375d4950bca6df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:d4:fd:e0:4f:51:36:03:e6:0d:a7:02:2f:
f0:46:25:83:9c:03:49:db:d2:8d:fc:b2:5c:1d:5e:
bf:f6:1e:31:c2:71:da:b1:11:db:40:e5:1a:ec:4b:
49:d6:c4:4e:51:c2:15:87:4c:6b:f8:19:b7:f2:3b:
45:d8:84:c5:6f:b9:cd:4f:d1:86:52:28:e8:8e:0c:
53:83:22:3a:37:14:62:96:02:e5:24:f3:b8:46:24:
6a:ff:9a:cd:71:22:79:b5:d8:c0:87:24:54:61:b3:
db:01:3f:b3:28:19:1c:17:5b:93:80:5a:fa:12:69:
ca:a2:05:90:75:0d:09:1a:4e:bb:5a:5a:45:f0:05:
c4:7e:6f:0a:91:34:5e:3e:15:c9:35:b4:61:22:87:
2a:10:c4:81:34:a4:41:7e:07:e0:18:8f:12:d6:eb:
a8:83:39:9a:d7:d4:d6:03:4e:c5:22:c4:a4:4f:e1:
41:ff:5c:c9:b1:59:8e:9f:1a:4d:a8:e2:5b:79:52:
57:4e:de:a6:b9:90:59:09:95:60:70:4a:b8:d4:1b:
88:b1:f8:a6:e7:d5:f4:a2:d3:85:cd:89:97:f4:c1:
b6:58:6c:3a:34:b0:68:ff:56:f0:de:8e:fc:8a:09:
62:2a:8b:0a:3f:54:af:2d:ca:4e:15:2b:be:06:8a:
80:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DC:9E:D5:26:4A:D4:C3:19:58:D3:82:D3:75:D4:95:0B:CA:6D:F8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Xdye1SZK1MMZWNOC03XUlQvKbfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
77.81.182.0/24
86.107.168.0/24
89.40.215.0/24
89.43.62.0/24
94.177.51.0/24
94.177.150.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f1:27:87:f1:bb:70:f2:fc:df:64:3a:19:fb:27:81:22:90:
13:6a:fb:a6:29:3a:2e:0e:5e:16:63:fd:c3:b8:ec:fb:33:dc:
b8:e0:10:48:8e:e0:62:8e:ee:21:a7:b8:cb:04:e0:f1:85:62:
75:6d:bf:09:7e:32:3c:a9:42:d9:c0:8c:ad:05:3e:73:0f:61:
a2:d6:4d:c8:19:c4:1e:c3:5a:93:f5:9b:9f:50:1d:ce:37:b4:
ff:83:11:7f:10:61:8f:ea:e3:f4:34:54:18:5d:f2:c5:bf:fc:
96:62:52:11:b1:f3:d4:23:19:71:98:f3:df:68:2c:5c:ab:bd:
da:17:69:b0:24:c9:ea:cd:ce:e4:da:71:94:5a:d9:1e:18:68:
35:43:4f:92:6b:23:00:29:2e:d7:e6:7e:e0:ad:2a:ae:3d:39:
14:ae:e1:5a:cb:cb:ce:55:cb:99:be:27:3d:56:f9:16:80:0c:
67:8d:47:43:aa:42:ba:17:88:fc:fa:77:5e:0c:96:85:2b:74:
42:36:9b:da:f1:98:83:15:10:af:8a:d1:27:8c:5a:ed:f5:54:
5e:8f:2d:82:d4:3d:8c:b3:7c:a5:35:b6:a6:e7:46:1c:09:4a:
56:0b:15:c7:9d:d8:a7:7b:67:7f:7b:f7:d9:47:13:36:38:e3:
2b:c1:15:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org