Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_3eQibMcFgAYc_XkJMp3lPXdAjc.roa
File: _3eQibMcFgAYc_XkJMp3lPXdAjc.roa (raw, json)
Hash identifier: cEvfYKFmYhhFIaaeWyaSYdQvoXXbj0FRNXjSBkZbCQA=
Subject key identifier: FF:77:90:89:B3:1C:16:00:18:73:F5:E4:24:CA:77:94:F5:DD:02:37
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E6628101522DCC9F350223B8BADDC5288
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_3eQibMcFgAYc_XkJMp3lPXdAjc.roa
Signing time: Fri 22 Mar 2024 12:34:45 +0000
ROA not before: Fri 22 Mar 2024 12:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.180.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:66:28:10:15:22:dc:c9:f3:50:22:3b:8b:ad:dc:52:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 22 12:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff779089b31c16001873f5e424ca7794f5dd0237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e2:44:76:56:ed:48:6d:41:76:85:fd:94:45:
44:56:31:c2:60:75:b8:c8:6f:8b:43:73:af:91:b1:
d6:41:46:75:58:ac:54:c9:a8:7f:31:da:97:f8:bd:
3b:a3:53:d6:75:9f:ef:bd:04:6a:57:60:52:41:44:
98:5e:09:12:08:50:18:79:80:77:5d:33:68:ff:2b:
d6:83:6f:4a:dc:92:50:f1:11:d0:54:29:9e:7c:08:
f6:3e:c0:c7:52:f8:da:b2:c7:48:6d:b6:c2:41:ab:
a3:6b:d5:90:81:76:5d:1e:a9:34:44:bc:ec:b6:f0:
32:09:0f:a9:91:95:1c:fd:cf:01:80:2d:24:b3:20:
21:f0:4c:e7:9a:09:92:a2:ce:62:fb:b2:97:61:de:
2f:d5:0c:9e:e1:e1:53:eb:69:9f:ec:f5:01:c1:41:
4b:56:50:f2:c9:6d:53:a0:56:72:fc:aa:c6:0c:7d:
4b:f5:19:a8:42:29:02:71:d0:96:34:f8:ef:37:77:
fb:cc:1a:d5:26:cf:9d:66:d0:b8:74:5b:d2:46:f3:
d0:fe:9b:e7:b2:53:b4:82:f0:c6:54:73:78:1c:33:
63:4e:3d:8f:59:44:65:4b:ce:29:80:cb:e1:fc:7f:
36:d8:c9:39:7c:3c:8f:69:f7:ad:a1:1e:00:2c:3d:
cd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:77:90:89:B3:1C:16:00:18:73:F5:E4:24:CA:77:94:F5:DD:02:37
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_3eQibMcFgAYc_XkJMp3lPXdAjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.180.0/24
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
Signature Algorithm: sha256WithRSAEncryption
45:80:c9:80:7d:2a:01:ad:16:5e:3a:a0:46:22:89:58:ff:71:
8d:39:d4:21:28:d3:de:34:e2:c1:0d:5b:02:f4:15:3f:31:8f:
60:26:6e:5c:20:e1:27:89:7a:e8:a6:32:3a:8a:26:9d:d9:78:
44:fa:ec:43:ca:09:cf:c4:33:ec:cf:c4:78:1d:79:ec:7b:38:
fd:a4:c9:7a:7c:18:a7:fc:e4:ed:ec:a8:ba:ee:af:6d:47:f9:
83:c2:75:5a:f6:cd:8f:3b:da:bf:b4:70:1f:47:94:d8:54:56:
64:62:84:fe:af:21:25:33:eb:7f:fa:8e:6e:72:2f:2c:b7:d4:
b7:44:15:a2:02:36:05:71:0a:41:d7:66:d6:77:f6:13:62:d4:
2d:0b:53:51:93:15:03:09:e2:7c:93:b4:47:23:bc:10:78:a8:
e5:03:ec:32:84:0d:c6:22:a2:0d:76:29:d1:8d:6a:a3:c0:b4:
1b:6a:6c:a7:ed:11:f6:d5:1d:18:46:b8:50:5a:18:7c:da:8d:
b6:0c:ef:c9:97:a2:1c:45:35:18:bd:68:b9:0d:86:6c:78:42:
92:d1:bb:5c:9a:e3:35:62:86:5e:1d:5e:13:16:fc:ab:9e:56:
ff:97:a3:3f:2b:0b:c1:e0:69:9d:43:bf:50:0d:b5:4d:5f:8a:
1b:90:fe:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org