Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_sHNvBW6Xw8PdpsTawo5jdRDrRo.roa
File: _sHNvBW6Xw8PdpsTawo5jdRDrRo.roa (raw, json)
Hash identifier: ZYjb5XkkRPdfQgUBXmAqkNmvjD6vqETFrY4Wt6t44iY=
Subject key identifier: FE:C1:CD:BC:15:BA:5F:0F:0F:76:9B:13:6B:0A:39:8D:D4:43:AD:1A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01877AC2D58D76F9C0736966E46EDD9F164B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_sHNvBW6Xw8PdpsTawo5jdRDrRo.roa
Signing time: Thu 13 Apr 2023 13:16:41 +0000
ROA not before: Thu 13 Apr 2023 13:16:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
185.112.249.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 04:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:c2:d5:8d:76:f9:c0:73:69:66:e4:6e:dd:9f:16:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 13 13:16:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fec1cdbc15ba5f0f0f769b136b0a398dd443ad1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:ab:fc:33:f5:de:cd:a0:7e:dc:db:60:f0:
e4:3b:2e:2f:59:bd:1f:08:3a:b6:a5:53:bc:75:a1:
6d:f8:b8:0c:10:1d:7e:57:31:c6:3d:97:a3:2e:81:
5d:43:ac:4e:78:11:09:ee:d6:07:03:fa:e2:ba:9f:
8a:66:33:e9:df:b2:3e:bc:ea:9e:4a:f9:50:56:19:
20:7c:b9:b4:49:d0:62:e8:bf:1d:c3:b2:ce:fc:2b:
20:ba:2a:e2:12:ac:4a:3f:a4:c2:d6:19:96:7e:e9:
48:1c:ac:3f:1e:3e:a6:80:02:e4:9b:8b:79:c7:bc:
7f:f6:15:0e:0f:ca:29:e3:a9:dc:a6:2c:89:6d:dc:
97:92:8d:8a:02:22:24:03:8c:4d:b3:73:43:27:f2:
20:46:10:ac:98:23:f0:17:a3:68:26:cf:4a:0d:43:
e3:0e:09:05:6e:00:c4:8d:50:5f:35:66:e7:6f:9d:
d3:21:f7:92:6f:50:b0:87:0e:a8:0b:48:f2:1d:0b:
39:f9:79:65:5e:c0:7c:fa:65:2a:8f:22:0f:4c:b0:
c7:b6:34:60:6d:68:69:c9:34:a4:24:fc:83:24:a6:
80:e6:f5:55:2e:f9:e7:85:04:38:71:1f:5e:67:91:
6e:1f:4b:c2:00:af:bb:2e:f1:05:e9:6b:38:69:c1:
0e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C1:CD:BC:15:BA:5F:0F:0F:76:9B:13:6B:0A:39:8D:D4:43:AD:1A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_sHNvBW6Xw8PdpsTawo5jdRDrRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
86.107.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.119.0/24
89.35.129.0-89.35.131.255
89.40.70.0/24
89.45.35.0/24
89.47.55.0/24
94.198.171.0/24
176.223.188.0/24
185.112.249.0/24
188.241.136.0/23
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
11:70:62:1f:d0:f2:62:a5:8d:cd:6e:82:d4:b0:66:3b:99:d6:
e3:3b:62:10:a4:f0:d7:9f:4a:34:58:d6:dd:29:c8:ee:41:30:
3f:a6:24:9b:b7:94:c7:1f:40:0a:27:c2:1d:02:25:e4:4a:33:
39:2d:93:37:64:b4:25:9e:86:d6:0e:81:5e:9a:c8:04:53:91:
fe:55:4f:ae:26:a8:e7:ca:04:7e:15:e8:5d:35:ae:ae:ff:d8:
d6:b0:06:50:1b:f7:22:83:39:4c:a5:52:ec:4b:f0:b4:24:70:
65:89:e8:45:a2:ec:6c:1a:9b:bd:01:d2:9b:28:eb:99:3b:3c:
82:d9:eb:e7:10:c8:61:7c:59:76:19:86:e1:b2:6e:0c:34:dd:
10:1e:15:4d:5b:9c:d8:31:15:5e:ae:7e:dc:55:b5:e2:86:d1:
8e:25:93:c5:4d:89:0f:61:ba:4a:ef:91:85:47:bf:cd:5b:43:
52:42:71:dd:f6:ec:d1:17:2f:96:f2:c3:26:0d:55:4c:89:12:
d9:0a:97:f1:38:75:19:b1:2d:e1:71:ef:e7:ff:7f:e9:3f:ab:
a8:5a:20:2c:ca:82:da:df:08:17:4d:56:92:c1:da:dd:f0:93:
7b:a6:07:e7:8f:7a:82:16:9b:20:06:b8:46:55:cf:4a:e8:50:
88:1f:0c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org