Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/awqgdF7YqfEsb-H4qiA5TNl1GcE.roa
File: awqgdF7YqfEsb-H4qiA5TNl1GcE.roa (raw, json)
Hash identifier: kq2DCEUe+EbgmBTiRp76SIaeijw8YkqCnaXz00fMDeo=
Subject key identifier: 6B:0A:A0:74:5E:D8:A9:F1:2C:6F:E1:F8:AA:20:39:4C:D9:75:19:C1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018FF89815A196B515D88C792F65399B4BFB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/awqgdF7YqfEsb-H4qiA5TNl1GcE.roa
Signing time: Sat 08 Jun 2024 16:04:27 +0000
ROA not before: Sat 08 Jun 2024 16:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.57.241.0/24 maxlen: 24
45.135.181.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
45.144.172.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
94.177.147.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
188.208.103.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 15:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f8:98:15:a1:96:b5:15:d8:8c:79:2f:65:39:9b:4b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 16:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b0aa0745ed8a9f12c6fe1f8aa20394cd97519c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c4:59:89:5a:8c:88:d6:07:54:83:5c:12:c9:
70:9f:a2:a5:d4:b2:81:e5:9d:c4:66:70:9e:e7:84:
98:ed:e6:ed:ee:a8:45:3a:95:61:55:42:df:70:6e:
25:16:62:54:ea:6a:e9:a5:6a:ed:4a:27:01:6b:87:
ad:62:d2:7d:54:18:84:fb:b0:14:9e:d4:68:81:02:
01:50:f1:4c:6c:1e:6f:79:11:cf:b5:8e:ef:06:72:
cb:b5:0f:3a:06:6e:33:a6:7a:9c:b8:5a:83:62:76:
25:3d:a0:cd:29:4b:0f:50:ee:7e:1c:61:29:0c:48:
21:1c:2f:35:f9:0e:13:98:d1:63:e3:00:27:2b:2b:
06:43:3e:40:92:15:90:54:d7:9a:bc:aa:68:2b:52:
83:90:1a:23:dd:e9:ad:99:55:a9:6f:8e:f4:50:85:
b2:fa:09:f5:17:07:50:05:5a:30:7a:bf:b4:f2:5c:
a7:0f:36:79:e0:28:89:b7:1c:24:95:4c:cc:84:b9:
63:a6:85:80:d2:0c:67:be:2e:b4:33:20:8f:65:c6:
fe:95:78:9f:f5:aa:c5:63:a8:2f:5f:70:61:fb:c2:
5a:03:bd:a4:91:99:16:a0:ef:c3:32:68:1a:ce:bd:
8e:e1:31:15:4e:63:c6:5c:0e:0a:04:00:c1:68:4e:
95:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0A:A0:74:5E:D8:A9:F1:2C:6F:E1:F8:AA:20:39:4C:D9:75:19:C1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/awqgdF7YqfEsb-H4qiA5TNl1GcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
45.135.181.0-45.135.183.255
45.144.172.0/24
86.107.100.0/24
89.34.106.0/24
92.114.32.0/24
93.114.183.0/24
94.177.147.0/24
188.64.142.0/24
188.208.103.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:b1:dc:2d:e6:10:27:18:55:0c:46:96:44:fe:20:ef:b5:9b:
92:8f:da:7d:b2:ec:1a:6f:50:7b:b8:8b:0f:4f:12:9e:c4:a6:
7f:15:cc:b5:e0:a7:44:07:f6:9e:f2:fa:5e:e8:c3:5b:6e:5d:
5d:a0:05:75:9c:fd:27:24:9f:23:54:a8:4f:14:4e:b3:33:fb:
46:b7:5b:5e:00:d5:f1:b2:0d:1b:54:07:d9:1b:ca:20:61:87:
21:61:20:5d:b4:59:fe:3d:c4:f6:c6:3d:bb:b2:30:6a:2b:fe:
60:71:41:fd:89:9b:43:77:24:dc:75:ae:a8:e9:f9:2d:26:25:
1c:be:c3:8a:09:95:b2:cd:ff:a1:29:c1:38:a0:3c:89:c2:b1:
a8:d1:13:cf:06:2b:25:34:cd:29:4f:cb:62:92:33:fe:68:84:
07:ba:b2:3c:0a:d1:6f:4b:f0:57:de:16:2f:ec:eb:1c:fc:9d:
44:6c:9d:3c:2c:60:cd:50:bf:88:09:bd:00:9f:44:ae:db:c1:
6c:fe:f1:ba:fb:2f:29:e1:7e:ac:61:d8:1c:e8:3e:6d:a5:47:
ee:30:7a:87:c7:ce:ec:3c:9c:45:bb:df:1f:0a:f5:ef:1e:a8:
15:f1:08:c1:93:f6:bd:fb:dd:ab:da:3b:95:80:50:af:6a:87:
ed:31:a8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 18:05:58 2024 by rpki-client on console-fra.rpki-client.org