Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/eTg6Cdcsl8Nipf5ixQdJDROU1qM.roa
File: eTg6Cdcsl8Nipf5ixQdJDROU1qM.roa (raw, json)
Hash identifier: jwI5h7RcbnF75xT73dCCKo43SPPBEDFDlF1qOuAODiI=
Subject key identifier: 79:38:3A:09:D7:2C:97:C3:62:A5:FE:62:C5:07:49:0D:13:94:D6:A3
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DC2C402EA062D932A6748266DFA01B807
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/eTg6Cdcsl8Nipf5ixQdJDROU1qM.roa
Signing time: Mon 19 Feb 2024 19:07:22 +0000
ROA not before: Mon 19 Feb 2024 19:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.140.247.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
91.132.49.0/24 maxlen: 24
91.132.51.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 11:25:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c2:c4:02:ea:06:2d:93:2a:67:48:26:6d:fa:01:b8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 19 19:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79383a09d72c97c362a5fe62c507490d1394d6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ab:8b:f0:f1:34:2b:20:e0:5f:6d:20:97:88:
04:7a:4b:42:37:06:f9:4f:a3:89:a1:c5:a0:e1:cd:
9f:1b:bb:94:86:62:f2:c8:00:ca:91:23:eb:23:ab:
40:38:27:b0:ce:73:23:6a:b8:02:73:ea:cf:20:f6:
90:95:eb:24:e8:c8:73:5a:9e:0f:5a:b2:92:33:05:
33:82:cc:8b:cf:15:c1:24:e8:63:8e:0e:17:d6:6c:
dd:1c:03:04:a1:b4:6e:c5:d5:97:12:a1:12:8b:72:
37:fe:61:7d:5f:b3:a5:a8:6f:0b:28:d6:45:b2:f4:
c1:26:2b:d2:8b:b9:83:bd:65:90:18:e4:f1:c8:16:
98:0e:30:5d:3e:b8:ea:57:bd:24:78:bb:6d:92:ac:
a4:42:e9:21:ca:1a:3a:01:21:13:69:ff:9d:ba:d4:
f9:78:4f:05:5a:3a:f3:77:29:ce:c6:e1:d8:1f:e7:
69:7b:6c:84:81:ce:18:f1:71:71:4e:cb:5c:21:7f:
e4:14:8a:8d:ff:f2:ba:f4:1a:11:aa:33:ee:a0:9d:
f2:61:bf:d4:8e:0a:a5:64:a3:ad:ca:13:7d:46:42:
5f:7c:3e:cf:95:6c:07:4d:30:47:84:47:59:d9:e8:
1e:82:86:93:32:4b:b7:63:eb:6a:9a:ae:d5:8c:11:
6c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:38:3A:09:D7:2C:97:C3:62:A5:FE:62:C5:07:49:0D:13:94:D6:A3
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/eTg6Cdcsl8Nipf5ixQdJDROU1qM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
77.81.182.0/24
89.34.106.0/24
89.35.129.0/24
89.40.215.0/24
91.132.49.0/24
91.132.51.0/24
93.114.183.0/24
128.0.41.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d4:ce:70:5b:b1:b5:53:04:0a:0a:46:86:ee:fd:e0:8b:eb:
ea:88:63:1c:4f:52:d8:59:83:0e:bb:98:b8:f0:e3:b1:c4:da:
e3:5b:4e:a6:5d:eb:be:cd:ef:a0:4f:df:eb:a1:5a:c2:4f:4b:
fc:b1:bf:a0:a1:01:2f:dd:2c:a8:c4:28:f7:eb:be:8e:8c:54:
8c:e4:a8:90:c3:c2:1d:00:63:e9:ed:8f:54:bd:35:b1:46:77:
15:c1:ad:93:ca:cf:ea:4f:5e:5f:43:9f:97:e8:17:12:54:bd:
2c:d3:05:08:e6:07:58:7d:20:f2:c4:5e:95:5b:36:78:d2:50:
25:49:27:cb:a0:97:5c:d6:b0:4b:a6:f8:c2:92:8a:b8:b0:4d:
7c:8a:52:5b:56:48:97:20:7e:1d:6a:78:1c:59:3d:e0:29:07:
75:06:a2:d9:85:b1:cf:53:55:73:6b:b6:30:a9:8c:7e:47:e9:
16:22:3b:f9:6f:2f:f6:09:87:78:a8:a3:88:ab:5e:08:1a:e2:
c0:72:2f:89:1b:98:9c:fd:46:00:f9:8d:ad:93:7a:7a:02:ac:
11:3b:7d:95:07:e1:24:8b:a1:02:58:f2:31:e4:d3:8c:96:3b:
12:2c:86:c8:8a:3c:ab:28:a6:61:54:3b:a0:42:77:8d:ac:30:
ac:e5:ee:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org