Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fHH8tQlaFYqcWDCWo3w3RXQiyVk.roa
File: fHH8tQlaFYqcWDCWo3w3RXQiyVk.roa (raw, json)
Hash identifier: 7leOmhyrusbEiLyE1NBk0TQsnOuABYOkVupCl5IMn98=
Subject key identifier: 7C:71:FC:B5:09:5A:15:8A:9C:58:30:96:A3:7C:37:45:74:22:C9:59
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189F98E1F6D3B87299582587868093183CB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fHH8tQlaFYqcWDCWo3w3RXQiyVk.roa
Signing time: Tue 15 Aug 2023 14:16:28 +0000
ROA not before: Tue 15 Aug 2023 14:16:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 2.57.241.0/24 maxlen: 24
176.126.174.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Aug 2023 15:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f9:8e:1f:6d:3b:87:29:95:82:58:78:68:09:31:83:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 15 14:16:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c71fcb5095a158a9c583096a37c37457422c959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d7:48:5a:67:c2:8b:07:4b:d1:1b:4b:53:82:
7e:00:2c:75:e6:ae:f8:48:be:72:32:35:c0:cb:51:
17:85:92:90:97:82:87:c6:85:63:81:dd:21:ec:73:
86:25:52:01:d5:82:22:7c:dd:43:05:37:ae:d0:d9:
0c:9e:1f:e2:bc:2d:9e:fe:95:99:f0:58:94:b4:50:
0a:b6:51:bb:a7:5b:9e:d2:35:0d:1c:45:1e:74:da:
ca:6f:87:5a:ac:6c:a7:91:58:52:eb:05:a4:34:fa:
b8:8d:31:90:8c:83:ea:1d:86:a0:f8:3c:bb:26:ba:
01:f1:2c:52:89:d7:92:0b:78:fd:41:15:cf:f7:55:
09:8d:26:40:53:24:2e:22:5f:0c:08:6f:92:1c:05:
4e:ff:a1:6d:1c:d1:98:ac:c9:d7:d0:5f:4c:0c:ab:
5e:f3:8e:64:1b:18:1a:64:32:b2:49:48:67:94:45:
84:e1:3a:5e:68:72:81:ff:22:63:94:b0:97:23:22:
82:a4:3d:4e:24:cd:2c:14:d7:9e:95:2d:78:26:9f:
09:46:50:f4:a8:8e:3a:78:38:aa:fe:fb:c8:9b:05:
66:36:42:3c:d7:42:ad:20:90:10:7b:cb:f7:48:15:
84:e7:ff:37:e0:c6:c1:bf:0e:cc:84:52:a2:04:7e:
91:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:71:FC:B5:09:5A:15:8A:9C:58:30:96:A3:7C:37:45:74:22:C9:59
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fHH8tQlaFYqcWDCWo3w3RXQiyVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
45.88.12.0/24
86.107.100.0/24
93.115.203.0/24
94.177.106.0/24
176.126.174.0/24
Signature Algorithm: sha256WithRSAEncryption
06:9a:98:31:49:76:9f:38:da:b4:8c:13:cf:ae:ba:79:ef:77:
48:5f:84:c3:37:e3:59:4b:86:31:10:c0:ec:37:07:b8:8f:08:
d8:10:72:ac:22:63:9e:70:5f:8f:22:69:e2:88:e5:53:7c:ff:
de:1b:66:de:36:5e:67:57:41:72:99:83:60:cd:8a:c5:be:fe:
87:8d:aa:c0:18:4c:5e:76:7c:3d:99:16:f6:14:e8:b9:f6:e1:
dc:f3:10:0b:3c:96:6d:fa:c5:0d:db:ab:da:0b:94:be:09:e4:
b2:aa:36:e7:22:11:8f:4d:f8:7b:b6:1c:53:fe:f4:76:23:83:
ab:cd:bb:dc:2d:be:20:ad:6e:d0:eb:e1:4c:7a:07:b0:a7:e7:
17:fe:78:19:f9:5a:ea:a2:89:77:ab:d4:7d:f0:f5:a9:41:64:
d0:b3:a7:fd:35:1d:7a:8a:36:de:b5:f1:7d:9d:80:2f:60:3e:
2d:da:d6:d4:cc:cf:8e:c8:be:8a:e3:70:c2:e7:27:36:45:7b:
3a:0d:02:aa:50:81:35:d6:68:fc:ee:d6:e7:4c:93:31:69:63:
aa:a8:ca:aa:7f:a9:d2:00:fc:cc:39:fc:21:9c:47:4c:fb:a4:
75:7c:fb:97:9a:57:36:5f:3d:87:20:9a:1d:8d:ad:a6:1e:c6:
5e:74:85:ef
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYn5jh9tO4cplYJYeGgJMYPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwODE1MTQxNjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzcxZmNiNTA5NWExNThhOWM1ODMwOTZhMzdjMzc0NTc0MjJjOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzddIWmfCiwdL0RtLU4J+ACx15q74
SL5yMjXAy1EXhZKQl4KHxoVjgd0h7HOGJVIB1YIifN1DBTeu0NkMnh/ivC2e/pWZ
8FiUtFAKtlG7p1ue0jUNHEUedNrKb4darGynkVhS6wWkNPq4jTGQjIPqHYag+Dy7
JroB8SxSideSC3j9QRXP91UJjSZAUyQuIl8MCG+SHAVO/6FtHNGYrMnX0F9MDKte
845kGxgaZDKySUhnlEWE4TpeaHKB/yJjlLCXIyKCpD1OJM0sFNeelS14Jp8JRlD0
qI46eDiq/vvImwVmNkI810KtIJAQe8v3SBWE5/834MbBvw7MhFKiBH6RawIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFHxx/LUJWhWKnFgwlqN8N0V0IslZMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZkhIOHRRbGFGWXFjV0RDV28zdzNSWFFpeVZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAAjnxAwQA
LVgMAwQAVmtkAwQAXXPLAwQAXrFqAwQAsH6uMA0GCSqGSIb3DQEBCwUAA4IBAQAG
mpgxSXafONq0jBPPrrp573dIX4TDN+NZS4YxEMDsNwe4jwjYEHKsImOecF+PImni
iOVTfP/eG2beNl5nV0FymYNgzYrFvv6HjarAGExednw9mRb2FOi59uHc8xALPJZt
+sUN26vaC5S+CeSyqjbnIhGPTfh7thxT/vR2I4OrzbvcLb4grW7Q6+FMegewp+cX
/ngZ+Vrqool3q9R98PWpQWTQs6f9NR16ijbetfF9nYAvYD4t2tbUzM+OyL6K43DC
5yc2RXs6DQKqUIE11mj87tbnTJMxaWOqqMqqf6nSAPzMOfwhnEdM+6R1fPuXmlc2
Xz2HIJodja2mHsZedIXv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org