Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g-09ktZRFSZTZSHcj9xNV4fs2Hg.roa
File: g-09ktZRFSZTZSHcj9xNV4fs2Hg.roa (raw, json)
Hash identifier: yVqYslMK1Q29a/+srwh0XKZ6giPrwZEzTb+Yz51p6/c=
Subject key identifier: 83:ED:3D:92:D6:51:15:26:53:65:21:DC:8F:DC:4D:57:87:EC:D8:78
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019137DCD3CC6798372913E344DAC99A4940
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g-09ktZRFSZTZSHcj9xNV4fs2Hg.roa
Signing time: Fri 09 Aug 2024 15:58:24 +0000
ROA not before: Fri 09 Aug 2024 15:58:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
188.208.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Sep 2024 01:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:dc:d3:cc:67:98:37:29:13:e3:44:da:c9:9a:49:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 9 15:58:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83ed3d92d6511526536521dc8fdc4d5787ecd878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:75:ce:fc:8a:a3:38:8e:66:32:3a:1a:93:6a:
04:64:1a:bd:1b:2c:39:3e:e8:bb:9c:52:7f:eb:f0:
24:ac:17:eb:5f:dc:1b:a2:e9:a9:0f:68:de:12:8f:
a3:ef:b7:4a:aa:bf:60:1a:80:82:85:23:25:56:eb:
00:51:24:1a:9f:0d:f9:f7:9a:cb:20:d4:ec:ec:2a:
42:b2:44:70:02:74:89:98:e5:0f:72:18:3b:14:79:
8e:8d:86:b9:83:7a:05:fc:fe:17:19:39:c9:f0:82:
61:82:92:18:b1:3b:4b:97:db:72:3d:ea:c5:e9:26:
2b:81:0f:06:6e:ee:45:27:2a:d6:33:ab:25:2e:b9:
1e:ad:54:03:de:07:1e:29:ee:ed:7a:9b:cf:39:4a:
70:fc:72:33:33:01:60:02:ec:a6:83:df:22:64:06:
6e:d1:8d:ca:92:7e:2b:39:6e:4b:a4:e5:62:72:da:
4a:af:b3:85:b0:b9:af:9e:84:2f:d1:74:fb:2b:54:
58:7e:6f:98:e7:e9:0e:c2:cb:61:ed:05:2d:27:33:
3b:be:a5:6c:65:1c:13:36:c0:ee:75:7a:35:46:29:
f2:cc:fd:d2:6b:a6:09:25:9e:99:0c:f9:c9:28:7a:
e2:63:ea:46:5b:6a:43:8b:4c:6e:bf:58:93:d4:31:
33:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:ED:3D:92:D6:51:15:26:53:65:21:DC:8F:DC:4D:57:87:EC:D8:78
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g-09ktZRFSZTZSHcj9xNV4fs2Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.141.219.0/24
188.208.110.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:62:94:3e:ef:5e:82:d4:35:95:0a:60:95:1c:99:5b:cb:ad:
5f:2c:56:b4:a8:72:ca:9c:eb:04:98:8c:59:1f:9e:53:92:40:
8b:68:73:50:39:5c:ec:92:92:33:c8:87:50:1b:20:3b:56:fc:
9f:3a:3d:c7:24:32:30:81:d6:75:01:95:dd:09:35:c6:a9:df:
92:26:a1:ce:70:9c:79:cb:43:0b:04:a5:4f:18:68:e5:57:ff:
90:db:bc:20:2f:88:68:ef:2d:58:36:27:29:2b:8e:6c:6c:ca:
f3:64:05:b8:5b:d5:b5:17:04:b8:a1:98:fb:5e:7d:f1:33:6a:
74:b1:ec:01:80:cf:98:a9:f4:9f:bc:96:f6:69:21:2b:04:c1:
aa:c3:12:08:4f:f6:ad:2b:f5:e5:f4:60:db:12:53:36:dc:15:
ba:b7:d8:99:5e:16:81:79:df:31:a0:98:b9:c6:97:90:fa:af:
be:b7:b8:e3:ed:82:38:7f:56:59:31:a2:0b:ec:94:53:e0:9c:
de:46:4e:4f:c6:a7:26:50:75:56:5d:90:f3:b4:39:7c:70:18:
c8:23:76:da:71:50:d9:a4:e3:c0:f1:a6:84:13:34:5f:c7:b0:
75:1b:45:f2:f0:b9:0a:01:ee:52:ef:c2:7b:ca:57:25:45:33:
2c:65:46:41
-----BEGIN CERTIFICATE-----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Generated at Sat Sep 28 05:07:49 2024 by rpki-client on console-ams.rpki-client.org