Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gBnOLF1vNHi-OVTAsVofMEEd3Tk.roa
File: gBnOLF1vNHi-OVTAsVofMEEd3Tk.roa (raw, json)
Hash identifier: rrZyrAVSZR2oAYmrZ9gsoXgCKwgiiQVQuhSC3fil2oI=
Subject key identifier: 80:19:CE:2C:5D:6F:34:78:BE:39:54:C0:B1:5A:1F:30:41:1D:DD:39
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019137E7D0323D532D9D4D2F17D45A2BFBA7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gBnOLF1vNHi-OVTAsVofMEEd3Tk.roa
Signing time: Fri 09 Aug 2024 16:10:24 +0000
ROA not before: Fri 09 Aug 2024 16:10:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 11:52:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:e7:d0:32:3d:53:2d:9d:4d:2f:17:d4:5a:2b:fb:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 9 16:10:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8019ce2c5d6f3478be3954c0b15a1f30411ddd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:12:fd:99:a8:a8:9f:01:c2:90:cb:c5:80:cd:
28:00:4b:e4:0b:36:3c:20:1f:e3:42:38:cd:8c:05:
e5:6e:bb:36:24:8a:3a:a5:71:e4:41:7e:aa:80:ce:
d4:a9:52:0c:d6:46:33:d5:dd:98:4d:0f:07:53:77:
8f:df:1b:03:ba:f2:0d:9b:27:a5:50:e4:f9:73:a6:
df:c6:87:78:03:76:f8:16:77:42:60:8c:4e:ec:f1:
e2:a1:c3:d4:69:21:ea:e0:84:e6:c2:b4:a7:98:b1:
2a:2e:b2:9a:cc:c2:ec:2e:6a:17:9e:61:0d:a2:7e:
ef:3f:27:9e:6c:30:79:2c:e7:f9:17:fe:6e:9b:bb:
fd:3f:ee:56:d9:39:9e:c0:2f:31:e1:1e:d8:0d:da:
a9:23:68:e2:9f:88:5d:dc:10:d4:05:da:eb:e8:11:
26:68:47:fc:3a:f6:fb:f3:ce:b1:64:15:c5:d2:aa:
a4:f4:6c:53:a0:43:aa:69:1c:0e:2e:41:30:e9:56:
6d:84:d2:2a:45:6c:8d:a5:09:f3:c1:ad:09:4e:7d:
91:56:70:1c:29:a9:c0:3c:72:95:49:7b:a3:62:7d:
97:1c:bd:af:d1:06:90:d7:64:98:57:bb:42:22:f0:
06:1f:40:5a:43:7b:16:87:e1:31:4b:09:a1:b8:96:
72:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:19:CE:2C:5D:6F:34:78:BE:39:54:C0:B1:5A:1F:30:41:1D:DD:39
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gBnOLF1vNHi-OVTAsVofMEEd3Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
20:67:5c:28:8e:b0:00:e3:74:b7:67:45:fa:0d:dd:3f:87:e9:
59:fb:76:2e:2a:a5:27:08:de:7b:73:80:13:e0:31:98:6a:14:
32:ea:38:29:da:93:e7:df:db:6f:db:25:c8:8a:59:0a:ee:d0:
b5:30:65:4d:45:9d:79:cf:a8:93:45:a5:6c:82:e1:2c:f2:ad:
c4:01:34:1a:17:b9:2b:f7:cc:2b:70:5e:73:1a:59:c4:41:28:
57:e0:42:e3:44:91:64:47:73:fe:00:89:9d:d0:c0:a9:66:bb:
03:b6:72:db:71:b4:65:2c:8c:05:97:e0:1d:7a:3a:35:d7:c9:
e4:ea:ab:66:3b:67:71:33:db:ba:a6:99:6a:7b:97:2d:5e:46:
36:1e:59:c6:66:45:f8:90:c9:d0:85:73:a1:2f:33:cc:48:d7:
7b:a6:93:74:e3:39:40:3e:f4:42:1a:96:a1:8e:70:b7:23:f8:
69:29:ff:ff:a9:ef:6b:86:d5:21:70:32:40:ef:c6:c2:87:24:
9a:92:f7:b3:74:b9:d0:51:e2:1d:e9:8f:90:a6:84:5d:99:b1:
4d:07:1b:e2:19:4b:0b:ee:cb:a0:f9:3b:a8:ee:44:6e:c6:5e:
ed:01:86:63:fd:72:61:d7:1d:4f:a0:e5:33:1d:18:52:59:18:
32:3a:c7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 14:09:09 2024 by rpki-client on console-fra.rpki-client.org