Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ktdflvZwbXobt78QoaDB1-kh26U.roa
File: ktdflvZwbXobt78QoaDB1-kh26U.roa (raw, json)
Hash identifier: 3RgJBefzscdr2ZIPql8yGihp5rgvV+nLXyR1y1QFT1U=
Subject key identifier: 92:D7:5F:96:F6:70:6D:7A:1B:B7:BF:10:A1:A0:C1:D7:E9:21:DB:A5
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018FF6C61261269866809D2E11C7D84424FD
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ktdflvZwbXobt78QoaDB1-kh26U.roa
Signing time: Sat 08 Jun 2024 07:35:27 +0000
ROA not before: Sat 08 Jun 2024 07:35:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.57.241.0/24 maxlen: 24
45.135.181.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
45.144.172.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
94.177.147.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
188.208.103.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 16:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:c6:12:61:26:98:66:80:9d:2e:11:c7:d8:44:24:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 07:35:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92d75f96f6706d7a1bb7bf10a1a0c1d7e921dba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:69:0a:9e:40:7d:8d:ea:82:ab:02:de:2c:ff:
94:be:46:65:9b:9e:33:95:24:df:2f:c8:cb:7d:6f:
fc:33:67:ee:10:f9:fb:9c:2f:ab:32:69:48:8c:82:
8f:68:39:2e:87:29:34:c3:6d:97:d9:95:0b:f9:53:
25:1e:18:75:f7:41:b7:97:34:0c:56:05:43:56:3b:
78:e9:d3:b4:17:c2:e6:14:c7:a7:92:dc:65:41:9a:
b6:f2:57:1c:ca:02:4f:86:25:db:23:34:7e:06:af:
a6:86:f1:71:d5:f9:d9:08:08:08:8c:b7:ae:e4:3f:
30:1d:d9:7a:71:cc:9f:d0:cd:7e:4f:4b:a4:a6:be:
a5:74:aa:60:ff:c9:ac:89:14:0c:c5:f3:ea:5c:57:
8a:ab:96:6c:25:82:11:0b:96:e3:a8:24:c4:58:ff:
8c:0d:30:96:c2:48:f5:c1:e0:be:07:e6:c4:48:8d:
70:ba:2e:e8:e4:1d:0c:12:41:d6:23:68:10:aa:7c:
8e:45:71:7e:e0:64:b3:14:72:1b:d5:1f:55:66:ff:
ba:3a:13:9d:be:51:3e:af:3c:ce:3c:ce:d4:bd:32:
03:60:dc:32:cb:6f:76:41:1c:3a:a0:ae:38:15:9b:
e9:35:42:86:d8:aa:da:7a:be:6c:ab:85:14:9b:30:
3d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D7:5F:96:F6:70:6D:7A:1B:B7:BF:10:A1:A0:C1:D7:E9:21:DB:A5
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ktdflvZwbXobt78QoaDB1-kh26U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
45.135.181.0-45.135.183.255
45.144.172.0/24
86.105.4.0/24
86.107.100.0/24
89.34.106.0/24
92.114.32.0/24
93.114.183.0/24
94.177.147.0/24
188.64.142.0/24
188.208.103.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
96:16:4e:3b:5b:72:36:68:79:58:f5:e5:25:a2:c3:ad:53:2b:
4b:42:e5:66:56:05:fe:55:63:a1:6c:26:60:7d:78:c2:6c:8d:
60:8f:97:84:fd:24:de:35:12:d9:e8:e0:df:55:45:83:88:9a:
f1:bd:a9:03:14:50:d0:4d:ed:13:a5:fc:21:d4:59:40:07:c6:
fb:61:bf:3a:01:bf:70:5a:16:42:e9:c9:5c:7a:90:9c:ce:50:
e6:a8:f8:3c:b2:0b:96:3f:56:78:5e:5c:1b:43:17:d7:d3:21:
d4:3f:0f:1d:cf:57:70:59:4f:84:c6:30:bd:55:e3:74:3c:12:
ce:28:98:2c:ea:00:eb:a3:27:54:41:ab:bc:81:b9:f0:83:ee:
0b:82:25:e1:b6:36:be:d6:62:04:a9:07:cb:1f:b4:22:aa:20:
41:b4:aa:30:ec:96:36:c4:8f:28:a5:a0:59:70:01:71:91:93:
ba:e6:c2:c8:01:0b:6d:f8:46:f0:41:a3:07:e7:29:aa:3a:82:
a9:23:3a:af:81:e3:e0:ae:fb:4e:76:4f:5b:47:a1:4c:a1:d9:
0b:82:a0:b2:36:85:00:fb:5b:33:ea:a5:67:46:ac:69:de:94:
f3:b5:dc:a6:7a:e3:f1:ab:40:a3:8f:e2:95:a4:fc:00:b3:ca:
51:20:a7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 20:27:39 2024 by rpki-client on console-ams.rpki-client.org