Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/q8tbFzoCSkA0V3PIm-anHp5RTjw.roa
File: q8tbFzoCSkA0V3PIm-anHp5RTjw.roa (raw, json)
Hash identifier: 2e4ptNZJ1wO8LV2dWvGs/t+lBy0Ns0UDmn3vXT+B1d0=
Subject key identifier: AB:CB:5B:17:3A:02:4A:40:34:57:73:C8:9B:E6:A7:1E:9E:51:4E:3C
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019331C7ADBE56543A41BA8D6025689AE598
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/q8tbFzoCSkA0V3PIm-anHp5RTjw.roa
Signing time: Fri 15 Nov 2024 21:43:09 +0000
ROA not before: Fri 15 Nov 2024 21:43:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.57.241.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
185.141.216.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Nov 2024 09:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:31:c7:ad:be:56:54:3a:41:ba:8d:60:25:68:9a:e5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 15 21:43:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abcb5b173a024a40345773c89be6a71e9e514e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7d:c7:d5:77:22:78:e9:f5:c0:a7:d6:38:17:
bf:a9:16:8e:a0:e3:ef:9e:ee:dd:c3:12:50:e5:e5:
38:69:94:2f:8d:25:91:14:b1:3b:73:af:52:4e:a6:
e5:a1:92:99:ea:c9:72:cf:60:7b:b1:87:fd:c0:25:
71:fa:c4:a2:e8:de:78:c8:45:71:6e:d4:3d:52:67:
9c:ed:85:24:51:e2:57:ba:6f:63:5f:12:c7:7a:40:
ea:a2:6d:f8:61:ac:2b:90:0c:34:41:1f:45:05:f1:
53:83:7a:e9:7f:71:03:06:b2:a6:02:5a:40:93:48:
e2:71:99:4d:a6:0e:43:b4:55:03:80:32:a3:25:9d:
53:fe:8f:9c:e9:1a:cb:9c:b1:d5:df:73:f4:e1:88:
0c:24:22:ae:c4:0a:64:a3:a1:6c:41:eb:c8:d9:93:
bc:35:1d:04:34:42:32:be:9e:f0:82:f6:bb:d2:d1:
eb:35:cc:7d:f6:9a:63:a7:19:c6:f2:bb:d9:7e:cd:
a6:e6:af:88:23:50:bd:66:03:ef:2e:42:97:54:62:
63:35:23:1c:23:91:78:8a:8b:60:c8:4f:97:b2:66:
17:68:9d:11:a8:23:b5:3b:77:d0:35:b5:bc:e8:b2:
14:4d:78:8a:0f:f5:a7:25:41:37:3f:a1:5a:82:63:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CB:5B:17:3A:02:4A:40:34:57:73:C8:9B:E6:A7:1E:9E:51:4E:3C
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/q8tbFzoCSkA0V3PIm-anHp5RTjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
185.141.216.0/24
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ff:01:72:36:9c:1d:d0:75:83:04:70:65:43:91:97:3f:03:
84:a3:bd:c6:45:28:2b:8d:28:90:08:a5:c1:fc:8e:60:c9:9b:
3e:59:dc:fe:7a:b8:a1:5c:f3:30:be:e7:01:40:cc:1d:6e:b0:
56:4b:50:48:d1:9b:f9:2a:60:f8:d6:68:7e:2f:3b:48:2e:66:
11:1a:42:a1:17:7d:63:68:83:3f:55:15:f7:d6:40:ae:f9:ce:
ed:eb:f9:c2:9b:49:29:bb:56:b7:77:e4:9e:dc:30:50:61:39:
4b:85:6a:79:18:50:f2:2c:0c:f9:15:79:16:2d:6a:33:c1:0d:
41:3a:60:cd:0a:0c:e2:19:91:24:3b:c8:95:4c:ca:36:0f:53:
b2:16:d8:bf:97:4e:55:1e:d1:b4:23:0c:e8:35:e8:e9:3a:e6:
19:d3:1f:91:4c:b8:e8:7b:8f:0f:2a:4f:3d:b1:69:59:14:bb:
e2:11:dc:c0:95:6f:38:0d:54:55:0a:f1:94:78:e1:c6:b6:b8:
0a:48:83:fe:17:88:15:fc:32:12:f5:24:ad:f6:db:3b:da:81:
17:47:f4:4f:74:21:28:30:ec:c8:aa:86:28:b9:7b:61:76:aa:
9a:06:1a:84:72:c4:01:39:79:9d:e1:55:41:67:6c:29:7c:ca:
59:dd:97:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 12:56:54 2024 by rpki-client on console-ams.rpki-client.org