Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twzvy1lthjYlohDUWAcGELxknsU.roa
File: twzvy1lthjYlohDUWAcGELxknsU.roa (raw, json)
Hash identifier: D0Z/ZC+bOUXW+9ssBGaIgHN5b6emE4hnXLdiODt/T1Q=
Subject key identifier: B7:0C:EF:CB:59:6D:86:36:25:A2:10:D4:58:07:06:10:BC:64:9E:C5
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0186BF42F0DF4C84EF44F9821167034EC542
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twzvy1lthjYlohDUWAcGELxknsU.roa
Signing time: Wed 08 Mar 2023 03:28:00 +0000
ROA not before: Wed 08 Mar 2023 03:28:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
185.112.249.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Mar 2023 11:42:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bf:42:f0:df:4c:84:ef:44:f9:82:11:67:03:4e:c5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 8 03:28:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b70cefcb596d863625a210d458070610bc649ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:28:98:fc:6f:45:09:fd:89:70:a5:8a:de:fc:
e4:cf:ac:11:3d:97:19:1e:dc:d0:5f:6f:04:60:58:
0c:89:24:7e:17:ff:3b:c6:6f:ff:82:ee:02:14:74:
0d:bd:62:0e:c7:a2:7a:a8:d9:60:f3:be:90:28:e3:
31:d9:14:67:04:63:32:ca:2a:c7:35:43:cf:4c:c3:
35:26:3c:8a:c3:7c:5b:97:0e:4e:2a:6e:6e:70:44:
59:44:1c:6c:8f:40:b8:91:3e:c6:15:4e:cb:19:a5:
af:cf:20:6f:3b:4b:f8:30:c7:43:73:61:cf:ca:aa:
5c:25:b1:c9:2a:bc:00:26:0b:64:d1:0b:b7:c1:24:
aa:db:df:fc:06:a7:0b:ad:f3:1b:4c:c1:3b:09:88:
7a:5f:ae:6e:7a:26:48:89:0c:91:a8:7a:29:95:2c:
90:78:d9:90:e3:ab:45:3c:34:0c:5e:78:30:08:88:
25:80:69:b8:dc:60:6a:62:92:4e:4b:82:25:0c:91:
e1:6e:d9:62:f4:15:2c:30:48:8a:26:06:21:e1:b6:
43:3c:53:d4:e5:15:9c:42:6c:e6:e1:ab:d7:10:50:
49:e4:f3:b7:0d:3d:25:e6:c1:26:56:3d:0e:fb:5d:
a6:04:71:37:4e:0f:4e:2f:17:98:ff:61:8a:57:20:
d3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0C:EF:CB:59:6D:86:36:25:A2:10:D4:58:07:06:10:BC:64:9E:C5
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twzvy1lthjYlohDUWAcGELxknsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.100.0/24
89.34.219.0/24
89.35.129.0-89.35.131.255
93.114.244.0/24
185.112.249.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
13:54:fd:33:24:7c:e0:a3:e1:36:27:16:9a:cc:10:c1:99:c6:
1a:76:27:07:c5:cd:3a:f6:33:b5:63:15:87:37:3d:f7:ac:65:
33:8e:7e:87:2b:8e:66:81:f2:75:23:11:3d:e6:06:77:0c:b8:
2a:d4:fc:04:06:d6:3a:6e:be:da:88:3a:a6:80:19:da:c4:10:
66:bf:ec:53:44:a9:d5:2b:29:6f:d7:8a:8a:32:fd:aa:fc:13:
bd:a3:68:a3:56:2e:42:57:81:d1:e3:d4:62:86:5a:43:9a:f4:
f3:eb:7a:6a:11:33:85:0e:6f:f3:3c:8a:e5:14:b6:2c:0c:a0:
17:91:43:77:de:67:77:ba:5d:f7:8f:af:91:19:44:a7:f3:58:
91:7f:84:09:dc:90:27:2f:f8:03:4f:c4:f8:5b:a7:0d:63:76:
50:2a:e3:ea:ad:09:18:e9:1c:2a:38:66:75:6c:20:a9:84:1e:
d0:df:93:00:1b:e4:9f:09:42:11:ab:9d:d1:e3:54:4c:ed:a0:
ab:a9:15:61:b6:60:68:f0:61:31:2c:bd:7f:ef:23:07:8e:cc:
17:aa:8e:b3:1c:cf:ac:97:b3:0b:4b:14:a3:9b:3d:64:5f:8a:
79:3c:e5:fd:f1:79:af:29:e7:1f:89:d0:bb:bf:8e:69:a4:49:
ef:75:47:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org