Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/zT79m0Fy3IcNdUknZDT1sLh9CSY.roa
File: zT79m0Fy3IcNdUknZDT1sLh9CSY.roa (raw, json)
Hash identifier: wTc+JB0hH4l5D8GeixjNll0ZKjUOjsiu6zAzGtPPd2Q=
Subject key identifier: CD:3E:FD:9B:41:72:DC:87:0D:75:49:27:64:34:F5:B0:B8:7D:09:26
Certificate issuer: /CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Certificate serial: 01856DE6707D129F2F06266A3A97827F8159
Authority key identifier: 30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/zT79m0Fy3IcNdUknZDT1sLh9CSY.roa
Signing time: Sun 01 Jan 2023 15:14:56 +0000
ROA not before: Sun 01 Jan 2023 15:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34606
IP address blocks: 77.108.0.0/18 maxlen: 18
85.208.232.0/22 maxlen: 22
194.116.0.0/18 maxlen: 18
88.87.96.0/19 maxlen: 19
185.73.244.0/22 maxlen: 22
95.140.136.0/21 maxlen: 21
82.215.128.0/18 maxlen: 18
82.215.128.0/22 maxlen: 22
185.117.216.0/22 maxlen: 22
185.127.32.0/22 maxlen: 22
194.176.126.0/24 maxlen: 24
85.159.176.0/21 maxlen: 21
81.30.0.0/20 maxlen: 20
77.72.32.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 27 Jan 2023 14:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:70:7d:12:9f:2f:06:26:6a:3a:97:82:7f:81:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Validity
Not Before: Jan 1 15:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd3efd9b4172dc870d7549276434f5b0b87d0926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cf:a5:d7:8d:fd:c4:73:0f:19:96:c6:7d:9f:
88:7f:57:9b:24:cc:bc:9a:0d:df:92:37:39:b8:87:
2e:9c:91:52:b3:7c:ad:cd:a0:08:81:fd:10:90:73:
e2:4c:01:db:84:80:da:f8:e6:c3:75:1c:13:18:44:
4d:97:d1:f8:9b:b9:44:d8:3e:80:fc:14:5b:2d:97:
84:18:c5:8a:7c:3e:8e:1f:0a:4b:8d:c2:57:8e:35:
c9:45:96:33:4a:24:3f:6e:52:7b:39:aa:35:58:ca:
fa:d9:a5:02:0a:83:9d:77:89:23:75:ae:fa:5e:df:
aa:9c:90:44:05:56:59:4c:4d:21:c8:c4:d3:a7:0a:
0c:d8:30:92:40:2d:11:15:79:13:c6:fe:9b:6d:a3:
3a:f6:b3:9b:d5:cd:65:89:cf:14:24:73:94:1e:f9:
ff:5c:9c:e9:a3:61:19:6b:b6:fb:62:31:33:29:b7:
bc:99:e8:cc:4b:52:5b:f9:21:db:d0:e1:6c:46:f5:
5d:fa:ed:62:04:53:3e:0f:48:7c:78:a9:ca:8d:f0:
79:d4:04:bd:73:93:da:35:4d:a9:b7:b6:eb:6a:11:
fd:e8:a5:22:97:51:1d:c1:3d:29:fd:0a:cc:01:60:
02:94:9b:07:05:9c:1f:d6:c5:da:95:5c:4a:0c:a5:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3E:FD:9B:41:72:DC:87:0D:75:49:27:64:34:F5:B0:B8:7D:09:26
X509v3 Authority Key Identifier:
keyid:30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/zT79m0Fy3IcNdUknZDT1sLh9CSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.32.0/21
77.108.0.0/18
81.30.0.0/20
82.215.128.0/18
85.159.176.0/21
85.208.232.0/22
88.87.96.0/19
95.140.136.0/21
185.73.244.0/22
185.117.216.0/22
185.127.32.0/22
194.116.0.0/18
194.176.126.0/24
Signature Algorithm: sha256WithRSAEncryption
95:d1:f4:7b:87:42:4f:f6:ed:16:a4:a6:07:bc:93:16:6c:e1:
e4:08:f5:a8:0b:f2:f0:53:53:59:0f:b9:23:5d:c7:88:dc:a7:
13:5a:c3:36:19:aa:7d:fc:8d:d1:14:9b:01:10:83:3f:a9:da:
af:1c:c6:e5:aa:ac:14:7c:26:bf:56:2a:d9:0c:1b:e9:15:dd:
c7:60:0a:43:25:ed:f2:42:15:a4:f5:15:8d:cd:55:ba:99:4d:
cf:1b:3c:d7:7e:e4:f0:22:6e:2d:3a:c8:c3:d4:51:37:b4:fc:
fa:30:cf:61:b9:17:6d:a5:24:46:a5:e2:20:1a:d7:73:55:8c:
7c:36:cb:fa:be:b6:6d:7d:0d:c3:81:1b:d6:3c:c0:2a:d5:f3:
49:10:6b:6e:3a:f6:af:6f:d1:c0:dd:f5:e5:2e:1d:95:76:f3:
13:fc:e4:3e:d7:6e:6f:87:3f:2a:bb:0a:e6:69:e0:2d:fc:99:
fd:c4:c1:6c:25:d4:49:c1:a7:c9:64:51:04:e9:7c:60:1b:6b:
8a:92:c8:96:33:ea:71:82:cc:43:b3:03:95:27:19:78:07:f6:
de:95:02:03:18:2e:28:a8:3e:f7:88:2d:b0:14:22:80:e1:d4:
75:9b:07:58:d6:d4:43:b4:29:3f:51:02:dc:14:5e:60:48:48:
21:1d:5a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:09 2024 by rpki-client on console-fra.rpki-client.org