Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fSppQVfkXr_3zXl3R9xHOytinTA.roa
File: fSppQVfkXr_3zXl3R9xHOytinTA.roa (raw, json)
Hash identifier: SpD4qMHhPWRxYiwtQkX6FCv0leLfvMwxvT95KgroJZw=
Subject key identifier: 7D:2A:69:41:57:E4:5E:BF:F7:CD:79:77:47:DC:47:3B:2B:62:9D:30
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018659E1C3FDB0E5A112BD23DF506D0534E6
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fSppQVfkXr_3zXl3R9xHOytinTA.roa
Signing time: Thu 16 Feb 2023 11:00:13 +0000
ROA not before: Thu 16 Feb 2023 11:00:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
185.81.173.0/24 maxlen: 24
185.110.130.0/24 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Feb 2023 05:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:e1:c3:fd:b0:e5:a1:12:bd:23:df:50:6d:05:34:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 16 11:00:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d2a694157e45ebff7cd797747dc473b2b629d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:e2:d2:f8:9a:05:81:cd:14:cf:20:bd:7f:
cc:23:d9:15:08:c3:ef:92:fa:d5:dc:ff:de:aa:4f:
e1:60:3e:39:44:50:dc:7b:02:33:cf:26:35:c3:33:
f4:8a:cb:ba:19:17:13:67:83:e9:f9:5d:a6:9b:f2:
81:e3:4b:ab:72:fa:84:dc:0b:27:a3:6f:a1:d2:34:
03:da:d8:88:ce:25:11:25:95:c1:bf:f1:89:bd:c5:
cb:84:07:01:cd:36:71:a8:51:db:69:86:17:aa:74:
e3:1e:28:53:5e:81:8f:10:42:3c:75:ea:91:92:3c:
35:4e:6f:d1:c8:3c:c3:56:7a:98:f5:e4:4e:61:a2:
be:d2:6b:52:e3:8e:36:13:4a:20:4c:80:3c:40:26:
6e:cb:6f:71:bb:3e:43:e7:73:82:c5:43:a7:e4:fd:
b2:4a:ae:99:de:8b:1a:d9:5a:9a:af:a4:4d:ba:9c:
01:00:61:7d:50:ab:a8:64:4d:8c:a0:3f:c3:28:25:
87:d7:0c:b7:b0:cd:32:b0:33:a5:ff:ba:54:cc:8f:
2b:26:1b:0b:5b:98:e1:b7:72:63:af:0e:b2:ce:1d:
69:74:0b:c8:40:71:d0:fc:1b:5f:de:15:b7:7f:ad:
10:85:86:d4:82:79:ca:e4:55:3a:e8:e6:8c:8b:00:
63:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2A:69:41:57:E4:5E:BF:F7:CD:79:77:47:DC:47:3B:2B:62:9D:30
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fSppQVfkXr_3zXl3R9xHOytinTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.81.172.0/23
185.95.100.0/22
185.110.130.0/24
185.112.56.0/23
185.175.224.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d7:d7:2f:41:6e:5c:be:3a:ed:cb:18:e0:e0:ac:50:54:da:
e2:33:ad:e1:19:82:42:57:29:64:96:32:ac:1a:33:13:ca:ae:
d0:01:e0:fd:f9:8d:19:06:e7:ef:d6:f9:e2:d9:0a:f9:e1:22:
a0:6b:14:21:4a:ca:b2:71:ae:d0:06:ef:dc:96:57:bd:53:df:
db:fa:a5:55:fc:a9:e9:89:25:2f:fa:e2:d6:a9:3b:47:79:b6:
ab:7f:66:18:6a:c6:1f:8d:5e:4a:b8:0b:97:a1:36:72:8f:da:
a5:6f:77:e5:93:28:84:76:dc:32:5a:29:a1:92:3f:43:66:66:
4a:b7:bb:8c:b7:c4:88:f4:65:00:86:08:f5:f8:b1:8f:59:a3:
7c:d6:be:93:03:c8:8a:ab:e7:77:d2:a6:2b:53:ec:73:90:4f:
60:4b:cc:ab:d6:d2:db:b7:50:f1:cc:56:00:24:60:a5:9b:65:
df:0e:05:c6:1f:e8:7c:3d:de:df:6d:de:a5:1c:9f:bb:6b:60:
92:b2:37:84:e5:f9:7c:00:87:af:df:50:85:9f:98:4f:7d:b9:
ce:d4:08:60:7f:66:50:43:ab:ad:2b:8d:0e:1e:97:a7:87:8b:
77:44:b4:be:9a:55:d5:20:e8:75:ef:a6:7a:f3:d5:14:ea:b4:
1f:3b:a1:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org