Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/jRxfcQeQpc_b3uMxVcUIITqMwR8.roa
File: jRxfcQeQpc_b3uMxVcUIITqMwR8.roa (raw, json)
Hash identifier: jthn5ASi78S5fGDCv54LuryAmPsLnY2P6ruN0KRv/VY=
Subject key identifier: 8D:1C:5F:71:07:90:A5:CF:DB:DE:E3:31:55:C5:08:21:3A:8C:C1:1F
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0188292B76BA32362C1F06C9B7D43B1E7E11
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/jRxfcQeQpc_b3uMxVcUIITqMwR8.roa
Signing time: Wed 17 May 2023 10:04:54 +0000
ROA not before: Wed 17 May 2023 10:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51961
IP address blocks: 185.112.59.0/24 maxlen: 24
185.177.238.0/24 maxlen: 24
185.76.240.0/24 maxlen: 24
185.76.243.0/24 maxlen: 24
185.76.241.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.168.208.0/24 maxlen: 24
185.24.109.0/24 maxlen: 24
185.104.148.0/24 maxlen: 24
185.95.230.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
77.83.245.0/24 maxlen: 24
185.75.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 13:53:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:2b:76:ba:32:36:2c:1f:06:c9:b7:d4:3b:1e:7e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: May 17 10:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d1c5f710790a5cfdbdee33155c508213a8cc11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2a:bc:8e:1b:df:27:7a:fa:a6:9f:e4:94:1a:
d9:20:ac:c6:7c:67:6b:b5:7b:59:3f:fc:11:4d:2b:
db:b5:09:95:c6:e5:98:94:6e:20:38:77:55:ab:4b:
b8:fa:48:89:95:4d:b0:99:29:cc:31:77:34:32:86:
f9:46:4b:72:45:8f:b8:15:9c:e7:3a:86:b8:ff:c4:
00:45:15:45:29:09:ca:09:78:99:c4:f8:59:22:05:
54:44:3c:8b:01:ae:26:7c:c6:b4:ec:57:66:0b:9a:
91:a8:f5:3f:f6:67:32:1e:98:7c:9f:bc:5f:79:69:
f8:31:a7:7c:73:a1:93:55:4d:8a:ab:92:31:f0:a9:
cb:fc:23:32:0e:17:dd:12:f4:b3:cc:3c:be:3e:61:
f8:cd:b8:09:2d:db:db:dc:83:f4:65:79:7a:9f:e2:
16:ad:76:35:41:48:97:ae:1a:e3:17:10:a3:6b:d5:
a2:c0:37:1b:1b:ba:33:fe:a7:d5:00:fc:70:ef:04:
c6:fb:21:fb:e2:c3:e0:35:d5:d6:eb:8a:af:8c:f3:
0c:ee:78:c6:49:ba:26:bc:ca:63:5a:c8:b3:32:0c:
fb:0b:9f:24:6c:16:56:e8:45:27:21:c3:e7:57:4c:
07:08:0f:1d:0e:c4:59:eb:ff:aa:87:1f:ca:7d:d0:
ea:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1C:5F:71:07:90:A5:CF:DB:DE:E3:31:55:C5:08:21:3A:8C:C1:1F
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/jRxfcQeQpc_b3uMxVcUIITqMwR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.245.0/24
185.24.109.0/24
185.58.114.0/24
185.75.135.0/24
185.76.240.0/22
185.95.230.0/24
185.97.79.0/24
185.100.159.0/24
185.104.148.0/24
185.111.25.0/24
185.112.59.0/24
185.168.208.0/24
185.177.238.0/24
Signature Algorithm: sha256WithRSAEncryption
49:58:7a:c3:a6:52:a3:b2:15:8c:76:34:41:15:7d:3b:a6:d2:
a3:5c:55:9d:6f:93:62:a7:5c:7c:4b:59:fb:1f:49:a4:90:1f:
48:9a:bb:43:ab:58:11:6a:79:99:5e:e6:6b:69:e8:9a:08:86:
0c:e1:ab:ac:c1:f7:32:34:2d:fb:d6:1d:83:7a:08:c2:14:34:
70:b8:af:6f:0b:e3:c9:72:25:6d:df:dc:11:b0:d7:ad:87:07:
1c:48:6c:b7:42:31:79:cd:cd:e2:df:3f:ab:ba:6d:d5:3b:f4:
0b:1a:d7:ba:f4:44:16:fb:71:35:e5:95:95:22:c7:f3:f2:3c:
ec:ad:47:fd:d3:ce:4e:ef:8e:90:d9:5b:da:d7:b2:00:8f:df:
ea:b6:c1:03:e5:ed:66:95:af:56:a1:b0:53:d4:5b:d4:71:87:
d7:e9:71:07:ea:bc:22:af:72:9a:f7:4a:50:96:21:b7:30:1d:
d6:91:db:5a:45:05:c1:1b:bc:ab:fe:8d:55:5d:83:07:25:31:
aa:fb:4d:22:b2:95:3b:8f:5e:f1:40:e6:b4:7b:18:f4:a7:d5:
ad:4a:7e:bf:c6:f6:ed:00:30:8f:af:11:49:6d:77:60:53:23:
24:c9:22:51:64:bb:37:7b:fb:3a:43:59:02:ba:20:6c:d3:97:
c6:1d:04:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org