Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/lxx6UIKI8ZSnLipfU9R3YisZJG0.roa
File: lxx6UIKI8ZSnLipfU9R3YisZJG0.roa (raw, json)
Hash identifier: w5czwhBjrNKcK0ZaSSDZJ2oPXT68aIJIO3GqxJo+mqE=
Subject key identifier: 97:1C:7A:50:82:88:F1:94:A7:2E:2A:5F:53:D4:77:62:2B:19:24:6D
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018733AB428EA0F12FA4E2A11C1153D74E77
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/lxx6UIKI8ZSnLipfU9R3YisZJG0.roa
Signing time: Thu 30 Mar 2023 17:57:54 +0000
ROA not before: Thu 30 Mar 2023 17:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 185.177.238.0/24 maxlen: 24
185.112.59.0/24 maxlen: 24
45.93.212.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
45.93.215.0/24 maxlen: 24
185.24.109.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
77.83.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 15:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:ab:42:8e:a0:f1:2f:a4:e2:a1:1c:11:53:d7:4e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 30 17:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=971c7a508288f194a72e2a5f53d477622b19246d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a8:82:31:b8:0f:93:8b:63:fa:6c:3c:dc:55:
f2:f4:5d:7e:b8:35:cd:68:86:61:4b:01:85:58:bb:
a7:03:4e:dd:8e:6f:ed:63:2f:c7:e3:a0:ef:6e:bc:
4a:94:09:90:f0:37:e8:f7:d6:5f:2e:aa:ed:e2:7d:
be:c8:53:8c:f9:88:c2:96:ea:e8:9b:9d:e7:bf:ac:
64:ed:27:ff:4d:7e:07:97:44:74:c5:ae:42:bb:5f:
58:c5:78:12:fb:4d:13:b3:67:fd:7d:e4:1c:10:30:
ce:7d:b4:2f:8c:cc:f8:35:10:9a:87:fa:61:47:fd:
34:e6:be:ba:77:ef:c0:c7:3f:e1:bd:b4:0b:fe:44:
e0:86:d1:09:ed:31:6c:d8:b0:ba:21:ab:2d:78:9e:
e2:f2:71:56:50:97:f8:5f:24:3d:96:0d:18:53:94:
ed:3d:84:09:e3:eb:0f:56:82:e5:15:9e:17:38:ba:
45:cf:69:a4:eb:05:0d:30:71:8a:25:d3:e9:d7:83:
8f:01:3e:85:64:e0:34:4e:6b:98:19:77:e3:2f:57:
eb:6e:64:06:30:e4:7a:fb:28:82:74:64:c9:e5:51:
aa:41:d7:f8:ce:a2:9a:24:5d:aa:1f:b0:fc:14:40:
4f:2b:ea:04:b4:e2:f8:16:cb:12:45:65:cf:ec:07:
ac:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1C:7A:50:82:88:F1:94:A7:2E:2A:5F:53:D4:77:62:2B:19:24:6D
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/lxx6UIKI8ZSnLipfU9R3YisZJG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.212.0/24
45.93.215.0/24
77.83.245.0/24
185.24.109.0/24
185.58.114.0/24
185.97.79.0/24
185.111.25.0/24
185.112.59.0/24
185.177.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d1:f7:d5:fd:a6:75:2c:f5:59:f8:43:fe:8f:97:4f:9a:9e:
49:73:bb:11:b9:24:a4:18:fe:59:46:a0:fc:6a:6a:1d:5d:9f:
3c:f2:5f:58:04:ab:3a:d1:de:72:dd:45:8f:5d:c0:f6:c0:26:
74:ec:bd:8c:d2:af:05:d0:f6:fd:74:35:b7:5a:0c:b7:72:a8:
03:46:62:59:80:53:11:e0:1a:99:4b:75:37:f8:a0:d1:97:95:
29:c2:a7:71:32:17:cc:1c:c6:d1:ad:35:2f:48:cd:0a:ae:b0:
a1:93:46:30:c7:6c:f0:71:b6:39:de:18:ce:dd:66:00:8e:23:
81:f6:f3:ef:e4:48:4a:e6:53:08:cb:de:b5:06:cc:9d:e1:a0:
a5:da:64:69:fb:60:b4:32:c8:7b:22:f0:a2:ed:ed:fa:97:e8:
23:c3:14:92:18:05:03:a6:59:09:32:7a:72:e2:88:54:fa:60:
87:6c:23:59:ee:db:4f:6f:db:3d:6b:63:58:c3:6a:30:cf:e6:
31:31:d6:91:b6:c5:a0:64:57:34:3c:30:c6:99:75:7b:bb:af:
b0:32:0d:b3:92:4d:5b:88:e0:09:89:bd:a9:5c:65:d8:05:1f:
28:0e:6c:df:19:1b:25:a9:31:28:fb:18:3d:ec:3e:a2:92:e9:
6d:86:c5:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org