Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3Wv4la8Y_GgPYfXhLKOjOIad1Ng.roa
File: 3Wv4la8Y_GgPYfXhLKOjOIad1Ng.roa (raw, json)
Hash identifier: zYAZdGqQxtipmjB/VjOXX//l4WDmTGs0EnIHAFQhonY=
Subject key identifier: DD:6B:F8:95:AF:18:FC:68:0F:61:F5:E1:2C:A3:A3:38:86:9D:D4:D8
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 018C344CDC3A839F8927B0959BF1CACAC342
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3Wv4la8Y_GgPYfXhLKOjOIad1Ng.roa
Signing time: Mon 04 Dec 2023 10:08:21 +0000
ROA not before: Mon 04 Dec 2023 10:08:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 62.204.48.0/24 maxlen: 24
77.75.224.0/24 maxlen: 24
176.97.216.0/24 maxlen: 24
146.19.71.0/24 maxlen: 24
193.242.127.0/24 maxlen: 24
176.98.32.0/24 maxlen: 24
176.98.32.0/22 maxlen: 22
176.98.33.0/24 maxlen: 24
176.98.34.0/24 maxlen: 24
176.98.34.0/23 maxlen: 23
176.98.35.0/24 maxlen: 24
194.104.226.0/24 maxlen: 24
79.110.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 09:36:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:4c:dc:3a:83:9f:89:27:b0:95:9b:f1:ca:ca:c3:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Dec 4 10:08:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd6bf895af18fc680f61f5e12ca3a338869dd4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cb:67:3c:9b:84:00:1b:df:2a:42:d0:3a:88:
de:ab:cd:2e:2d:02:69:e7:4e:be:40:33:cd:d3:20:
59:1d:f5:5d:12:1a:a5:27:ca:c5:27:d7:7e:87:48:
05:b7:6d:f3:2a:10:c6:5b:28:57:c9:7d:3a:c3:26:
d0:d8:16:5a:b2:eb:ab:71:52:a9:31:10:de:83:82:
81:93:41:dc:a7:11:47:b8:14:04:de:94:59:40:48:
ab:02:f8:7e:a5:43:0e:d1:07:81:9e:63:38:1f:b5:
82:15:e6:02:d7:ea:49:d3:a0:a9:a6:e9:d5:a9:4a:
bd:f3:d1:70:c3:96:8c:94:5e:c5:f3:fb:59:9b:0d:
2e:7b:a3:70:d8:fe:3a:40:e9:11:89:00:7d:f1:fc:
e6:ab:ab:41:4f:21:d5:6d:96:01:91:2d:cf:f5:0f:
10:8a:29:c1:6f:e1:af:36:90:ce:1e:1b:6d:c9:7a:
f8:4b:b0:d2:e7:0a:ac:76:28:94:84:80:dd:f1:9b:
e5:23:77:c2:4b:db:f0:8c:a0:b5:98:8b:f5:ef:9a:
7b:93:f4:ea:c2:6a:2c:2d:e5:57:61:b0:f0:d6:14:
25:cc:cc:cc:fe:55:29:4f:30:c5:bc:98:05:4e:52:
09:9d:7f:fc:4e:f7:ee:2c:c4:b5:e1:d2:36:aa:02:
29:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6B:F8:95:AF:18:FC:68:0F:61:F5:E1:2C:A3:A3:38:86:9D:D4:D8
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3Wv4la8Y_GgPYfXhLKOjOIad1Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.48.0/24
77.75.224.0/24
79.110.229.0/24
146.19.71.0/24
176.97.216.0/24
176.98.32.0/22
193.242.127.0/24
194.104.226.0/24
Signature Algorithm: sha256WithRSAEncryption
16:75:98:5f:cf:58:86:05:f6:3f:e2:7b:c5:43:0f:10:91:d7:
66:7f:bb:a3:89:e1:f2:1f:8d:b3:14:1c:af:39:16:28:c4:c3:
fa:d2:f8:7b:4d:a9:77:54:8b:e7:15:30:69:ef:71:4c:a1:8c:
05:36:22:8b:79:ea:88:f4:6b:5a:68:4c:c7:6e:9c:40:85:50:
81:f5:cc:e9:26:69:d2:08:68:da:75:3d:41:58:3a:59:fb:a2:
cc:0f:53:a3:ec:ca:ea:2b:23:6c:59:4c:14:b0:a6:d5:5d:15:
e9:b4:ba:d8:41:46:71:00:24:b1:4d:83:3d:21:af:ae:5e:ef:
02:d8:4c:f0:87:ad:5a:79:49:a0:bb:0c:b6:92:43:92:a9:a9:
b4:95:d6:9e:10:5a:a0:5d:0c:0b:ad:af:f1:b9:39:1c:96:6f:
cd:87:1d:ab:45:4a:1e:39:9b:e7:c1:8e:2b:5d:fe:65:d2:18:
5e:39:c9:dc:b7:85:96:9d:fc:89:23:13:f2:b3:d3:ce:e0:8f:
db:84:cb:fa:02:9d:a8:c4:e0:03:ff:d7:80:0d:23:41:72:9b:
cb:1d:5d:7a:d8:d4:4d:f3:64:1f:2a:3f:11:56:8d:07:f2:66:
89:d6:d1:a6:53:a4:01:97:d0:a2:db:db:82:91:bd:2e:31:69:
74:04:80:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:35 2024 by rpki-client on console-fra.rpki-client.org