Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/0A7Rttw5uEWFaOZ2f_toVRLrsfA.roa
File: 0A7Rttw5uEWFaOZ2f_toVRLrsfA.roa (raw, json)
Hash identifier: 3/JYmeRub3qP2OArwkPh/3YY9zCQsZgOnodUngkSAuk=
Subject key identifier: D0:0E:D1:B6:DC:39:B8:45:85:68:E6:76:7F:FB:68:55:12:EB:B1:F0
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 01856D93FC836FA328730B0746330D95D1F1
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/0A7Rttw5uEWFaOZ2f_toVRLrsfA.roa
Signing time: Sun 01 Jan 2023 13:44:52 +0000
ROA not before: Sun 01 Jan 2023 13:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 194.85.107.0/24 maxlen: 32
193.232.136.0/24 maxlen: 32
193.232.135.0/24 maxlen: 32
193.232.140.0/24 maxlen: 32
194.190.119.0/24 maxlen: 32
194.85.177.0/24 maxlen: 32
194.226.100.0/22 maxlen: 32
193.232.87.0/24 maxlen: 32
195.208.208.0/21 maxlen: 32
193.232.244.0/24 maxlen: 32
2001:7f8:20:201::/64 maxlen: 128
2001:7f8:20:401::/64 maxlen: 128
2001:7f8:20:1101::/64 maxlen: 128
2001:7f8:20:601::/64 maxlen: 128
2001:7f8:20:801::/64 maxlen: 128
2001:7f8:20:101::/64 maxlen: 128
2001:7f8:20:301::/64 maxlen: 128
2001:7f8:20:501::/64 maxlen: 128
2001:7f8:20:701::/64 maxlen: 128
2001:7f8:20:901::/64 maxlen: 128
2001:7f8:20:202::/64 maxlen: 128
Validation: Failed, certificate revoked on Fri 18 Aug 2023 08:58:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:fc:83:6f:a3:28:73:0b:07:46:33:0d:95:d1:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 1 13:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d00ed1b6dc39b8458568e6767ffb685512ebb1f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:03:a1:81:fd:a5:60:5d:e5:3c:b4:cc:a5:b4:
0d:fb:de:91:ea:a7:2e:73:9b:40:c0:79:e3:cd:2e:
a2:c9:a9:39:15:a0:69:77:99:59:c0:70:30:31:46:
da:88:45:86:ca:cd:53:06:2e:5d:ef:98:1f:a3:84:
ce:fe:fd:c3:f7:07:15:c1:08:e4:a2:43:31:16:94:
bc:6e:b9:51:af:f4:62:35:ce:b0:82:38:62:ea:cb:
d1:ad:ca:14:28:12:9d:8b:7e:14:5b:23:87:ae:15:
e2:97:88:45:98:76:dd:86:fd:5e:54:d8:27:ab:54:
97:a9:fa:33:b2:65:67:e4:c6:a8:95:da:62:88:1a:
7c:eb:3a:16:23:6d:fd:ad:5f:4c:a3:26:6f:0f:26:
42:cf:70:2d:d4:31:fe:45:72:dc:a8:eb:d5:06:76:
33:dc:31:1e:b1:df:3b:e0:41:48:d2:e6:3a:d9:12:
97:ae:96:a9:79:52:f6:1d:4c:71:e5:42:cd:ef:8a:
e8:41:ac:26:fb:92:39:e2:8e:57:06:27:8f:33:f5:
b4:73:e7:9c:37:61:c5:11:7f:c2:ca:e9:a8:48:74:
11:1b:5a:7c:11:0c:23:38:f3:d5:40:8d:69:be:ee:
57:a1:1d:6d:14:12:09:5f:34:06:06:87:0e:d9:2c:
b2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0E:D1:B6:DC:39:B8:45:85:68:E6:76:7F:FB:68:55:12:EB:B1:F0
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/0A7Rttw5uEWFaOZ2f_toVRLrsfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.87.0/24
193.232.135.0-193.232.136.255
193.232.140.0/24
193.232.244.0/24
194.85.107.0/24
194.85.177.0/24
194.190.119.0/24
194.226.100.0/22
195.208.208.0/21
IPv6:
2001:7f8:20:101::/64
2001:7f8:20:201::-2001:7f8:20:202:ffff:ffff:ffff:ffff
2001:7f8:20:301::/64
2001:7f8:20:401::/64
2001:7f8:20:501::/64
2001:7f8:20:601::/64
2001:7f8:20:701::/64
2001:7f8:20:801::/64
2001:7f8:20:901::/64
2001:7f8:20:1101::/64
Signature Algorithm: sha256WithRSAEncryption
82:6b:2f:39:3c:00:b1:27:84:10:15:38:2e:77:49:65:2f:59:
ca:71:7a:f2:78:8d:d3:b1:f8:ce:9b:6f:70:80:cb:94:36:26:
db:9d:c1:e3:3a:dd:fc:bc:e3:7d:84:8a:f8:fc:f1:fc:18:41:
3f:f6:72:8f:a2:da:31:9a:e0:a3:62:2c:bb:98:e6:a6:43:49:
2f:67:6e:90:db:cf:48:8c:d0:fe:bc:45:d2:aa:89:63:a2:3c:
8d:b1:6b:e9:56:29:52:b7:10:d2:17:22:00:08:c9:bc:7b:d2:
05:2b:24:b3:35:d6:5b:63:00:16:00:43:80:4e:f3:6f:a5:6f:
94:80:7a:af:c3:6c:9f:08:8b:98:b4:6c:90:0e:56:5f:89:96:
42:0a:07:0f:68:57:b4:bf:01:92:59:6d:a4:92:74:09:f9:ad:
e7:1b:ad:bb:36:30:8d:18:ed:35:c4:32:38:87:17:a9:fd:5f:
74:e1:7e:c0:2f:07:e5:bd:06:9d:42:9d:2a:49:28:09:7b:62:
54:6c:f5:1b:89:61:e5:11:7c:0b:2d:a4:10:82:83:a8:90:d9:
98:ef:de:de:16:1d:31:5d:ed:fd:96:b6:8a:fa:99:14:af:54:
64:3d:db:b7:26:df:e8:1b:02:37:d9:90:c3:ce:2b:1f:65:39:
7a:b3:a6:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:51 2024 by rpki-client on console-fra.rpki-client.org