Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4_aGSeMPPzqAOTN3AMdPsm76Zjk.roa
File: 4_aGSeMPPzqAOTN3AMdPsm76Zjk.roa (raw, json)
Hash identifier: 7f4Rz0aX3a7J9/mWmsxWK4+Tqo+meyjNOkqCFPC7sfg=
Subject key identifier: E3:F6:86:49:E3:0F:3F:3A:80:39:33:77:00:C7:4F:B2:6E:FA:66:39
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018AA16F24AC1A9A2C0A468E346247A04ECA
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4_aGSeMPPzqAOTN3AMdPsm76Zjk.roa
Signing time: Sun 17 Sep 2023 04:38:50 +0000
ROA not before: Sun 17 Sep 2023 04:38:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 176.105.228.0/24 maxlen: 24
81.28.253.0/24 maxlen: 24
91.239.149.0/24 maxlen: 24
91.238.92.0/24 maxlen: 24
45.132.80.0/22 maxlen: 24
91.244.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 06:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a1:6f:24:ac:1a:9a:2c:0a:46:8e:34:62:47:a0:4e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 17 04:38:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3f68649e30f3f3a8039337700c74fb26efa6639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3c:df:15:89:32:91:22:f4:6a:8b:8f:36:ff:
9d:48:dd:4e:0f:17:5d:aa:43:38:f6:b4:aa:4e:9b:
5f:be:fb:a9:74:c8:1e:78:d4:4c:e7:49:f1:39:06:
79:69:b3:e2:b9:e0:94:28:c1:71:8e:83:f9:88:cf:
2c:22:4e:3b:ef:74:0e:02:cc:ee:73:94:a4:84:23:
ab:63:e6:49:f3:1e:a8:31:86:6b:88:e5:d4:e4:ae:
2e:ec:5f:a7:0b:69:f4:01:de:41:92:ab:f3:78:72:
6c:a3:76:90:9a:8e:60:e3:75:25:0e:2e:3f:84:73:
64:98:5f:2d:26:ea:b6:11:f3:d0:42:42:db:eb:0d:
07:d5:36:0f:f4:f4:a9:fe:29:b5:5d:e3:58:80:aa:
bc:f8:e2:18:37:38:fb:4c:7e:d3:93:b1:ae:79:d1:
88:ae:02:a7:b7:1e:5f:45:ed:a3:00:d3:88:43:cd:
2e:83:4e:5e:a0:68:0c:90:20:52:c6:d4:4d:73:2d:
f2:3e:bd:46:3e:93:86:5d:e5:ba:1d:10:f2:00:7a:
45:0b:2f:2a:4e:8d:38:10:1b:c7:2f:62:c2:89:5c:
54:59:81:82:16:20:9d:19:99:d6:b4:c7:23:9f:03:
67:25:a5:99:42:64:5b:4d:52:93:00:66:79:f4:77:
ee:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F6:86:49:E3:0F:3F:3A:80:39:33:77:00:C7:4F:B2:6E:FA:66:39
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/4_aGSeMPPzqAOTN3AMdPsm76Zjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
81.28.253.0/24
91.238.92.0/24
91.239.149.0/24
91.244.198.0/24
176.105.228.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ca:fa:10:da:d7:0a:f7:6c:d8:6a:58:bf:ce:42:e8:6f:89:
ed:b8:65:bf:f2:1a:01:f7:28:c1:b6:89:0d:86:d4:08:8a:92:
a1:78:98:51:03:5b:73:ea:ab:a8:a5:18:2f:96:8f:36:14:cc:
b3:65:4b:77:46:bf:55:31:37:94:0d:cc:da:2d:e4:fc:55:18:
20:95:a4:69:58:e5:1a:32:8a:1f:c9:cd:fb:35:22:e7:b4:5f:
34:a6:58:70:1b:86:01:e9:50:68:7d:f0:56:09:f6:0c:c4:f0:
de:bb:ab:ce:95:3e:58:e6:40:b1:29:36:89:50:27:8a:a3:2a:
db:8b:f6:d8:1f:83:9c:43:02:df:10:95:48:e7:4b:50:32:36:
c1:ec:2f:74:5a:96:25:a2:04:7b:d9:27:ce:23:71:0e:6f:34:
44:9f:dd:a3:b0:ae:f2:1f:8e:e7:aa:a4:55:da:8b:d7:1c:76:
06:c4:7c:dd:36:6a:f0:30:9a:a0:76:01:7b:87:6f:3a:7b:82:
cf:ad:02:4b:49:5c:bd:f1:de:b6:f7:c5:22:12:02:db:39:d3:
83:f0:f4:a4:27:1b:78:13:c5:47:6e:c4:b8:05:bb:42:10:d6:
d5:a3:e8:49:55:02:15:bd:68:88:10:ce:9f:5a:f9:cb:a6:e3:
e4:2b:cd:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org