Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/T7ryxFs2nghYkMfi3dzrF6xKNMg.roa
File: T7ryxFs2nghYkMfi3dzrF6xKNMg.roa (raw, json)
Hash identifier: wp631hAGD6hEZ3Q2B9OyUu1S2+zNrYRhEafrRvRtvqY=
Subject key identifier: 4F:BA:F2:C4:5B:36:9E:08:58:90:C7:E2:DD:DC:EB:17:AC:4A:34:C8
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018B44C1B3000784702E15466EE25072416D
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/T7ryxFs2nghYkMfi3dzrF6xKNMg.roa
Signing time: Wed 18 Oct 2023 21:47:06 +0000
ROA not before: Wed 18 Oct 2023 21:47:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 176.105.228.0/24 maxlen: 24
185.177.27.0/24 maxlen: 24
81.28.253.0/24 maxlen: 24
91.238.92.0/24 maxlen: 24
45.132.80.0/22 maxlen: 24
91.244.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 05:54:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:c1:b3:00:07:84:70:2e:15:46:6e:e2:50:72:41:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 18 21:47:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fbaf2c45b369e085890c7e2dddceb17ac4a34c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:95:46:bf:db:29:4f:74:c1:78:8b:b9:5a:bd:
c8:93:8f:28:36:87:b2:0a:3f:34:87:ff:99:7e:2d:
a2:fc:7b:a3:62:ea:16:cd:21:a9:3f:82:e6:12:78:
80:62:60:28:5e:ff:21:40:1f:68:2b:2d:e5:21:ba:
e2:af:74:44:b5:67:52:06:be:37:6a:26:fc:48:53:
a5:23:2e:3a:f0:ce:fa:f8:7f:86:9d:43:ab:eb:be:
b5:73:7d:8f:06:14:68:c3:64:84:33:b6:46:bc:31:
dc:6a:7a:ab:0c:60:a4:85:12:cc:85:41:c8:99:93:
a4:97:c3:84:91:ea:5b:11:59:19:49:df:a7:28:c6:
05:79:82:4a:f7:05:43:15:b5:f2:91:13:c0:96:4f:
52:97:0c:25:fd:a7:7f:15:dc:33:18:02:ea:9b:b3:
81:ae:12:76:f9:72:4e:2f:f4:41:22:4d:03:da:04:
18:74:16:0a:63:43:fc:53:8b:61:e5:2c:df:43:45:
f2:59:c7:4a:28:69:08:6c:4a:2a:21:55:3e:a0:5a:
cf:45:40:67:e8:a6:06:0c:2f:c2:1d:1d:6a:4b:47:
29:cc:0b:ba:b3:01:7d:0b:f1:db:c5:ee:b3:38:d8:
f3:02:d7:e5:2a:1c:9b:6b:06:e7:01:7d:a6:e4:36:
6e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BA:F2:C4:5B:36:9E:08:58:90:C7:E2:DD:DC:EB:17:AC:4A:34:C8
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/T7ryxFs2nghYkMfi3dzrF6xKNMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
81.28.253.0/24
91.238.92.0/24
91.244.198.0/24
176.105.228.0/24
185.177.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:99:59:35:49:25:8f:48:3c:90:7c:cf:bc:53:5f:f5:1e:49:
4e:0c:07:b8:40:3f:53:e2:aa:93:17:06:70:db:d6:03:aa:55:
ff:e2:43:81:38:05:90:c2:ff:d2:24:40:65:25:92:d8:95:6d:
4b:08:22:ab:1d:58:e5:06:c5:85:07:2e:ff:41:31:f3:02:c4:
c8:ff:6e:40:79:f5:7f:02:e5:2c:a3:02:1f:a8:76:8c:5d:39:
ae:b1:b7:b0:af:67:81:8c:3c:7b:bb:33:c0:19:02:03:3d:c5:
69:96:44:e7:07:c5:84:19:22:f6:1c:3a:03:db:0c:1a:66:7c:
ed:02:18:0c:e9:70:b6:08:fe:c8:d3:1f:6f:21:42:dc:93:c7:
25:b4:7f:7a:43:e7:f2:48:8c:d4:4b:35:77:24:eb:42:e7:c8:
f1:d0:06:8f:0d:df:b7:88:1c:de:3f:d7:13:62:d2:ad:1d:29:
7a:fd:7f:ab:cd:23:aa:9c:33:ad:9e:2c:02:7d:71:af:2e:1c:
0d:65:a6:72:b2:68:32:d2:7e:d1:3f:f8:9a:89:41:75:66:19:
e0:4c:2e:8a:d5:37:10:6d:9d:8d:16:7f:8f:43:36:68:96:73:
13:d8:cd:77:79:cd:9c:78:61:92:aa:27:52:47:5e:34:d5:5f:
ac:f5:e2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org