Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/445pb69K8wdLlaqshJVViV461_0.roa
File: 445pb69K8wdLlaqshJVViV461_0.roa (raw, json)
Hash identifier: GxXTNVjCNF0PoR/gSkD4+dkXoMZ9XMV1YpAHxCLW0Ho=
Subject key identifier: E3:8E:69:6F:AF:4A:F3:07:4B:95:AA:AC:84:95:55:89:5E:3A:D7:FD
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018789C28D90369E321C65F99E43BED28337
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/445pb69K8wdLlaqshJVViV461_0.roa
Signing time: Sun 16 Apr 2023 11:10:41 +0000
ROA not before: Sun 16 Apr 2023 11:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 21
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Apr 2023 18:53:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:89:c2:8d:90:36:9e:32:1c:65:f9:9e:43:be:d2:83:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Apr 16 11:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e38e696faf4af3074b95aaac849555895e3ad7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:39:b1:a8:15:6c:7a:20:ed:b0:f9:23:12:
c4:90:57:5b:58:fd:8e:1e:12:dc:ac:da:2e:9d:84:
f5:c1:2f:2b:88:e8:41:f9:5e:26:86:b8:1b:55:b9:
07:9e:8d:6b:ef:56:41:13:0e:4b:66:2e:2b:32:b9:
f1:90:f5:83:49:14:ed:5a:3f:a3:53:58:ff:ad:a7:
d5:75:d9:d0:c6:62:17:58:a2:b3:dd:a5:29:82:f2:
45:e9:5a:54:6e:20:cd:c6:93:af:47:b9:fa:9a:ad:
84:d0:48:30:b2:48:db:b1:b1:4b:f7:f6:11:44:b9:
24:33:1d:44:c5:77:9f:cd:31:45:32:54:cd:8e:c8:
26:a9:d2:2e:4d:e8:d0:e3:e5:28:3c:22:96:0a:55:
bf:83:e1:83:b3:2a:95:af:ef:17:bd:5d:5d:7f:28:
6f:61:78:8c:f0:65:1b:1e:b1:c5:f0:13:fd:8b:2f:
d3:7a:58:25:be:94:8d:a6:96:10:37:13:26:f1:ea:
d9:d2:f6:b8:f5:45:41:13:fb:38:34:c1:0e:b3:ca:
eb:1a:ae:3f:0d:d0:ae:62:d6:96:f7:ab:72:15:f3:
29:55:f5:4c:af:ec:37:14:37:21:17:0a:b0:02:78:
70:1b:98:a4:1e:48:07:5f:ba:23:f9:5b:fd:79:37:
62:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8E:69:6F:AF:4A:F3:07:4B:95:AA:AC:84:95:55:89:5E:3A:D7:FD
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/445pb69K8wdLlaqshJVViV461_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
87:83:3e:f4:1f:03:58:2c:02:a8:f1:12:af:b1:f4:d7:69:f3:
8f:b3:ab:6b:b2:0c:1c:a2:e5:f7:b3:89:78:91:7b:e8:04:d9:
fc:1a:89:37:63:f4:d3:08:a0:c9:8b:e2:10:0f:76:5f:88:0f:
0e:82:3a:dd:a2:1b:cd:84:af:1d:7b:0d:6e:32:fa:44:9c:3f:
73:67:5f:b6:bb:12:86:1f:29:de:8e:5d:6f:6c:ee:de:e5:61:
4e:26:9a:57:56:7a:15:72:0c:0f:19:66:ae:8e:05:73:82:2e:
52:ea:7a:73:49:23:ce:12:75:92:ed:fb:91:3d:d0:a3:19:b9:
e9:3d:e4:ad:c2:8a:2e:7f:70:18:e9:44:76:ca:05:fb:04:53:
5e:85:99:dc:68:6e:17:11:21:ed:9a:aa:24:e5:57:39:57:a9:
5c:f0:52:e6:20:ee:fd:2a:89:da:7c:e1:49:b9:14:5d:aa:54:
3a:4c:6e:c4:0d:df:0d:a0:90:b7:b6:ff:f2:aa:cf:60:16:49:
99:94:be:c4:a9:ad:64:76:57:61:83:87:21:a8:a1:46:0f:35:
72:53:31:be:2b:c9:46:cc:77:fe:30:0f:5d:08:94:bb:dd:36:
d2:57:52:b4:e8:11:eb:61:78:e5:c8:c7:19:dc:94:4a:71:df:
77:f9:5d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org