Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lrpghwC8HCOQn1hGTakfewLg4Aw.roa
File: lrpghwC8HCOQn1hGTakfewLg4Aw.roa (raw, json)
Hash identifier: 855wTkSGv7ImF73RsAOFQ8ILCWoafZKHDvojJrgdBkQ=
Subject key identifier: 96:BA:60:87:00:BC:1C:23:90:9F:58:46:4D:A9:1F:7B:02:E0:E0:0C
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018CCA9935B369B54486B9E3B9F99CB5E891
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lrpghwC8HCOQn1hGTakfewLg4Aw.roa
Signing time: Tue 02 Jan 2024 14:34:47 +0000
ROA not before: Tue 02 Jan 2024 14:34:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 87.107.192.0/22 maxlen: 22
87.107.196.0/22 maxlen: 22
87.107.254.0/23 maxlen: 23
81.12.28.0/24 maxlen: 24
87.107.206.0/23 maxlen: 23
87.107.204.0/23 maxlen: 23
87.107.200.0/22 maxlen: 22
87.107.212.0/22 maxlen: 22
87.107.208.0/22 maxlen: 22
87.107.216.0/22 maxlen: 22
87.107.224.0/22 maxlen: 22
87.107.220.0/22 maxlen: 22
87.107.233.0/24 maxlen: 24
87.107.232.0/24 maxlen: 24
87.107.230.0/23 maxlen: 23
87.107.229.0/24 maxlen: 24
87.107.228.0/24 maxlen: 24
87.107.236.0/22 maxlen: 22
87.107.234.0/23 maxlen: 23
87.107.240.0/23 maxlen: 23
87.107.246.0/23 maxlen: 23
87.107.244.0/23 maxlen: 23
87.107.242.0/23 maxlen: 23
87.107.253.0/24 maxlen: 24
87.107.252.0/24 maxlen: 24
87.107.250.0/23 maxlen: 23
87.107.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 03 Mar 2024 15:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:35:b3:69:b5:44:86:b9:e3:b9:f9:9c:b5:e8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 2 14:34:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96ba608700bc1c23909f58464da91f7b02e0e00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f3:de:55:0e:e7:54:c5:8f:0e:9e:08:27:3e:
b9:42:04:6d:4a:3e:55:4b:96:65:3a:02:69:53:b3:
53:de:cf:72:46:94:4a:96:1d:74:8e:aa:a0:9f:48:
e2:3a:d0:ae:ea:bc:f1:bd:3a:3e:c4:cc:39:07:47:
29:f5:60:a7:be:e6:5f:ff:f5:78:78:5b:13:d8:e4:
4f:b8:86:a3:69:61:a4:d9:7c:6e:b8:30:ff:91:a2:
c0:51:dd:e1:7f:b1:a8:35:0e:3c:09:93:0d:9b:1e:
54:09:7f:eb:a1:7f:91:3d:09:1b:6b:39:7a:91:55:
20:a0:73:63:83:63:2e:01:9a:f9:6c:51:ca:5b:48:
3a:86:c1:ca:0f:1b:72:bd:d5:f8:5e:10:fb:a9:5b:
f5:1f:54:96:6d:f9:5f:87:37:fa:c3:1f:0a:8a:78:
94:92:9c:3a:ea:06:58:c0:95:75:dd:78:1c:ab:20:
87:7a:85:65:19:34:14:22:83:82:0e:57:35:92:2c:
a1:ad:92:12:fa:1b:44:c9:07:f1:ad:2e:f9:59:99:
12:1c:83:53:0f:10:12:b8:eb:d9:cc:8c:98:ad:71:
75:9b:2f:f8:c2:a1:3f:75:04:51:cd:a2:51:79:02:
6d:6d:d3:e5:b6:f1:43:49:b6:17:e2:be:f4:b0:37:
92:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BA:60:87:00:BC:1C:23:90:9F:58:46:4D:A9:1F:7B:02:E0:E0:0C
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lrpghwC8HCOQn1hGTakfewLg4Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.28.0/24
87.107.192.0/18
Signature Algorithm: sha256WithRSAEncryption
35:87:71:eb:23:c5:2f:72:24:11:a3:a6:e9:55:26:62:71:8e:
f0:81:5e:74:a5:70:4b:a0:ac:a3:f2:57:bb:6e:4e:17:6e:6a:
da:54:c4:07:2c:21:0c:91:60:1a:83:00:20:39:10:20:19:1e:
f5:dd:0c:f3:75:e9:e4:02:a9:5d:27:94:11:7e:25:d9:eb:f9:
88:23:d0:ae:97:a1:3b:1a:42:53:0e:17:af:8a:1d:f9:22:2b:
7f:f2:e3:fd:52:44:52:4b:2c:ab:7d:69:47:99:f7:7e:bb:a7:
1b:e2:7a:06:65:e1:4f:df:9d:b6:9f:91:4a:f8:ce:f2:3e:02:
e2:c1:ba:dd:2b:7d:e4:04:81:18:20:7b:c6:67:2f:ab:12:ab:
95:e9:37:77:b5:48:dd:1b:2c:27:25:22:26:8a:d9:e3:42:b5:
cb:f4:eb:72:6e:c0:96:5c:d3:8a:f4:c9:5e:39:da:af:6c:97:
46:c5:b3:27:cc:d9:56:0c:be:e4:bf:62:f4:0d:26:76:e5:9a:
9b:00:b3:59:09:50:38:ea:79:4c:5d:c9:c4:bd:51:17:83:5d:
b0:ad:b0:50:bd:bc:09:c3:85:9d:78:a7:17:79:2b:94:3d:70:
14:e0:e3:dd:72:9e:69:da:a4:8b:83:d7:c5:f0:91:08:48:42:
f8:f8:6d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 18:13:34 2024 by rpki-client on console-fra.rpki-client.org