Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/pf_ZganF6Vfk1M9-anaQQCCi85E.roa
File: pf_ZganF6Vfk1M9-anaQQCCi85E.roa (raw, json)
Hash identifier: wikx46LFZZ5ra3eDX6mcs3+F6ecpOzSa0F4+17QI9M0=
Subject key identifier: A5:FF:D9:81:A9:C5:E9:57:E4:D4:CF:7E:6A:76:90:40:20:A2:F3:91
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018708CE8E98D486D4784952FD21376F5B41
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/pf_ZganF6Vfk1M9-anaQQCCi85E.roa
Signing time: Wed 22 Mar 2023 10:12:47 +0000
ROA not before: Wed 22 Mar 2023 10:12:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202997
IP address blocks: 195.235.228.0/24 maxlen: 24
195.235.230.0/24 maxlen: 24
195.235.229.0/24 maxlen: 24
195.235.231.0/24 maxlen: 24
195.235.24.0/24 maxlen: 24
195.235.25.0/24 maxlen: 24
195.235.27.0/24 maxlen: 24
195.235.26.0/24 maxlen: 24
195.235.29.0/24 maxlen: 24
195.235.28.0/24 maxlen: 24
195.235.30.0/24 maxlen: 24
195.235.168.0/24 maxlen: 24
195.235.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:ce:8e:98:d4:86:d4:78:49:52:fd:21:37:6f:5b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Mar 22 10:12:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5ffd981a9c5e957e4d4cf7e6a76904020a2f391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c7:25:6e:65:5a:09:c2:44:28:b8:d6:25:cd:
0a:dd:7e:da:46:67:8e:5f:59:8b:05:42:cf:31:85:
27:d4:56:30:71:c5:7d:2e:1b:e1:05:4e:1e:06:52:
43:09:70:24:fe:92:5d:c9:e5:db:76:83:63:b1:8e:
8c:c1:34:e4:e4:90:33:49:fd:15:07:6e:82:65:c5:
10:b8:ca:bb:a6:22:a6:65:77:66:be:d0:1f:3a:02:
fa:33:62:67:7b:73:c4:5d:16:09:06:05:43:e7:d6:
47:c8:3a:e0:f2:a2:98:97:65:89:db:42:c3:af:56:
48:43:66:1d:6d:47:9c:10:cc:55:a2:93:da:22:fa:
1a:df:8f:35:b2:f8:44:43:15:65:35:fe:f2:51:e8:
10:9c:4b:0b:09:1d:bd:2f:1c:48:9a:87:74:6c:de:
85:5e:de:9f:82:aa:1f:11:9d:14:53:da:6f:05:ca:
53:89:8a:64:fe:25:8d:77:5d:ed:7f:4d:04:bb:32:
d2:72:2a:74:0b:32:23:e9:52:5d:50:a1:d9:e0:08:
3a:11:20:0f:ac:c5:ec:4e:8c:31:a9:ac:9f:bb:de:
a5:08:6c:c0:a9:e7:53:bc:9e:d7:1f:bf:00:4c:f4:
cf:1b:42:b0:d2:7d:e4:3e:f5:69:db:48:01:f4:74:
7d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FF:D9:81:A9:C5:E9:57:E4:D4:CF:7E:6A:76:90:40:20:A2:F3:91
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/pf_ZganF6Vfk1M9-anaQQCCi85E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.235.24.0-195.235.30.255
195.235.168.0/23
195.235.228.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:5b:fa:10:23:c6:08:c8:08:8c:c0:ae:56:ba:67:19:da:23:
d0:d7:b9:71:74:bc:d0:e6:4c:6a:90:31:a2:65:87:51:50:68:
d9:c3:de:20:c0:a6:38:c4:74:48:39:10:b1:da:43:95:b6:6e:
6c:5c:ca:f7:80:ae:8a:25:c1:09:11:79:6e:0a:8d:75:48:b8:
ea:c0:eb:80:12:55:9e:42:41:90:30:cd:c0:bb:b0:f9:4b:f2:
0d:95:59:0f:7e:95:21:75:9b:4f:d5:3e:f5:00:d5:0f:c8:5a:
f8:4a:50:f2:bc:93:c0:8d:fa:e7:4a:23:45:fe:49:2b:a2:6d:
d3:51:f7:93:49:31:08:fb:40:3d:0b:97:4b:d0:87:c1:96:ea:
7c:2c:3f:a5:7e:d3:4d:0a:f0:57:dd:a1:72:e0:76:99:eb:86:
ff:53:46:73:f1:59:3c:fd:5b:fd:44:c1:4f:35:93:b1:7e:73:
0a:11:a9:fc:af:be:9f:a8:dd:90:90:9c:84:1d:f8:07:ea:42:
08:cb:f7:eb:c1:2d:60:f1:cb:4c:d5:92:3e:a2:f6:65:7c:bf:
ae:bd:d6:ab:d1:20:4c:2a:59:57:28:c3:b7:f1:97:f8:f8:e4:
90:6c:d6:12:16:5b:70:41:2e:de:48:4d:50:c3:eb:7c:0d:6f:
85:09:78:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org