Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/KWTteUtAl1thUUbiLGY1ShDtPOg.roa
File: KWTteUtAl1thUUbiLGY1ShDtPOg.roa (raw, json)
Hash identifier: smiVObxkR8YCcfGGx5SfoE9jU5MUcMd8gGJw0EAyRa4=
Subject key identifier: 29:64:ED:79:4B:40:97:5B:61:51:46:E2:2C:66:35:4A:10:ED:3C:E8
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 0187568223BBFDB4203FCA5DD327EB182685
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/KWTteUtAl1thUUbiLGY1ShDtPOg.roa
Signing time: Thu 06 Apr 2023 12:19:42 +0000
ROA not before: Thu 06 Apr 2023 12:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43766
IP address blocks: 79.170.124.0/22 maxlen: 22
79.170.120.0/22 maxlen: 22
77.232.116.0/22 maxlen: 22
77.232.121.0/24 maxlen: 24
77.232.125.0/24 maxlen: 24
77.232.126.0/24 maxlen: 24
77.223.224.0/22 maxlen: 22
77.232.103.0/24 maxlen: 24
77.232.102.0/24 maxlen: 24
77.232.104.0/21 maxlen: 21
95.178.48.0/21 maxlen: 21
185.5.154.0/24 maxlen: 24
95.178.72.0/21 maxlen: 21
2a02:cb81:1104::/47 maxlen: 47
Validation: Failed, certificate revoked on Sun 09 Apr 2023 11:47:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:82:23:bb:fd:b4:20:3f:ca:5d:d3:27:eb:18:26:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Apr 6 12:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2964ed794b40975b615146e22c66354a10ed3ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bd:c8:ff:ef:91:7a:82:34:05:60:6a:dc:5c:
18:bc:09:90:62:97:65:ce:09:b0:9b:69:45:a0:ef:
ea:e1:e9:83:35:99:65:0a:d9:11:b8:51:78:65:f9:
bc:76:08:65:3a:9d:2e:1c:03:97:74:5d:a9:84:55:
ce:db:f3:1b:35:8f:dd:3f:45:61:23:52:26:f3:ea:
35:ce:46:ee:cb:fd:4b:7c:94:f3:0e:29:62:7e:4c:
0c:f8:31:30:7d:28:66:be:2a:99:fb:0a:b4:fe:eb:
1c:ff:7c:59:ef:f1:f6:a1:b9:2b:55:fd:f4:1a:fc:
6c:bf:6d:26:00:e9:5f:37:cf:95:ab:08:c3:55:81:
54:d7:8f:1a:5d:58:3f:68:51:8e:fe:b0:a3:35:7a:
22:02:63:46:25:cb:09:3e:9f:09:8c:1d:fe:22:52:
b2:d0:87:71:f2:a2:ec:cd:dd:a0:1a:90:ac:41:bf:
9f:0e:93:15:bc:eb:75:6e:19:7a:ef:6f:21:12:d0:
cd:9a:c8:88:3e:80:6c:e9:2b:d1:31:86:a1:80:f8:
e8:38:b4:df:13:b6:2b:9a:e9:86:dd:0b:db:60:05:
72:03:d0:23:c7:f0:71:c2:2d:50:98:f4:61:68:60:
0d:6b:90:47:bf:1e:bb:4d:2b:1d:12:a9:7d:f2:16:
69:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:64:ED:79:4B:40:97:5B:61:51:46:E2:2C:66:35:4A:10:ED:3C:E8
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/KWTteUtAl1thUUbiLGY1ShDtPOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.224.0/22
77.232.102.0-77.232.111.255
77.232.116.0/22
77.232.121.0/24
77.232.125.0-77.232.126.255
79.170.120.0/21
95.178.48.0/21
95.178.72.0/21
185.5.154.0/24
IPv6:
2a02:cb81:1104::/47
Signature Algorithm: sha256WithRSAEncryption
7b:a8:26:df:46:cb:1f:0b:85:ef:5d:e0:52:2d:23:0e:be:11:
c1:1e:fc:d9:9e:c2:53:3a:16:6e:e2:a1:9c:dd:d9:8c:b5:92:
54:f3:fa:ee:e3:8a:d7:ce:83:0c:cb:d5:d8:54:27:cb:8a:96:
bf:bb:f5:6a:6c:50:ea:bc:eb:6d:8a:88:be:d7:18:ab:b2:a0:
13:78:7d:fa:7d:41:88:73:bb:18:ff:56:d5:f8:ed:46:b1:ca:
a0:d7:cb:dc:f1:0b:b7:38:82:80:a1:d9:70:45:b9:86:ce:39:
52:c0:71:c1:9e:0e:d1:bf:49:65:a6:d2:37:31:eb:3c:81:5c:
85:e3:f7:66:f4:dd:c1:a7:61:9a:43:e1:0f:17:3a:ef:5e:0b:
48:ea:2e:bf:82:99:88:43:18:97:2a:b7:44:7b:c7:90:32:9d:
20:78:e7:8d:a6:c2:af:c8:9b:a5:ee:84:7f:65:1d:fe:f8:a6:
33:d4:5c:bd:bb:a5:31:7b:d2:f1:c1:96:9b:74:d4:2f:0c:97:
d7:a3:51:66:4e:1e:27:fd:41:54:23:de:1a:fa:4a:4e:15:4e:
c7:f7:98:e1:fb:02:79:48:e9:66:77:64:7f:57:a1:d3:74:75:
7c:ff:3a:2b:e9:56:4d:f5:5d:81:19:a5:3e:49:4c:30:c7:73:
7d:72:81:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:55 2024 by rpki-client on console-fra.rpki-client.org