Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/fWItWJCRDQ0ZfNotv0HxeWHvpF0.roa
File: fWItWJCRDQ0ZfNotv0HxeWHvpF0.roa (raw, json)
Hash identifier: JCwmuGsFsZUg21IUiWTbjHDtlKD5PxYy6ysyaPuJGls=
Subject key identifier: 7D:62:2D:58:90:91:0D:0D:19:7C:DA:2D:BF:41:F1:79:61:EF:A4:5D
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 01869C840E7DA05B63812BCA4FCC1786C93D
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/fWItWJCRDQ0ZfNotv0HxeWHvpF0.roa
Signing time: Wed 01 Mar 2023 09:32:25 +0000
ROA not before: Wed 01 Mar 2023 09:32:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.37.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.204.0/22 maxlen: 22
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Jul 2023 08:55:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:84:0e:7d:a0:5b:63:81:2b:ca:4f:cc:17:86:c9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Mar 1 09:32:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d622d5890910d0d197cda2dbf41f17961efa45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:17:21:ce:6e:54:b6:76:da:d9:91:1f:d3:94:
a9:bc:dc:0f:cf:2b:a5:23:d6:5a:b8:91:4b:c6:5c:
60:ee:9b:80:0b:6b:a6:45:c2:8e:25:dc:94:23:fe:
cd:95:9b:8b:66:4f:86:bb:56:5f:e3:05:e9:0e:e3:
8e:f8:ea:14:2b:02:6b:b4:58:f7:33:b6:fb:7b:70:
8c:53:e0:72:b2:9b:76:d3:b1:da:b2:ee:e3:d9:c6:
67:3c:93:27:f5:6e:7e:4a:e1:32:2a:54:28:d1:b9:
17:79:e3:a3:dc:9d:b3:4d:00:4c:f0:83:22:b8:f9:
35:81:6d:78:16:42:92:2e:4b:f5:31:08:18:40:58:
b2:ee:c5:e7:90:b7:0e:47:d4:91:76:4e:87:7f:7e:
73:f1:a5:cd:1f:15:e2:01:fd:df:de:ab:77:a9:fe:
b1:ff:e7:3f:b5:91:cd:2b:9e:89:bb:fc:4d:2e:a0:
b6:0d:b8:68:f4:05:ee:36:a5:a7:43:c8:29:0a:9f:
9e:55:1f:0f:50:10:c1:b8:6f:7a:95:54:41:9d:5e:
45:5a:e7:4d:ac:17:5d:cd:0e:08:53:14:0b:e6:57:
ea:ac:c3:f8:af:30:ab:26:e9:35:ef:49:5b:89:4d:
b1:ee:2e:4b:c5:d3:59:b5:14:77:90:54:47:85:ac:
23:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:62:2D:58:90:91:0D:0D:19:7C:DA:2D:BF:41:F1:79:61:EF:A4:5D
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/fWItWJCRDQ0ZfNotv0HxeWHvpF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
83:1b:11:98:72:97:51:21:d2:10:b0:47:d2:4b:fe:60:a9:5a:
a3:e2:13:5e:ec:ca:f6:b4:dd:f6:2b:bc:96:4c:04:c1:17:96:
e9:8c:71:21:00:93:6e:48:64:96:a2:ad:40:b5:56:d5:f9:96:
32:f5:06:09:af:dc:7d:1c:3e:13:16:37:39:75:c8:15:fc:cc:
aa:c9:62:95:fa:5e:22:ff:8f:a1:73:20:49:d2:b8:df:9f:6d:
1e:04:31:28:21:43:47:37:58:24:e6:66:45:da:17:81:18:ec:
99:fb:1c:61:fa:68:d3:ec:05:70:a7:35:2c:4d:4e:0e:df:85:
91:15:f4:48:06:7c:4e:11:ba:c8:51:c3:f2:63:14:2c:d0:fe:
c7:68:cf:b2:78:42:de:75:db:27:f2:f9:a2:d1:60:be:96:92:
36:fa:e5:a5:68:99:f0:c0:94:fa:1d:b1:84:e7:f4:12:71:42:
7d:c5:17:4a:31:7e:22:c3:e8:ab:05:3d:ae:bb:33:2c:7e:95:
98:37:3a:6b:ec:ea:f6:51:f8:93:df:9b:69:45:ef:7d:de:75:
da:74:cd:e7:46:92:30:d1:2e:74:f5:1b:dc:9a:fc:21:78:5b:
cd:c1:b8:2a:7a:71:39:a6:07:de:ef:86:4f:a3:85:6e:db:ee:
ed:e8:a0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org