Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/f_Rg9Z1Ud70TJ8XDXjBVTCPHK-E.roa
File: f_Rg9Z1Ud70TJ8XDXjBVTCPHK-E.roa (raw, json)
Hash identifier: fV2ctVuJIiTJSW8y5PkcHrZXK+ihdW7k0azqxy2nafk=
Subject key identifier: 7F:F4:60:F5:9D:54:77:BD:13:27:C5:C3:5E:30:55:4C:23:C7:2B:E1
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 018CC6B8EE18E27BFC4173D390340500E705
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/f_Rg9Z1Ud70TJ8XDXjBVTCPHK-E.roa
Signing time: Mon 01 Jan 2024 20:30:57 +0000
ROA not before: Mon 01 Jan 2024 20:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44534
IP address blocks: 95.108.164.0/24 maxlen: 24
95.108.168.0/22 maxlen: 22
95.108.170.0/24 maxlen: 24
37.140.168.0/24 maxlen: 24
95.108.177.0/24 maxlen: 24
95.108.178.0/24 maxlen: 24
37.140.173.0/24 maxlen: 24
95.108.198.0/23 maxlen: 23
5.255.232.0/24 maxlen: 24
5.255.236.0/22 maxlen: 22
87.250.232.0/24 maxlen: 24
87.250.238.0/24 maxlen: 24
178.154.152.0/24 maxlen: 24
93.158.155.0/24 maxlen: 24
5.45.209.0/24 maxlen: 24
5.45.212.0/24 maxlen: 24
93.158.185.0/24 maxlen: 24
93.158.184.0/24 maxlen: 24
93.158.186.0/24 maxlen: 24
87.250.242.0/24 maxlen: 24
90.156.176.0/20 maxlen: 24
90.156.176.0/24 maxlen: 24
77.88.52.0/23 maxlen: 23
77.88.61.0/24 maxlen: 24
93.158.187.0/24 maxlen: 24
93.158.190.0/24 maxlen: 24
77.88.42.0/23 maxlen: 23
213.180.201.0/24 maxlen: 24
2a02:6bf:8004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 22 Jan 2024 10:41:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ee:18:e2:7b:fc:41:73:d3:90:34:05:00:e7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Jan 1 20:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ff460f59d5477bd1327c5c35e30554c23c72be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9d:c3:f6:68:86:bf:1f:2f:09:26:cf:4d:7f:
89:cd:02:ca:2c:8f:77:0b:ad:26:18:98:35:f9:35:
75:58:55:ca:2a:6a:60:b2:3d:6e:c0:a2:06:2e:44:
26:c2:ba:e3:47:e4:8e:ec:f2:a5:2a:71:a1:66:3c:
bd:f5:f6:06:4b:6b:4d:89:ac:d4:d6:07:29:72:a3:
6a:20:01:1f:2a:5b:57:e4:e8:43:39:27:c3:f6:27:
26:6a:e1:48:ab:43:32:36:a2:85:3a:ff:d8:c1:27:
aa:25:97:e6:f4:24:eb:3b:ee:ae:8c:2b:93:42:da:
28:55:4f:ae:7f:f6:64:dc:3c:62:6c:ec:e2:a1:1c:
8e:77:be:20:d1:c5:62:8a:5f:32:9e:16:9a:f7:8e:
50:b3:78:29:a2:6e:58:95:59:22:b9:1f:14:84:c0:
53:de:35:a7:a8:43:f7:27:e2:01:2b:aa:95:8d:c6:
c3:bf:51:14:b5:ba:a6:2b:6e:e8:28:4e:67:0a:88:
db:f4:b1:3e:45:85:89:f1:d8:f7:f9:7f:8d:eb:31:
72:5d:61:53:b6:08:c7:e0:e4:26:37:34:de:36:ce:
2e:5a:c2:bd:4b:3b:93:e1:1c:8e:75:c0:88:a4:81:
a9:00:ab:f1:00:11:20:b0:3c:ec:41:65:63:9b:07:
77:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F4:60:F5:9D:54:77:BD:13:27:C5:C3:5E:30:55:4C:23:C7:2B:E1
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/f_Rg9Z1Ud70TJ8XDXjBVTCPHK-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.209.0/24
5.45.212.0/24
5.255.232.0/24
5.255.236.0/22
37.140.168.0/24
37.140.173.0/24
77.88.42.0/23
77.88.52.0/23
77.88.61.0/24
87.250.232.0/24
87.250.238.0/24
87.250.242.0/24
90.156.176.0/20
93.158.155.0/24
93.158.184.0/22
93.158.190.0/24
95.108.164.0/24
95.108.168.0/22
95.108.177.0-95.108.178.255
95.108.198.0/23
178.154.152.0/24
213.180.201.0/24
IPv6:
2a02:6bf:8004::/48
Signature Algorithm: sha256WithRSAEncryption
3c:93:21:72:a9:1e:ac:16:4b:49:0e:01:8e:00:61:11:1c:4f:
21:df:30:e3:ed:e6:04:be:85:23:34:e5:19:05:64:7a:72:a0:
de:37:4e:cd:c9:ad:0d:08:9d:1d:a2:5d:ca:5f:47:82:a9:69:
61:82:70:ed:93:8a:18:82:f9:3f:08:69:78:eb:f4:d5:a9:5f:
20:cf:b6:6d:79:72:26:09:19:bb:51:cf:82:1b:c2:2d:d8:c5:
bf:d0:97:8a:cb:82:fe:8e:eb:9b:66:92:72:45:2b:6d:11:32:
b2:9c:e9:5e:27:0a:69:46:59:66:63:89:37:4d:5b:af:64:5a:
73:c0:36:f2:e0:f7:b2:ac:b4:88:f8:79:b9:8b:58:03:c6:92:
4d:61:d4:b8:c9:b7:03:68:0e:fd:76:d3:0d:71:36:53:8b:e0:
0d:f7:39:e4:ce:01:f7:63:3a:b4:56:d1:dc:35:86:f8:98:67:
1e:92:96:4f:b6:0c:f7:10:10:f0:84:a8:34:d0:f2:82:1c:cd:
f4:b1:22:ed:f8:f3:d4:86:e0:8a:6d:84:26:a0:ce:b5:57:1a:
92:39:3c:32:67:b9:20:91:b5:e6:13:96:8a:3a:20:ac:56:60:
78:47:44:c9:bd:02:80:cc:29:60:13:69:a4:14:21:01:0c:c9:
cf:96:01:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org