Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/tpIQ-5JLfn-L7nOYuzJf68nRn_0.roa
File: tpIQ-5JLfn-L7nOYuzJf68nRn_0.roa (raw, json)
Hash identifier: h9hPRSxnicbry5PnXpa3fEdAX5jgkYVm8vPCfkHe6XM=
Subject key identifier: B6:92:10:FB:92:4B:7E:7F:8B:EE:73:98:BB:32:5F:EB:C9:D1:9F:FD
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 018BB38802FA13B873EF4587155ED6D48F80
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/tpIQ-5JLfn-L7nOYuzJf68nRn_0.roa
Signing time: Thu 09 Nov 2023 10:01:57 +0000
ROA not before: Thu 09 Nov 2023 10:01:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44534
IP address blocks: 95.108.164.0/24 maxlen: 24
95.108.168.0/22 maxlen: 22
95.108.170.0/24 maxlen: 24
37.140.168.0/24 maxlen: 24
95.108.177.0/24 maxlen: 24
95.108.178.0/24 maxlen: 24
37.140.173.0/24 maxlen: 24
95.108.198.0/23 maxlen: 23
5.255.236.0/22 maxlen: 22
87.250.232.0/24 maxlen: 24
87.250.238.0/24 maxlen: 24
178.154.152.0/24 maxlen: 24
93.158.155.0/24 maxlen: 24
5.45.209.0/24 maxlen: 24
5.45.212.0/24 maxlen: 24
93.158.185.0/24 maxlen: 24
93.158.184.0/24 maxlen: 24
93.158.186.0/24 maxlen: 24
87.250.242.0/24 maxlen: 24
90.156.176.0/20 maxlen: 24
90.156.176.0/24 maxlen: 24
77.88.52.0/23 maxlen: 23
77.88.61.0/24 maxlen: 24
93.158.187.0/24 maxlen: 24
93.158.190.0/24 maxlen: 24
77.88.42.0/23 maxlen: 23
213.180.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 15:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b3:88:02:fa:13:b8:73:ef:45:87:15:5e:d6:d4:8f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Nov 9 10:01:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b69210fb924b7e7f8bee7398bb325febc9d19ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:bc:01:c4:1f:f5:69:f6:3e:64:ef:b4:ad:
60:29:e3:9d:a9:04:42:a5:08:16:06:61:82:87:7b:
37:5d:aa:82:98:eb:28:d6:d7:de:84:d9:fe:65:1a:
05:81:ff:ca:c0:d6:2d:1b:50:4b:86:5c:8e:5f:65:
51:ad:53:ef:f8:2d:d5:7f:ab:a1:1f:33:b3:c7:c2:
7b:8e:3f:2b:2b:67:e2:74:cc:b9:e4:2c:15:3d:b1:
5c:97:18:ce:f6:8f:14:f9:1f:70:cb:17:63:13:b2:
d4:f6:ec:1c:3a:fc:03:56:6a:a8:ea:8c:ae:63:31:
8a:1b:6f:45:33:21:cc:24:be:10:eb:13:67:5c:b2:
4c:73:0b:2f:36:42:70:27:7d:c5:eb:8b:79:db:b3:
7b:37:0f:5e:43:d5:3d:5c:40:9a:a3:f1:41:13:d0:
4e:6f:aa:73:da:97:76:86:e5:d6:c4:b8:6d:6d:bf:
ad:84:c7:59:58:53:8f:bf:ab:05:c9:5e:a6:73:95:
a2:47:53:d4:ff:74:ed:d0:ed:33:63:77:d5:34:4c:
71:2b:0b:d7:53:af:31:91:1b:2e:ed:a2:10:76:c3:
e2:2f:a1:cd:d1:dc:8e:24:3d:99:c2:b0:4a:f5:d9:
8f:f3:1f:01:29:82:4d:4a:6c:8d:ca:de:c8:f9:53:
58:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:92:10:FB:92:4B:7E:7F:8B:EE:73:98:BB:32:5F:EB:C9:D1:9F:FD
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/tpIQ-5JLfn-L7nOYuzJf68nRn_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.209.0/24
5.45.212.0/24
5.255.236.0/22
37.140.168.0/24
37.140.173.0/24
77.88.42.0/23
77.88.52.0/23
77.88.61.0/24
87.250.232.0/24
87.250.238.0/24
87.250.242.0/24
90.156.176.0/20
93.158.155.0/24
93.158.184.0/22
93.158.190.0/24
95.108.164.0/24
95.108.168.0/22
95.108.177.0-95.108.178.255
95.108.198.0/23
178.154.152.0/24
213.180.201.0/24
Signature Algorithm: sha256WithRSAEncryption
73:9d:46:b1:83:d6:48:d0:a5:2b:94:52:b8:df:26:4b:57:f6:
54:3b:c9:8b:10:94:8f:7f:2c:07:cf:e5:1a:c4:62:9a:e6:83:
96:9c:ec:8e:6c:59:5c:ab:f4:fa:84:7a:81:64:49:1b:52:1e:
66:a9:ba:b8:64:09:23:54:d7:4d:cb:68:0d:0b:07:fa:bb:c4:
60:ea:21:6a:33:43:c1:f4:cc:5d:9e:62:93:c7:f7:2c:2d:43:
4d:68:7c:ca:0a:dc:03:42:e8:a2:e5:f7:12:4b:8b:5b:4b:e5:
05:23:67:8a:53:38:69:60:f3:74:5a:d8:f6:8d:cf:d2:a6:ec:
6b:57:9d:f3:9b:b7:33:d2:26:62:c4:64:6d:9e:b0:bb:84:6b:
e7:db:63:ef:e2:8c:e3:e5:e6:96:4c:4a:19:c1:ac:01:96:86:
aa:f6:5f:24:51:fa:4c:6e:fa:67:54:3a:e9:7e:74:2b:f5:87:
26:11:30:28:2f:96:75:58:35:2a:36:f9:6f:f5:c6:79:fc:6d:
eb:a5:63:91:fc:20:9e:5c:97:c3:72:ec:c0:f9:ee:54:86:d3:
5f:7e:08:f6:11:40:1c:97:23:ee:2a:2b:d5:a2:b7:6c:4d:02:
b8:6a:f4:a2:8a:e4:01:c1:35:4b:93:03:65:72:96:ab:91:40:
64:4c:d2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:21 2024 by rpki-client on console-ams.rpki-client.org