Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IeJxgfwXDmj6jxtaxWj4AybbA5k.roa
File: IeJxgfwXDmj6jxtaxWj4AybbA5k.roa (raw, json)
Hash identifier: OBiCSDoWHwkZOcK8Xy46yLhnhnwrFElN4kvNlb7GYpw=
Subject key identifier: 21:E2:71:81:FC:17:0E:68:FA:8F:1B:5A:C5:68:F8:03:26:DB:03:99
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018963B4F761CA5688F4774D1C7E8D617CAE
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IeJxgfwXDmj6jxtaxWj4AybbA5k.roa
Signing time: Mon 17 Jul 2023 11:55:51 +0000
ROA not before: Mon 17 Jul 2023 11:55:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 79.124.0.0/24 maxlen: 24
217.174.150.0/24 maxlen: 24
79.124.15.0/24 maxlen: 24
217.174.154.0/24 maxlen: 24
217.174.159.0/24 maxlen: 24
79.124.20.0/23 maxlen: 23
79.124.24.0/22 maxlen: 24
79.124.23.0/24 maxlen: 24
79.124.28.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
79.124.50.0/24 maxlen: 24
79.124.73.0/24 maxlen: 24
79.124.74.0/24 maxlen: 24
79.124.79.0/24 maxlen: 24
94.72.145.0/24 maxlen: 24
94.72.148.0/22 maxlen: 24
94.72.159.0/24 maxlen: 24
94.72.158.0/24 maxlen: 24
82.118.246.0/23 maxlen: 23
82.118.244.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.84.0/23 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.81.0/24 maxlen: 24
82.118.224.0/24 maxlen: 24
82.118.236.0/24 maxlen: 24
82.118.238.0/24 maxlen: 24
5.104.168.0/23 maxlen: 23
78.128.67.0/24 maxlen: 24
5.104.174.0/24 maxlen: 24
78.128.72.0/24 maxlen: 24
78.128.79.0/24 maxlen: 24
91.148.140.0/24 maxlen: 24
78.128.92.0/24 maxlen: 24
78.128.94.0/24 maxlen: 24
78.128.98.0/24 maxlen: 24
130.185.229.0/24 maxlen: 24
130.185.236.0/24 maxlen: 24
130.185.235.0/24 maxlen: 24
130.185.237.0/24 maxlen: 24
78.142.34.0/24 maxlen: 24
78.142.33.0/24 maxlen: 24
130.185.250.0/24 maxlen: 24
130.185.248.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
185.148.160.0/22 maxlen: 22
91.148.160.0/24 maxlen: 24
78.128.108.0/23 maxlen: 23
78.142.1.0/24 maxlen: 24
78.142.4.0/23 maxlen: 23
78.142.17.0/24 maxlen: 24
130.185.224.0/24 maxlen: 24
78.142.20.0/24 maxlen: 24
78.142.24.0/24 maxlen: 24
2a01:8740::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 28 Jul 2023 07:19:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:b4:f7:61:ca:56:88:f4:77:4d:1c:7e:8d:61:7c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jul 17 11:55:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21e27181fc170e68fa8f1b5ac568f80326db0399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1a:7d:b4:fb:f3:39:9f:f4:a8:c6:4f:6d:ac:
f7:8c:d7:69:b2:5b:81:93:34:0b:c4:8c:27:3e:e2:
7e:b4:d1:8f:c1:93:c8:3e:4d:9a:b7:76:16:ea:b9:
12:20:cc:16:be:f6:f0:07:6d:4c:87:c0:42:62:1a:
7c:9a:34:f4:c2:8f:b5:cf:e9:b1:54:d0:9e:39:77:
e2:0d:e1:2e:44:74:96:18:41:86:62:d6:70:d4:85:
23:72:ad:62:62:2c:ee:bc:78:57:82:b4:a9:5c:c2:
62:8c:6d:ce:b4:4f:43:cb:c2:8a:da:ee:5e:53:23:
22:ac:9c:ca:e9:b4:2e:f4:12:b9:cf:f8:4a:34:b4:
82:ad:bc:f8:d0:81:c5:65:0e:27:6d:a7:dc:dd:5d:
31:09:6a:07:34:53:76:27:a6:cc:40:65:0c:a7:c1:
29:f8:47:81:17:39:ca:8a:66:d5:84:e9:4d:d4:8a:
be:0c:ac:34:14:9c:aa:2a:a9:0e:3b:bb:79:44:28:
49:e3:03:b2:a6:19:df:ad:90:29:7e:3a:cf:9f:10:
08:2b:91:ce:e7:b2:34:33:90:25:ff:45:55:d4:bd:
0b:d9:43:55:5a:eb:f5:4c:2f:80:57:e2:52:04:bc:
21:25:62:25:f3:b4:48:64:aa:ff:66:6a:15:7b:3b:
51:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E2:71:81:FC:17:0E:68:FA:8F:1B:5A:C5:68:F8:03:26:DB:03:99
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IeJxgfwXDmj6jxtaxWj4AybbA5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.168.0/23
5.104.174.0/24
78.128.67.0/24
78.128.72.0/24
78.128.79.0/24
78.128.92.0/24
78.128.94.0/24
78.128.98.0/24
78.128.108.0/23
78.142.1.0/24
78.142.4.0/23
78.142.17.0/24
78.142.20.0/24
78.142.24.0/24
78.142.33.0-78.142.34.255
78.142.60.0/24
79.124.0.0/24
79.124.15.0/24
79.124.20.0/23
79.124.23.0-79.124.28.255
79.124.50.0/23
79.124.73.0-79.124.74.255
79.124.79.0/24
82.118.224.0/24
82.118.236.0/24
82.118.238.0/24
82.118.244.0/24
82.118.246.0/23
91.148.140.0/24
91.148.160.0/24
94.72.145.0/24
94.72.148.0/22
94.72.158.0/23
130.185.224.0/24
130.185.229.0/24
130.185.235.0-130.185.237.255
130.185.248.0/24
130.185.250.0/24
178.132.80.0-178.132.85.255
185.148.160.0/22
217.174.150.0/24
217.174.154.0/24
217.174.159.0/24
IPv6:
2a01:8740::/32
Signature Algorithm: sha256WithRSAEncryption
b3:d3:14:24:c6:6e:ea:66:90:c2:e2:e3:55:65:74:00:b6:b7:
b8:1f:cb:31:26:fe:9c:1e:bf:f6:0e:f2:fb:c9:96:56:eb:11:
81:47:19:22:31:b0:29:00:8c:d8:56:b6:aa:e1:14:51:59:0c:
01:95:f0:5f:44:7d:f6:a0:a9:cd:f3:f8:c7:5a:20:06:e1:cc:
f8:7b:e9:cd:37:a5:30:2f:70:05:d5:c2:4b:fa:fe:73:a1:b6:
e6:f5:21:68:d3:68:cd:5e:c2:d3:1a:63:c7:15:e7:cc:23:44:
62:da:71:43:87:1f:86:ac:1e:9d:be:39:e5:d3:58:6f:87:96:
29:e9:47:f7:68:fc:d4:bb:38:64:29:8b:34:64:82:c1:38:6d:
a6:95:2e:b2:c2:f1:dd:48:bb:9f:f5:e9:1a:f9:25:83:7b:ff:
f8:51:a3:d0:59:2d:f0:bb:be:39:83:f3:f7:f9:67:4f:1f:e2:
3a:ae:1b:43:f2:58:d3:dc:5d:d4:74:2e:98:90:b5:69:7f:6b:
63:41:c7:d6:d2:0e:cd:04:fe:d9:53:1c:da:19:24:91:a4:7b:
b6:e7:5c:a2:94:2b:62:b9:07:25:a1:cf:c2:d3:23:98:b4:c0:
0d:d0:34:7a:f5:a7:ab:1b:fb:c3:48:8a:ab:93:e4:cd:76:45:
7c:24:e9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org