Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RRyt2LsWstRMwX18DMbdyomwhfw.roa
File: RRyt2LsWstRMwX18DMbdyomwhfw.roa (raw, json)
Hash identifier: 74sm8TG4Y9HkpIFg8SN6dHC22P19Nt8eOsYGSe7vRMI=
Subject key identifier: 45:1C:AD:D8:BB:16:B2:D4:4C:C1:7D:7C:0C:C6:DD:CA:89:B0:85:FC
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019197D98DF3FF03B5D0855531ACFDD79738
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RRyt2LsWstRMwX18DMbdyomwhfw.roa
Signing time: Wed 28 Aug 2024 07:18:22 +0000
ROA not before: Wed 28 Aug 2024 07:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57630
IP address blocks: 192.71.0.0/24 maxlen: 24
192.165.3.0/24 maxlen: 24
192.165.134.0/23 maxlen: 23
192.165.152.0/22 maxlen: 24
192.165.157.0/24 maxlen: 24
193.180.92.0/24 maxlen: 24
193.181.34.0/24 maxlen: 24
193.183.20.0/24 maxlen: 24
193.183.49.0/24 maxlen: 24
193.183.59.0/24 maxlen: 24
193.234.3.0/24 maxlen: 24
193.234.94.0/24 maxlen: 24
193.234.116.0/22 maxlen: 22
193.234.144.0/24 maxlen: 24
193.234.205.0/24 maxlen: 24
194.14.57.0/24 maxlen: 24
194.68.181.0/24 maxlen: 24
194.71.0.0/23 maxlen: 23
194.71.219.0/24 maxlen: 24
194.103.3.0/24 maxlen: 24
194.103.16.0/23 maxlen: 24
194.103.95.0/24 maxlen: 24
194.103.145.0/24 maxlen: 24
194.103.197.0/24 maxlen: 24
194.132.164.0/24 maxlen: 24
194.132.166.0/24 maxlen: 24
194.132.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 12:45:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:97:d9:8d:f3:ff:03:b5:d0:85:55:31:ac:fd:d7:97:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Aug 28 07:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=451cadd8bb16b2d44cc17d7c0cc6ddca89b085fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:33:86:34:0c:7c:52:8b:f7:5e:9b:01:fc:27:
27:3f:59:27:bb:9f:5d:57:6a:1e:3e:22:2a:31:52:
b8:e8:37:40:16:3a:c1:aa:60:57:e9:55:09:4c:a8:
7d:5c:27:2e:53:09:94:81:48:e0:8e:a9:93:22:34:
19:c6:69:32:62:68:7c:6f:75:47:7f:66:86:49:b1:
34:39:0e:ef:aa:77:09:96:e9:f6:e2:d8:ea:d6:91:
ae:ee:a9:81:de:d1:bc:83:e9:18:0c:86:81:f3:b3:
b9:fa:02:94:3a:2f:8c:5c:0c:d5:ef:d9:5e:6a:2e:
82:bc:96:ea:0d:41:95:75:af:de:cc:48:3a:a6:4c:
e4:f3:d0:fc:0a:00:55:33:24:22:e6:15:ad:2f:7a:
6a:05:f9:49:b7:54:0f:c2:e3:93:38:aa:16:e5:05:
06:4a:c0:6e:f2:16:bc:03:9f:12:1d:93:35:1d:16:
ae:6d:02:38:84:0b:e3:1b:1a:e6:1b:98:20:97:23:
b3:63:e6:c4:8a:64:52:e2:ff:bf:4c:ee:b8:5d:28:
e0:c5:02:11:79:83:77:0c:de:fe:8c:4f:69:4c:7b:
47:8c:22:25:fa:2e:a6:2c:89:51:0d:59:70:95:1f:
07:d6:5a:03:95:42:76:e5:46:6d:bf:a2:52:76:29:
59:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:1C:AD:D8:BB:16:B2:D4:4C:C1:7D:7C:0C:C6:DD:CA:89:B0:85:FC
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RRyt2LsWstRMwX18DMbdyomwhfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.0.0/24
192.165.3.0/24
192.165.134.0/23
192.165.152.0/22
192.165.157.0/24
193.180.92.0/24
193.181.34.0/24
193.183.20.0/24
193.183.49.0/24
193.183.59.0/24
193.234.3.0/24
193.234.94.0/24
193.234.116.0/22
193.234.144.0/24
193.234.205.0/24
194.14.57.0/24
194.68.181.0/24
194.71.0.0/23
194.71.219.0/24
194.103.3.0/24
194.103.16.0/23
194.103.95.0/24
194.103.145.0/24
194.103.197.0/24
194.132.164.0/24
194.132.166.0/24
194.132.186.0/24
Signature Algorithm: sha256WithRSAEncryption
61:00:dc:ab:17:29:86:7d:64:52:74:4e:1d:12:86:c8:90:28:
bd:cb:1d:f2:d0:80:36:22:5a:4a:7a:60:d8:61:ad:59:75:a5:
7e:c0:3e:11:47:60:d6:dd:7a:33:1b:a8:6e:21:ef:f8:a7:3f:
4d:38:ea:b4:40:db:3a:e4:c6:15:78:9d:49:56:a3:1b:a0:3e:
0d:0b:b3:a4:77:1d:56:3e:fd:2e:b7:71:ac:e0:88:3e:66:b5:
66:23:16:3a:17:2d:e1:07:6e:c2:33:c8:f9:82:f1:4f:01:18:
3f:34:99:c6:ac:16:83:a5:88:37:c0:df:de:c9:dd:ec:d8:82:
2e:8e:4c:09:75:dd:b3:f0:24:7b:57:f9:6d:eb:90:ac:d0:aa:
85:f8:a8:5c:db:d8:a6:ba:0c:a6:8e:5a:5a:83:3c:04:da:d4:
d4:67:bd:f9:48:6c:88:1a:29:d2:96:4c:1b:5e:a1:86:d8:fe:
62:e7:db:be:6a:2a:67:9e:1b:af:d5:55:9c:72:90:a8:d1:a9:
1c:7b:ac:fd:9c:d8:12:00:fb:6e:0e:18:20:75:0a:8c:74:91:
9f:a9:71:6f:a1:3d:db:c0:7a:a1:89:c1:1a:9c:07:4f:09:78:
d6:f4:86:ca:77:93:bb:47:1c:2b:5b:17:a5:e8:73:a9:c4:a0:
18:a2:22:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:08 2025 by rpki-client