Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/AzRFD4Y3-aYNZvWr0h2MaWwSj0Q.roa
File: AzRFD4Y3-aYNZvWr0h2MaWwSj0Q.roa (raw, json)
Hash identifier: iRJl13MDE3lceTRO4zO5p/gqLP31/LgVoigJzf+u4Go=
Subject key identifier: 03:34:45:0F:86:37:F9:A6:0D:66:F5:AB:D2:1D:8C:69:6C:12:8F:44
Certificate issuer: /CN=5f4a8f04ef2febe54f9db6a9a2f856594b6e2f08
Certificate serial: 01857139CC6F4224B71A67926FD6CC232FAA
Authority key identifier: 5F:4A:8F:04:EF:2F:EB:E5:4F:9D:B6:A9:A2:F8:56:59:4B:6E:2F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X0qPBO8v6-VPnbapovhWWUtuLwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/AzRFD4Y3-aYNZvWr0h2MaWwSj0Q.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16178
IP address blocks: 178.77.0.0/18 maxlen: 18
178.77.0.0/20 maxlen: 20
178.77.0.0/19 maxlen: 19
185.14.124.0/22 maxlen: 22
85.158.36.0/22 maxlen: 22
85.158.32.0/24 maxlen: 24
85.158.35.0/24 maxlen: 24
85.158.32.0/21 maxlen: 21
217.75.192.0/24 maxlen: 24
217.75.192.0/20 maxlen: 20
217.75.192.0/21 maxlen: 21
217.75.193.0/24 maxlen: 24
217.75.194.0/24 maxlen: 24
217.75.196.0/24 maxlen: 24
217.75.197.0/24 maxlen: 24
217.75.198.0/24 maxlen: 24
217.75.199.0/24 maxlen: 24
178.77.16.0/20 maxlen: 20
46.36.160.0/19 maxlen: 19
178.77.32.0/19 maxlen: 19
217.75.204.0/24 maxlen: 24
217.75.205.0/24 maxlen: 24
217.75.206.0/24 maxlen: 24
217.75.200.0/21 maxlen: 21
217.75.201.0/24 maxlen: 24
217.75.203.0/24 maxlen: 24
217.75.207.0/24 maxlen: 24
79.142.0.0/20 maxlen: 20
2a00:fe8::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 29 Sep 2023 16:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cc:6f:42:24:b7:1a:67:92:6f:d6:cc:23:2f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4a8f04ef2febe54f9db6a9a2f856594b6e2f08
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0334450f8637f9a60d66f5abd21d8c696c128f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:06:c8:f8:63:04:a5:43:b7:46:86:72:e9:dc:
6f:15:97:b2:f5:0d:9c:1a:2b:95:05:90:cd:12:cb:
81:78:a5:f5:0b:9a:39:aa:67:77:18:b6:34:10:92:
09:08:5a:f3:51:e0:70:07:44:31:98:3c:ce:b1:48:
2a:77:6c:05:c3:ff:79:c0:55:2c:93:9e:f9:87:48:
a2:8c:54:16:a3:a7:ae:e8:67:42:62:ce:d8:48:13:
d1:37:f3:fe:aa:ba:ea:4d:ec:31:3a:4d:f4:93:9b:
40:76:00:51:ff:44:f7:7b:e8:dc:25:02:ba:79:aa:
8f:ae:9f:a9:f3:dc:28:72:82:fe:d8:ff:46:55:77:
01:92:71:62:06:00:e6:9c:80:96:40:1a:a6:d7:d5:
09:24:20:cd:f8:cf:72:06:da:e8:cb:04:18:40:46:
35:e1:17:03:88:a1:82:d7:78:33:32:c9:0d:25:be:
43:67:a0:31:5b:3a:88:77:ed:e0:2c:d3:77:25:f2:
9b:34:19:2b:e2:c4:c5:c9:9f:8e:0a:f3:bf:ca:55:
79:fd:06:d4:30:66:1c:4e:83:8e:5a:af:e1:06:24:
b9:99:76:b3:86:70:67:6b:25:41:07:0f:36:eb:3b:
30:b1:10:b2:58:93:d3:de:d3:2e:2c:82:4b:db:b2:
3c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:34:45:0F:86:37:F9:A6:0D:66:F5:AB:D2:1D:8C:69:6C:12:8F:44
X509v3 Authority Key Identifier:
keyid:5F:4A:8F:04:EF:2F:EB:E5:4F:9D:B6:A9:A2:F8:56:59:4B:6E:2F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0qPBO8v6-VPnbapovhWWUtuLwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/AzRFD4Y3-aYNZvWr0h2MaWwSj0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/X0qPBO8v6-VPnbapovhWWUtuLwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.160.0/19
79.142.0.0/20
85.158.32.0/21
178.77.0.0/18
185.14.124.0/22
217.75.192.0/20
IPv6:
2a00:fe8::/32
Signature Algorithm: sha256WithRSAEncryption
6f:a7:af:75:07:84:7f:e3:78:f8:23:a6:88:9a:79:40:e3:e0:
4e:82:84:89:2f:48:7a:d3:d9:81:5b:f4:a2:74:90:b2:5f:be:
8c:0d:29:8e:aa:17:4c:b7:e3:fe:12:53:24:ac:18:a2:88:e2:
07:91:81:fd:5d:1e:17:fe:fb:9e:f3:71:77:e5:a9:3d:ff:42:
a0:91:b7:69:54:39:d5:21:6f:2c:d5:f6:d2:65:82:d5:d9:c8:
1b:c6:69:79:24:d8:3f:96:87:f8:ce:88:86:ed:7f:36:0a:c4:
82:58:e4:1f:63:61:cb:2c:d6:7c:d3:0b:1a:70:02:a1:bc:8f:
3b:ee:55:24:91:bb:2a:6c:69:cc:bb:54:ae:4c:d8:c2:fe:1a:
08:eb:cb:b7:17:ae:0f:3e:9c:e1:22:c5:79:9f:98:96:9c:e7:
3a:c6:b1:6c:b4:8e:fc:dc:65:a6:87:71:8c:62:c1:b7:c0:b1:
ea:26:77:24:57:06:55:c1:53:b7:89:06:4d:86:1d:33:8e:75:
32:7e:d8:22:7c:5e:32:30:74:f2:01:98:12:03:d0:0b:36:aa:
ee:b0:21:00:37:3b:ac:a1:4c:fb:83:77:19:91:48:5d:87:3c:
1b:bf:12:d2:c6:d1:84:fc:00:18:25:84:d8:6b:7f:ee:c5:4d:
f6:ac:4a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:35 2024 by rpki-client on console-ams.rpki-client.org