Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kwyfT7DW2pwP084yxgihjBMBg-0.roa
File: kwyfT7DW2pwP084yxgihjBMBg-0.roa (raw, json)
Hash identifier: ecap06pSTgZ6K1ah6erUE2Gtiki2cqZAHKJsenUJhIc=
Subject key identifier: 93:0C:9F:4F:B0:D6:DA:9C:0F:D3:CE:32:C6:08:A1:8C:13:01:83:ED
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0189654A8F8BA23C498DF7C43C5F5562773E
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kwyfT7DW2pwP084yxgihjBMBg-0.roa
Signing time: Mon 17 Jul 2023 19:18:52 +0000
ROA not before: Mon 17 Jul 2023 19:18:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34665
IP address blocks: 194.156.1.0/24 maxlen: 24
45.91.161.0/24 maxlen: 24
194.156.122.0/24 maxlen: 24
193.32.190.0/24 maxlen: 24
194.156.26.0/24 maxlen: 24
77.83.72.0/24 maxlen: 24
45.92.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:8f:8b:a2:3c:49:8d:f7:c4:3c:5f:55:62:77:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 17 19:18:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=930c9f4fb0d6da9c0fd3ce32c608a18c130183ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:48:20:35:cf:77:89:e2:0e:22:c5:5a:0d:
1d:41:db:58:fd:2e:f2:07:61:36:e1:2a:26:80:36:
c6:2c:01:d6:2c:ee:53:dc:97:af:be:cb:ff:fb:d5:
42:3e:0a:e4:23:bf:40:00:61:e8:c1:5f:70:5e:21:
f0:59:0b:ae:bf:c2:e4:4c:a7:63:6c:57:f3:1f:ec:
3f:9b:91:93:a8:74:2a:07:80:81:aa:b0:39:f1:c3:
a8:d6:a9:b4:18:c1:b0:6c:32:c8:eb:b4:ec:60:aa:
3f:94:fd:20:dd:8a:ef:4d:5b:a8:1b:67:4b:6d:b3:
10:83:ab:a7:f9:a7:f3:70:b6:c1:50:59:49:43:14:
c2:66:bb:3c:d9:6c:e5:d0:bb:cf:59:7a:ae:9b:74:
9f:67:d3:41:d4:63:84:66:a9:6b:14:50:34:17:e2:
e7:d5:c4:9d:08:45:fe:c2:37:52:7e:ab:ba:ab:96:
4b:da:6a:d5:2b:3a:ba:ea:8f:81:8e:dd:45:5b:ef:
9c:01:6f:f8:73:62:9f:a5:9e:f4:c8:da:df:3c:bc:
a8:83:49:42:a7:0d:dd:c0:6b:8a:34:d5:8b:98:f2:
ee:dd:23:27:95:6b:23:d2:cf:6e:4d:b8:99:d0:45:
d3:e9:47:7f:a4:f9:4f:19:6f:da:53:94:e7:3b:45:
9f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0C:9F:4F:B0:D6:DA:9C:0F:D3:CE:32:C6:08:A1:8C:13:01:83:ED
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kwyfT7DW2pwP084yxgihjBMBg-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.161.0/24
45.92.174.0/24
77.83.72.0/24
193.32.190.0/24
194.156.1.0/24
194.156.26.0/24
194.156.122.0/24
Signature Algorithm: sha256WithRSAEncryption
95:43:a4:fd:1c:a5:02:31:db:b9:43:6d:36:e2:9e:fe:46:68:
62:a8:ef:58:85:a3:71:ba:28:36:29:2c:47:7a:ee:12:ff:78:
8e:ec:64:7a:69:53:67:49:c3:67:79:15:2d:7d:b4:3a:69:81:
23:88:30:96:fa:d5:b6:71:46:cd:2e:71:e7:36:2a:39:8b:1e:
c8:ed:4d:a9:bd:04:64:67:ca:40:e4:46:f3:34:f5:ab:3b:db:
e0:c0:d1:7d:03:19:27:80:db:11:6d:06:22:68:58:82:db:e5:
ba:06:65:ce:26:3c:f2:c1:94:69:ef:da:16:7d:53:35:d8:47:
f0:f6:7d:04:82:ba:d8:6b:0a:d0:4a:dd:7e:5e:38:bc:39:b0:
8a:24:90:b7:24:85:a5:86:2c:56:24:08:3c:53:46:cd:fe:d5:
66:f2:3f:3c:3c:65:57:e0:cc:89:ef:20:42:72:2f:87:15:2a:
14:2e:95:25:99:2d:b8:53:4a:82:d5:7c:c5:8d:ed:6d:e5:12:
aa:05:08:9c:f6:a5:bc:c3:24:23:ee:a5:77:68:e8:8f:ff:45:
df:f0:21:fa:23:a2:83:f1:c9:d2:58:6d:70:33:9e:dd:eb:b9:
40:e0:78:b9:68:ed:11:84:13:e8:8b:a1:26:8d:d1:1c:35:e0:
47:3f:6a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org