Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/t5NQLBPQ5aJFFchqHIx8sFk1MGE.roa
File: t5NQLBPQ5aJFFchqHIx8sFk1MGE.roa (raw, json)
Hash identifier: fpX6taMTIK3ebg4BNZDPH+boFsCTxOoIwS22qaS4LsE=
Subject key identifier: B7:93:50:2C:13:D0:E5:A2:45:15:C8:6A:1C:8C:7C:B0:59:35:30:61
Certificate issuer: /CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Certificate serial: 018E032DFA44A184D0308623989F40952E6B
Authority key identifier: BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/t5NQLBPQ5aJFFchqHIx8sFk1MGE.roa
Signing time: Sun 03 Mar 2024 07:18:48 +0000
ROA not before: Sun 03 Mar 2024 07:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30815
IP address blocks: 88.209.128.0/22 maxlen: 22
88.209.128.0/24 maxlen: 24
88.209.130.0/24 maxlen: 24
88.209.132.0/22 maxlen: 22
88.209.132.0/24 maxlen: 24
88.209.135.0/24 maxlen: 24
88.209.136.0/24 maxlen: 24
88.209.137.0/24 maxlen: 24
88.209.160.0/21 maxlen: 21
88.209.160.0/22 maxlen: 22
88.209.164.0/22 maxlen: 22
88.209.164.0/23 maxlen: 23
88.209.191.0/24 maxlen: 24
93.189.96.0/21 maxlen: 21
93.189.96.0/23 maxlen: 23
93.189.98.0/23 maxlen: 23
93.189.100.0/23 maxlen: 23
93.189.102.0/23 maxlen: 23
185.63.232.0/22 maxlen: 22
185.63.232.0/23 maxlen: 23
185.63.232.0/24 maxlen: 24
185.63.233.0/24 maxlen: 24
185.63.234.0/24 maxlen: 24
185.63.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 04:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:03:2d:fa:44:a1:84:d0:30:86:23:98:9f:40:95:2e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Validity
Not Before: Mar 3 07:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b793502c13d0e5a24515c86a1c8c7cb059353061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:fa:e1:b5:88:4e:8b:c2:a6:f6:1a:df:ab:
c0:4d:65:eb:f8:d4:34:e1:d1:80:3a:cb:a3:f2:42:
f3:8a:0b:67:28:09:35:61:15:4e:ec:ee:5a:28:fc:
61:51:50:fd:3a:37:32:f7:3a:b9:db:80:cd:06:b9:
b0:57:d2:68:8e:bb:e1:46:ae:03:1c:9f:69:3e:12:
cd:33:6c:68:b5:12:f1:9f:df:e9:47:40:02:50:c9:
19:70:62:29:3a:ed:04:40:64:13:3a:68:f0:de:b8:
9c:df:ee:44:0c:26:b2:37:d0:f2:00:d0:e1:ec:b5:
48:06:fb:a8:be:bd:24:1b:d3:d5:5e:14:28:ed:7d:
b1:ca:5c:74:aa:57:d7:74:0d:68:e4:76:51:3e:89:
d4:ae:62:43:b6:c0:20:66:73:36:e4:11:3f:2e:29:
e6:fd:f8:69:aa:24:78:00:ac:30:53:58:f1:7b:b8:
b5:09:57:b3:0f:f1:e8:6e:9a:aa:4f:39:c5:b6:c7:
18:7a:b9:ad:31:13:4e:35:3a:f8:1d:73:bd:de:d3:
89:2f:01:4c:63:32:c8:45:6a:25:2b:09:82:ef:0f:
4e:79:9d:11:9a:33:7f:20:6b:5b:3b:78:c2:83:9b:
c9:0f:cf:f5:0c:91:ba:b6:5b:ba:c6:41:83:2b:7a:
bc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:93:50:2C:13:D0:E5:A2:45:15:C8:6A:1C:8C:7C:B0:59:35:30:61
X509v3 Authority Key Identifier:
keyid:BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/t5NQLBPQ5aJFFchqHIx8sFk1MGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.128.0-88.209.137.255
88.209.160.0/21
88.209.191.0/24
93.189.96.0/21
185.63.232.0/22
Signature Algorithm: sha256WithRSAEncryption
37:42:8f:31:3a:51:e0:4d:da:49:6a:a3:2c:a3:6f:f6:0b:0c:
69:b5:7f:8e:07:2d:1c:d2:73:d7:88:6c:8a:1a:47:f8:d8:62:
a3:40:46:14:bc:d5:57:06:76:bc:cb:6d:38:ba:67:3a:a6:15:
c2:24:15:d8:8d:c7:f5:4d:80:7a:2e:96:02:cc:7c:04:48:09:
28:ea:02:fc:8d:28:9e:99:6c:e4:03:21:6e:b4:11:ab:68:7c:
59:50:96:dc:36:4c:65:b0:9b:69:e0:11:8f:82:47:5a:e7:9f:
d2:73:83:82:51:5e:57:ad:79:3e:c1:8c:49:65:9e:f9:43:7b:
d1:b9:d7:7a:46:0e:3a:18:40:05:f1:3b:b2:8e:bb:f8:12:0e:
0f:75:b6:51:82:81:12:99:16:c0:77:90:fe:7a:bc:a3:19:ca:
08:1e:41:99:57:10:29:a1:b4:0a:03:fe:ba:f1:11:85:64:de:
38:50:3d:22:ae:f2:a1:41:b3:34:00:16:f3:55:08:19:ae:6d:
84:ae:e6:d3:09:a9:4d:a8:e9:85:97:13:b8:0f:7a:e0:86:4f:
b9:40:30:bd:84:84:9c:d6:39:54:4b:7b:bf:21:f1:01:85:a5:
d9:04:ee:c7:f5:fc:4f:86:08:ee:86:6b:e8:b4:ef:a4:03:f5:
7c:4f:73:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 07:38:28 2024 by rpki-client on console.sobornost.net