Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Lh-gLFEzBMGxKbmNpYEE5ifL_tk.roa
File: Lh-gLFEzBMGxKbmNpYEE5ifL_tk.roa (raw, json)
Hash identifier: gIvjeNdZJ7BgXxYwrtfkkjwHadN+rG7PyzVEYqAF4Zc=
Subject key identifier: 2E:1F:A0:2C:51:33:04:C1:B1:29:B9:8D:A5:81:04:E6:27:CB:FE:D9
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 018C6F86AD361CCF39ED27CA00D70A7C15A0
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Lh-gLFEzBMGxKbmNpYEE5ifL_tk.roa
Signing time: Fri 15 Dec 2023 22:09:06 +0000
ROA not before: Fri 15 Dec 2023 22:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210008
IP address blocks: 185.230.181.0/24 maxlen: 24
185.230.182.0/24 maxlen: 24
185.230.183.0/24 maxlen: 24
2a13:d00:cf00::/40 maxlen: 48
2a13:d00:a680::/48 maxlen: 48
2a13:d00:c180::/48 maxlen: 48
2a13:d00:da80::/48 maxlen: 48
2a13:d00:dc80::/48 maxlen: 48
2a13:d00:da30::/48 maxlen: 48
2a13:d00:cf01::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6f:86:ad:36:1c:cf:39:ed:27:ca:00:d7:0a:7c:15:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Dec 15 22:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e1fa02c513304c1b129b98da58104e627cbfed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e1:2d:59:aa:93:ea:49:d0:31:50:9f:43:09:
61:ec:e4:5e:01:0c:ab:9c:79:78:ee:d0:73:88:11:
4f:60:10:b0:33:8c:b6:8c:82:b8:e8:1d:5b:9c:3a:
03:2a:3b:07:e8:15:40:72:92:69:1f:e7:a9:81:b2:
d9:6f:fd:36:41:07:2b:af:cb:44:cb:c4:9a:6c:ba:
1b:cf:12:61:69:e4:4c:f5:c0:e4:e8:db:4d:b3:de:
87:83:b8:f9:77:f0:af:9a:f1:6b:44:d0:e4:22:5f:
84:5c:ce:73:7e:69:1c:5d:9d:20:ea:52:93:40:f9:
8d:91:38:cc:23:f6:dd:3b:ab:f0:d6:04:df:78:8d:
36:55:78:fa:1a:7f:2c:a4:bd:b3:80:56:96:f5:61:
60:3e:68:da:a5:5b:10:19:a6:d9:08:cc:50:da:4c:
8b:86:94:d4:de:82:41:ba:74:ce:b8:f7:41:1c:73:
dd:58:a9:45:d3:e9:69:67:4e:a3:41:de:47:d3:6d:
52:e2:33:1c:d9:7d:81:82:a6:f9:18:06:05:79:50:
09:e5:10:30:cf:a3:dd:b7:d5:88:a0:b3:d6:8a:71:
65:1f:9e:5d:4e:4f:be:75:0f:ce:c1:3b:ed:80:0f:
ce:8b:9f:20:94:38:cf:dd:e1:18:0c:44:63:84:27:
10:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:A0:2C:51:33:04:C1:B1:29:B9:8D:A5:81:04:E6:27:CB:FE:D9
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Lh-gLFEzBMGxKbmNpYEE5ifL_tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.181.0-185.230.183.255
IPv6:
2a13:d00:a680::/48
2a13:d00:c180::/48
2a13:d00:cf00::/40
2a13:d00:da30::/48
2a13:d00:da80::/48
2a13:d00:dc80::/48
Signature Algorithm: sha256WithRSAEncryption
54:1b:81:82:33:9e:88:73:1a:b2:66:b6:f4:d7:5c:0c:ef:f4:
02:d0:31:60:d0:69:15:c9:47:6a:0d:6e:3b:23:56:df:8e:43:
04:78:cc:b9:42:fc:89:d3:01:d1:94:70:4f:c1:95:0e:66:02:
32:15:5c:d7:dd:b3:b9:3d:e5:6d:00:8f:a3:d4:6a:a8:bc:8e:
34:93:a4:0a:66:39:99:60:29:a8:17:ae:82:67:b1:be:bc:f2:
55:0d:4f:cf:78:57:4e:17:18:20:9e:17:41:db:a4:2f:ff:65:
80:da:43:39:55:39:d3:39:14:c7:7f:0c:8c:0d:b2:17:00:0f:
f0:ab:44:d9:ca:a9:3a:a7:8f:b0:ba:8f:82:5f:10:d9:71:b5:
8c:9b:3d:d0:73:86:d7:50:6d:f5:c7:82:b1:82:73:9c:7a:f2:
03:df:28:fe:a0:be:ea:f4:30:44:e0:f5:29:17:67:e4:0e:b8:
e7:47:7e:1a:7b:0b:6d:fe:5e:b8:ce:52:87:7c:0e:d1:8d:e8:
3a:d7:48:cc:0b:f7:a8:af:3e:d0:69:d5:c0:00:64:cc:da:8b:
22:eb:ed:11:9e:1d:7c:1a:87:22:a1:3c:b8:31:f2:01:76:18:
37:4b:b4:d9:9d:6c:8f:19:8f:4e:af:e8:e5:95:90:a9:f0:8c:
46:bb:04:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:32 2024 by rpki-client on console-fra.rpki-client.org