Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/2DSvuNqv9O8PbgmakvSDVuhJ31U.roa
File: 2DSvuNqv9O8PbgmakvSDVuhJ31U.roa (raw, json)
Hash identifier: FVdx0yketipcgMqy3NX35hNxtjGpMBXSuVRYfFM2Ie0=
Subject key identifier: D8:34:AF:B8:DA:AF:F4:EF:0F:6E:09:9A:92:F4:83:56:E8:49:DF:55
Certificate issuer: /CN=9e441e9e705ada3f9c1e827cd276dbd097487608
Certificate serial: 018571FA0EBC7BCCAEA8796E25F0B2EFEA20
Authority key identifier: 9E:44:1E:9E:70:5A:DA:3F:9C:1E:82:7C:D2:76:DB:D0:97:48:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkQennBa2j-cHoJ80nbb0JdIdgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/2DSvuNqv9O8PbgmakvSDVuhJ31U.roa
Signing time: Mon 02 Jan 2023 10:14:51 +0000
ROA not before: Mon 02 Jan 2023 10:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208350
IP address blocks: 185.135.19.0/24 maxlen: 24
185.135.18.0/24 maxlen: 24
85.255.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 08:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:0e:bc:7b:cc:ae:a8:79:6e:25:f0:b2:ef:ea:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e441e9e705ada3f9c1e827cd276dbd097487608
Validity
Not Before: Jan 2 10:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d834afb8daaff4ef0f6e099a92f48356e849df55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:35:a0:db:f1:d2:7b:01:0d:04:c6:71:fd:48:
17:32:91:48:ef:4e:df:02:0f:47:5a:a3:5b:07:2d:
cc:50:76:95:af:49:9a:04:01:6f:11:02:78:1a:da:
1f:b5:4f:73:d7:f4:bd:db:08:50:c2:7d:0d:98:58:
41:83:53:ee:55:e0:5d:03:18:7e:62:8f:84:d9:74:
46:4c:cf:42:f7:ba:02:b7:46:df:88:8d:10:b3:55:
24:60:e2:69:58:52:22:71:23:53:18:7d:81:18:5b:
a5:81:1b:30:25:97:c4:51:ad:bb:d4:71:61:a0:cf:
10:b6:32:88:8c:6c:7c:85:08:3f:00:61:f3:f5:e2:
08:5c:8f:e5:41:01:38:04:78:65:fd:a5:c6:c1:a0:
66:31:fc:dc:c1:e7:a0:2c:3c:2d:9f:b4:45:3e:e5:
22:67:72:f2:dd:3e:aa:27:2e:25:52:0b:19:7a:e0:
36:cc:a0:82:ef:25:31:2d:54:d2:63:ed:49:80:67:
1b:99:28:d7:9c:84:9e:02:2d:3c:64:0f:24:d7:c5:
a8:ba:0b:db:46:8d:e6:47:cc:96:3a:7b:15:4c:89:
fa:a2:d3:bc:fd:25:53:d3:60:0a:c8:1b:77:b0:3d:
0f:b6:5c:f2:f8:82:c6:b8:c7:5d:a8:ab:7e:c9:71:
60:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:34:AF:B8:DA:AF:F4:EF:0F:6E:09:9A:92:F4:83:56:E8:49:DF:55
X509v3 Authority Key Identifier:
keyid:9E:44:1E:9E:70:5A:DA:3F:9C:1E:82:7C:D2:76:DB:D0:97:48:76:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkQennBa2j-cHoJ80nbb0JdIdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/2DSvuNqv9O8PbgmakvSDVuhJ31U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/nkQennBa2j-cHoJ80nbb0JdIdgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.152.0/24
185.135.18.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:94:73:a8:6c:27:18:bf:ab:94:0f:25:ae:91:bd:08:09:e7:
c1:b9:f4:b6:b7:01:8c:e9:9f:21:f7:02:09:af:55:59:4f:b6:
b3:1f:91:59:fa:5e:2e:33:93:00:16:06:89:5c:ff:37:06:e6:
f2:91:63:00:ff:ee:28:56:15:37:6e:c0:1e:aa:4e:69:aa:af:
ab:d9:75:b9:b9:f6:ea:f8:46:79:69:4b:8d:e5:3a:4c:a1:6a:
d4:a2:4e:1d:19:84:57:b7:01:93:67:3f:5d:08:19:8e:cb:21:
37:13:6b:0c:d5:30:1d:3c:c6:ad:92:d0:e5:76:a0:75:38:26:
c8:0f:7c:8d:d1:d5:ac:a0:bb:b1:00:a8:06:85:af:0e:20:dd:
21:25:7c:37:1e:61:63:5e:54:5e:66:46:22:4f:fa:5d:ac:96:
1c:96:c7:76:68:64:24:62:b9:0f:a5:ca:90:4d:5a:ff:e1:a4:
cd:c9:8e:eb:26:5c:22:36:96:b7:1f:37:a0:7c:c9:f8:dc:a8:
fb:37:74:11:03:45:9b:bf:fb:14:cb:0d:7e:a0:95:8c:e3:1c:
b3:32:2d:96:92:81:bf:7d:bf:a6:54:7b:d3:7b:ed:45:86:7d:
41:c6:0f:ea:10:6c:4f:ec:58:19:d7:eb:a7:7b:15:cd:20:98:
53:91:fc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:44 2024 by rpki-client on console-ams.rpki-client.org