Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/wnNdUOV9W-9rRfQHOVu2knJIkyg.roa
File: wnNdUOV9W-9rRfQHOVu2knJIkyg.roa (raw, json)
Hash identifier: h0pmIQyK23BpqYYc1uhbFeaH/9m/AyNZlIc1G4XF5DA=
Subject key identifier: C2:73:5D:50:E5:7D:5B:EF:6B:45:F4:07:39:5B:B6:92:72:48:93:28
Certificate issuer: /CN=e8f239a70043734172d26378bf2106ae72552187
Certificate serial: 01856CB86F17BB7FFBD085432F1BD8CC5BB4
Authority key identifier: E8:F2:39:A7:00:43:73:41:72:D2:63:78:BF:21:06:AE:72:55:21:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/wnNdUOV9W-9rRfQHOVu2knJIkyg.roa
Signing time: Sun 01 Jan 2023 09:45:04 +0000
ROA not before: Sun 01 Jan 2023 09:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43846
IP address blocks: 37.0.64.0/21 maxlen: 24
79.140.144.0/20 maxlen: 24
79.140.151.0/24 maxlen: 24
185.12.43.0/24 maxlen: 24
185.12.40.0/22 maxlen: 24
185.80.96.0/22 maxlen: 24
89.207.192.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:6f:17:bb:7f:fb:d0:85:43:2f:1b:d8:cc:5b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8f239a70043734172d26378bf2106ae72552187
Validity
Not Before: Jan 1 09:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2735d50e57d5bef6b45f407395bb69272489328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0b:9e:12:16:3e:9f:0e:28:a5:e1:1f:8c:e7:
d6:4e:a1:c4:44:76:61:f0:3e:b1:bb:6b:59:e4:04:
5e:d5:2c:23:8f:8d:7f:0b:dd:52:55:33:8d:6b:e2:
55:4e:13:7e:da:1e:00:da:e9:c1:0e:7a:93:9a:55:
7c:9c:83:91:74:28:49:f6:fc:72:d2:b9:0c:80:4d:
a2:f0:f4:54:80:f9:54:fe:aa:24:f3:b0:2d:3d:59:
21:72:b0:5b:91:af:9b:58:6a:e9:c3:36:c5:7f:68:
d9:9d:d1:e8:ea:06:61:a4:9b:e1:92:cf:3a:c7:62:
ba:a5:53:35:69:a2:bf:8f:b0:9c:0d:ae:eb:f6:95:
e3:ca:6b:06:c8:3f:88:7b:e2:5d:f2:c5:ff:af:dc:
0f:83:bf:f9:e4:f0:3a:05:e2:f9:7a:7c:65:b1:d1:
87:f7:84:6d:7e:90:17:e5:7d:9e:44:90:76:15:b1:
a8:54:88:76:7b:89:d8:0c:f2:93:98:11:21:01:70:
17:73:b5:e7:12:85:3e:29:84:f3:bc:f6:ba:dd:75:
3d:6d:58:3f:b3:57:97:fa:5e:a4:1c:c4:80:cd:05:
41:7b:84:f2:98:06:c2:a5:a1:52:70:41:11:1e:63:
56:be:cf:2a:17:56:f4:9a:de:25:31:30:00:13:50:
8b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:73:5D:50:E5:7D:5B:EF:6B:45:F4:07:39:5B:B6:92:72:48:93:28
X509v3 Authority Key Identifier:
keyid:E8:F2:39:A7:00:43:73:41:72:D2:63:78:BF:21:06:AE:72:55:21:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/wnNdUOV9W-9rRfQHOVu2knJIkyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.64.0/21
79.140.144.0/20
89.207.192.0/21
185.12.40.0/22
185.80.96.0/22
Signature Algorithm: sha256WithRSAEncryption
91:c8:30:64:25:4d:1d:e6:07:bc:c9:69:cb:c6:8c:22:46:4c:
d6:2d:ec:5d:f2:5e:3c:3a:0f:8d:fd:84:14:92:be:a0:6a:dd:
54:b3:46:7e:44:a5:d8:69:41:d6:08:05:e3:cc:94:12:60:c5:
1f:6d:f4:d2:09:56:6e:35:ba:db:5f:73:7f:8a:33:5b:dc:94:
c8:5e:a9:08:b9:43:11:53:fa:1f:fd:34:d5:11:0b:ac:6f:ac:
90:2a:ed:73:dc:bd:5e:39:44:53:ee:91:a3:a9:00:5b:11:4f:
02:ae:c1:98:0b:e5:57:f4:db:4f:84:d4:6f:57:7d:14:86:4a:
a2:77:9f:33:45:fd:65:6a:6c:8d:ce:ee:ae:54:fd:60:39:01:
e1:4f:19:ef:e7:8d:f5:77:8b:da:d3:bf:01:37:ec:de:dc:79:
e6:5f:69:57:68:35:03:28:05:05:df:47:9a:d8:ea:1b:87:85:
20:7e:b4:e4:ba:c1:41:c6:28:54:56:52:34:50:3e:82:a5:90:
37:8a:c8:14:83:c1:51:10:73:7f:02:d4:7f:d0:ec:27:75:53:
58:8c:0d:a7:b1:7b:65:4e:44:b7:79:da:e8:b3:f3:6c:81:16:
ac:b7:6e:4d:0d:76:ec:67:76:b2:1c:54:da:bb:19:01:69:71:
97:57:e2:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:57 2024 by rpki-client on console-fra.rpki-client.org