Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/coneeWe7TpI2MWqXGEJmXW3Q3aI.roa
File: coneeWe7TpI2MWqXGEJmXW3Q3aI.roa (raw, json)
Hash identifier: BasEY9nqZvYhUo+XsAH9Z3TDf4VHF7J5g2sJa82RblA=
Subject key identifier: 72:89:DE:79:67:BB:4E:92:36:31:6A:97:18:42:66:5D:6D:D0:DD:A2
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018CF487A9A59CA0E169DE5770AA73C98A65
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/coneeWe7TpI2MWqXGEJmXW3Q3aI.roa
Signing time: Wed 10 Jan 2024 17:59:40 +0000
ROA not before: Wed 10 Jan 2024 17:59:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29262
IP address blocks: 193.38.44.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
194.56.186.0/23 maxlen: 23
85.235.74.0/23 maxlen: 23
85.235.72.0/23 maxlen: 23
139.28.35.0/24 maxlen: 24
139.28.34.0/24 maxlen: 24
139.28.33.0/24 maxlen: 24
139.28.32.0/24 maxlen: 24
194.169.95.0/24 maxlen: 24
194.169.94.0/24 maxlen: 24
194.169.94.0/23 maxlen: 23
194.169.93.0/24 maxlen: 24
194.169.92.0/23 maxlen: 23
194.169.92.0/24 maxlen: 24
185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
62.182.35.0/24 maxlen: 24
62.182.34.0/24 maxlen: 24
62.182.33.0/24 maxlen: 24
62.182.32.0/24 maxlen: 24
141.98.51.0/24 maxlen: 24
141.98.50.0/24 maxlen: 24
141.98.49.0/24 maxlen: 24
141.98.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 14:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f4:87:a9:a5:9c:a0:e1:69:de:57:70:aa:73:c9:8a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 10 17:59:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7289de7967bb4e9236316a971842665d6dd0dda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:31:24:55:be:c9:1b:14:35:af:d1:59:6a:
bc:d3:0a:e1:e7:b1:49:60:f8:73:3e:69:50:49:07:
8e:06:13:37:ea:60:5e:8c:16:2e:5e:a8:18:7e:6a:
62:ee:05:9d:90:8d:88:6c:53:a2:82:34:1a:24:01:
7e:ab:9a:26:89:ea:9a:9d:bc:48:3e:fb:e1:c1:91:
8d:00:cd:7d:91:20:9c:b4:9e:14:2b:50:9c:b8:71:
fa:d0:82:e2:0f:0d:4d:33:a2:1b:fc:cf:41:a3:26:
b7:c9:19:20:f1:74:ee:b1:d1:8a:64:c3:fd:49:e2:
01:20:da:dd:7b:f1:cb:5f:82:8f:ac:3b:fa:23:b5:
b1:c1:e6:0b:05:de:37:09:d8:95:40:e4:e2:fc:1c:
68:f5:81:6d:c6:4d:69:e8:bd:31:c4:fa:27:c8:d3:
d6:bc:75:19:4d:93:54:d1:3d:72:7f:a9:8a:3d:42:
70:79:95:72:c3:7b:64:7f:a8:08:b8:ad:00:c4:a8:
65:13:f8:5f:41:c6:69:24:43:8a:b0:89:48:4a:7a:
2d:6d:a2:1f:7f:6e:b6:b9:eb:d7:01:36:b6:be:04:
2d:53:e8:9d:97:0e:ca:5a:8a:ea:0b:23:a1:4b:7b:
e5:38:65:c6:19:4f:6b:8a:60:36:0d:95:c3:98:13:
12:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:89:DE:79:67:BB:4E:92:36:31:6A:97:18:42:66:5D:6D:D0:DD:A2
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/coneeWe7TpI2MWqXGEJmXW3Q3aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.32.0/22
85.235.72.0/22
139.28.32.0/22
141.98.48.0/22
185.254.54.0/23
193.38.44.0/22
194.56.186.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
14:83:43:7f:d5:5e:81:11:61:b4:4d:71:38:2a:cd:64:a6:5e:
94:73:0f:98:30:9c:0e:2e:5e:2b:59:a2:8c:03:67:b4:4f:79:
b9:d8:d9:54:4b:ec:b4:7c:5f:3b:37:2e:4c:64:fd:5e:db:4e:
bc:6d:b8:6b:fb:7c:db:fb:2a:7d:e9:03:88:5b:aa:6c:6b:53:
f0:f3:b1:06:c7:5a:2a:23:4a:08:0e:67:6d:96:88:0d:c4:19:
a8:c2:c1:53:94:a6:3b:5f:53:f8:0f:9a:85:df:e8:a0:9b:7f:
12:0e:5b:9b:ab:a6:26:92:42:ed:aa:40:4f:c0:e6:2f:cf:54:
a6:7a:a5:42:98:f0:a0:b2:20:a5:ba:9d:b5:a6:61:a1:46:b5:
4d:20:ff:3d:6d:90:47:8b:97:0e:32:cc:00:6e:52:7f:d4:04:
ea:ff:e4:33:23:6c:d7:61:42:d5:16:f2:a8:21:24:c7:a2:60:
65:bb:27:05:07:92:54:28:a0:fc:48:ec:72:2b:52:01:ae:2f:
93:46:82:43:bb:fd:b0:c7:a9:dc:4e:25:c0:04:89:8e:3c:83:
9c:74:a8:a3:62:e2:8c:95:24:cf:71:ca:4e:21:19:57:74:d2:
3a:3d:be:be:4a:d0:cf:f6:e9:7e:c1:4f:75:bb:86:d4:88:67:
0c:46:a6:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org