Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/d7ab0c-3c22-4c61-a201-dd6cc97c9bdd/1/9PLOicBH5ZenKvW9mNGa2KwYJhY.roa
File: 9PLOicBH5ZenKvW9mNGa2KwYJhY.roa (raw, json)
Hash identifier: w5uEBYHpT3eFEYMoZH45z1yBNqx+gZ25kiLXOamxtq4=
Subject key identifier: F4:F2:CE:89:C0:47:E5:97:A7:2A:F5:BD:98:D1:9A:D8:AC:18:26:16
Certificate issuer: /CN=55b296d6b534fe3a32cc1c3a4e81358f216c93c7
Certificate serial: 0186E9B4D2A109211954A1896A81C92B6C15
Authority key identifier: 55:B2:96:D6:B5:34:FE:3A:32:CC:1C:3A:4E:81:35:8F:21:6C:93:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbKW1rU0_joyzBw6ToE1jyFsk8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/d7ab0c-3c22-4c61-a201-dd6cc97c9bdd/1/9PLOicBH5ZenKvW9mNGa2KwYJhY.roa
Signing time: Thu 16 Mar 2023 09:16:27 +0000
ROA not before: Thu 16 Mar 2023 09:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31529
IP address blocks: 185.151.141.0/24 maxlen: 24
185.151.142.0/24 maxlen: 24
185.151.143.0/24 maxlen: 24
194.0.0.0/24 maxlen: 24
194.0.11.0/24 maxlen: 24
194.246.96.0/24 maxlen: 24
2a02:568:fe00::/48 maxlen: 48
2001:678:e::/48 maxlen: 48
2a02:568:fe01::/48 maxlen: 48
2001:678:2::/48 maxlen: 48
2a02:568:fe02::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 Nov 2023 09:22:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e9:b4:d2:a1:09:21:19:54:a1:89:6a:81:c9:2b:6c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b296d6b534fe3a32cc1c3a4e81358f216c93c7
Validity
Not Before: Mar 16 09:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4f2ce89c047e597a72af5bd98d19ad8ac182616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:89:e5:43:4c:e2:5d:e6:d5:bb:68:16:26:
52:3b:69:b0:50:e6:cd:a7:f1:b8:c3:60:91:da:38:
a5:e1:cc:a0:b5:5a:c1:9a:69:02:96:dc:ea:f2:78:
6f:e8:22:05:5e:9f:3c:22:91:6e:40:4c:2a:2f:c2:
1e:36:04:fc:e6:47:06:2b:f9:a3:e1:0a:7d:64:95:
91:42:88:d5:26:56:0e:8f:ea:14:aa:0c:00:22:aa:
3b:0e:0f:c4:6c:0f:0e:d4:46:95:72:ab:eb:38:12:
64:f3:ee:a1:9b:ee:02:5c:a3:ed:8c:e1:1e:bc:b9:
c5:ae:fd:6a:bc:90:c6:f2:eb:82:2d:a4:f4:5f:a5:
ce:82:fd:c9:aa:6a:3e:b7:74:cc:89:c8:25:8c:88:
fd:fc:62:4a:44:a8:1f:b6:75:89:fd:93:d4:b7:6e:
ce:a4:8b:3a:66:1b:4e:6b:e8:e6:02:4f:56:2c:e6:
38:46:71:c4:43:ec:2d:6d:d9:00:76:4e:b0:bf:3e:
4c:b8:b1:56:62:32:88:d4:6c:c8:c5:fb:0f:c0:88:
da:37:d3:e6:00:8e:c3:c2:72:07:64:57:d8:7e:35:
25:6d:36:2d:e6:20:c3:47:db:a1:f5:3f:b5:07:ba:
c1:93:11:a3:5c:0e:7d:e8:d6:05:bb:cd:21:83:e5:
2c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F2:CE:89:C0:47:E5:97:A7:2A:F5:BD:98:D1:9A:D8:AC:18:26:16
X509v3 Authority Key Identifier:
keyid:55:B2:96:D6:B5:34:FE:3A:32:CC:1C:3A:4E:81:35:8F:21:6C:93:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbKW1rU0_joyzBw6ToE1jyFsk8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/d7ab0c-3c22-4c61-a201-dd6cc97c9bdd/1/9PLOicBH5ZenKvW9mNGa2KwYJhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/d7ab0c-3c22-4c61-a201-dd6cc97c9bdd/1/VbKW1rU0_joyzBw6ToE1jyFsk8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.141.0-185.151.143.255
194.0.0.0/24
194.0.11.0/24
194.246.96.0/24
IPv6:
2001:678:2::/48
2001:678:e::/48
2a02:568:fe00::-2a02:568:fe02:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7f:74:83:fd:ea:e4:66:94:e6:4e:4f:7f:4e:2b:0e:25:c3:b7:
0b:3f:b3:b6:83:27:4a:2f:66:27:45:cb:c8:9c:21:ff:ca:b7:
38:e7:09:99:c9:cc:d9:d4:0f:50:18:b5:e2:e0:84:58:9c:01:
25:98:39:26:89:af:d2:52:97:91:77:3a:0e:9a:27:a9:9a:9f:
8a:ab:9f:14:4c:2c:22:f0:a8:8d:22:f5:0f:ba:c3:14:23:df:
fa:43:f0:1d:26:8e:16:bd:fa:08:1c:12:18:b2:0c:99:4b:ee:
6f:ad:6e:7d:a2:ec:be:5e:03:f0:97:0a:5a:46:9d:a7:4e:b8:
f3:a2:ca:54:2e:4b:fd:82:46:d5:d5:de:2f:2e:db:9d:89:94:
62:25:6f:45:0f:0a:ff:e8:e5:d1:dc:24:97:0a:1b:56:7b:e5:
b1:6c:8b:33:51:8d:c4:89:d7:12:41:38:44:62:d5:ce:97:ac:
44:1a:0b:f8:f7:ef:0e:f1:ac:15:9e:da:e2:f9:7d:7b:86:4f:
24:cb:ff:1d:4e:87:f3:36:6e:6f:a8:d0:2c:a5:11:1c:67:c6:
91:fb:bc:70:6b:a3:0d:64:bc:8f:e4:51:96:cd:64:7f:f8:a7:
19:12:b5:42:2c:dd:b0:17:f8:1a:aa:c2:cc:0b:3c:2e:66:27:
1e:73:37:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:45 2024 by rpki-client on console-fra.rpki-client.org