Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/EndrmHpk0tlkQ9lfnBRkFAahCyI.roa
File: EndrmHpk0tlkQ9lfnBRkFAahCyI.roa (raw, json)
Hash identifier: 9GoJYOaxb/z+53ZDPbO6rdZ6G4q+W+gmQphH+SdmUPo=
Subject key identifier: 12:77:6B:98:7A:64:D2:D9:64:43:D9:5F:9C:14:64:14:06:A1:0B:22
Certificate issuer: /CN=b96e8b6d73f2f38548996f66621330a8d7108529
Certificate serial: 01856F4B4A3C57A83B906D996B12F14DCAE3
Authority key identifier: B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/EndrmHpk0tlkQ9lfnBRkFAahCyI.roa
Signing time: Sun 01 Jan 2023 21:44:43 +0000
ROA not before: Sun 01 Jan 2023 21:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60880
IP address blocks: 192.145.24.0/22 maxlen: 22
5.133.84.0/22 maxlen: 22
5.133.84.0/24 maxlen: 24
185.197.188.0/22 maxlen: 22
185.205.240.0/22 maxlen: 22
2a0a:7cc0::/29 maxlen: 29
2a0a:7cc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:4a:3c:57:a8:3b:90:6d:99:6b:12:f1:4d:ca:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b96e8b6d73f2f38548996f66621330a8d7108529
Validity
Not Before: Jan 1 21:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12776b987a64d2d96443d95f9c14641406a10b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:4b:da:32:a0:96:9a:bd:76:62:37:27:c4:
79:64:42:bd:30:81:20:a7:97:0e:0c:ef:10:12:27:
9b:ef:26:58:d2:7e:23:78:28:89:e4:6e:df:c3:61:
02:f5:4e:14:60:36:13:90:a8:c0:a8:9c:50:11:af:
66:f6:92:2e:00:de:e6:c6:e2:29:b4:c1:16:0c:9c:
a9:1b:e3:1d:da:a0:82:fd:d1:7d:9e:b6:da:2f:b9:
ad:d1:01:04:b6:9c:d1:d2:b5:1c:6c:70:ae:3b:82:
2c:69:33:1f:6d:68:ec:06:17:6a:93:4e:1b:c5:39:
74:fc:9d:66:30:17:a6:16:5c:f0:c3:c0:65:22:fe:
8e:4a:01:e3:01:94:44:0e:8d:dd:5a:0f:d1:70:80:
5c:6e:f0:e9:fd:d1:45:77:f8:cc:d2:e4:14:a5:66:
d8:5a:b4:22:f7:08:9c:14:16:2d:96:03:97:f9:6d:
63:b8:52:9c:44:68:32:f3:3b:95:4c:65:c8:c7:3d:
4b:f0:15:20:33:bf:97:df:40:52:aa:f9:68:16:c5:
c9:97:99:33:d9:7f:44:33:cd:a3:3e:35:a9:d5:ab:
6c:e7:91:80:dc:7a:57:e5:b6:85:c6:e8:18:72:d0:
54:49:25:18:c1:25:a0:bc:d0:a1:fc:dc:7d:37:44:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:77:6B:98:7A:64:D2:D9:64:43:D9:5F:9C:14:64:14:06:A1:0B:22
X509v3 Authority Key Identifier:
keyid:B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/EndrmHpk0tlkQ9lfnBRkFAahCyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.84.0/22
185.197.188.0/22
185.205.240.0/22
192.145.24.0/22
IPv6:
2a0a:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
29:93:af:f1:01:c5:d7:69:fa:98:c5:d4:c7:3d:ed:48:93:e3:
66:32:84:6e:11:f5:c1:1c:4b:24:35:55:ab:0a:f9:74:82:ee:
4f:2f:c8:18:d2:00:e2:f0:5e:6b:7a:4b:8f:85:60:74:ad:05:
5b:bf:d2:ce:7f:19:ea:e6:26:a2:2e:0a:f1:f3:25:2e:5c:b8:
7b:ec:f9:e9:73:75:0c:e1:a5:74:2c:ec:bf:24:78:0d:71:69:
b4:e5:d8:de:dd:61:55:1d:1e:b6:62:3a:36:d5:5c:7a:7d:07:
7c:74:33:9c:04:d9:c6:05:74:1d:35:5f:a6:14:49:ba:0f:17:
1b:bd:05:91:14:da:31:2c:dc:08:7d:c7:b0:98:53:bc:35:bb:
08:2b:dc:d4:91:33:75:ba:4d:af:8c:ad:d6:3f:10:03:e9:ca:
11:7e:db:35:89:b0:8a:a2:10:f3:18:75:9c:78:1d:b4:a3:a4:
00:48:ff:2e:1d:86:b5:93:41:6c:53:62:58:6b:3e:82:72:1d:
f4:e4:30:d5:91:c7:0d:b0:69:a3:cb:d9:00:f9:fe:c8:b2:96:
fa:92:6a:dd:47:45:0c:f0:c5:85:79:18:68:05:77:43:a7:f3:
34:76:74:77:93:23:35:f4:79:07:38:f8:dd:3d:b9:c2:b0:09:
45:9e:aa:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:01 2024 by rpki-client on console-ams.rpki-client.org