Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/elEzzg7bXEaf79YaHrBZknsK948.roa
File: elEzzg7bXEaf79YaHrBZknsK948.roa (raw, json)
Hash identifier: ZAT1CIqfA5LDSSRAr99EHfmM9XUVCfW8mh+tY+zbPjw=
Subject key identifier: 7A:51:33:CE:0E:DB:5C:46:9F:EF:D6:1A:1E:B0:59:92:7B:0A:F7:8F
Certificate issuer: /CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Certificate serial: 01857246D0E45BD16C664CF194D8EF803100
Authority key identifier: 58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/elEzzg7bXEaf79YaHrBZknsK948.roa
Signing time: Mon 02 Jan 2023 11:38:41 +0000
ROA not before: Mon 02 Jan 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59871
IP address blocks: 185.68.68.0/22 maxlen: 22
2a03:2a60:8100::/48 maxlen: 48
2a03:2a60:8000::/48 maxlen: 48
2a03:2a60:8101::/48 maxlen: 48
2a03:2a60:8001::/48 maxlen: 48
2a03:2a60:dc::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d0:e4:5b:d1:6c:66:4c:f1:94:d8:ef:80:31:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Validity
Not Before: Jan 2 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a5133ce0edb5c469fefd61a1eb059927b0af78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:46:87:8e:68:34:11:6e:e5:72:c8:79:77:e2:
be:c1:db:72:23:97:d9:08:13:35:72:4c:2c:17:98:
75:31:2e:ca:f3:de:1e:f9:a9:9d:cf:ab:c7:e5:51:
aa:2a:bd:2f:20:fc:1c:73:cb:5a:e3:5f:62:29:f8:
7c:0e:74:bb:25:f1:5f:22:56:c2:d9:36:b4:5b:55:
0c:cb:0b:f6:40:b9:c1:6a:ab:ec:ed:36:8d:48:d8:
33:4d:95:79:52:7c:72:07:2b:37:f1:94:43:c7:65:
27:d9:9e:13:bc:83:b7:ff:38:40:9f:b0:ae:75:e3:
1f:55:de:f5:5b:53:80:ba:45:64:de:18:98:18:18:
fa:d2:7d:0d:9a:2b:69:25:fd:c4:65:e8:5c:95:8f:
4d:56:ec:7d:ff:c6:11:9e:90:f5:63:ec:54:bb:ae:
2a:c5:41:0e:1b:0a:d8:2b:68:9b:4a:bb:28:b0:b6:
fe:cb:c6:e1:ac:d1:e8:68:da:5e:09:33:ea:89:dd:
a1:75:2b:72:0b:96:00:a5:c3:24:6c:3d:1f:36:6e:
bf:0a:9c:07:2a:ca:e1:fd:b6:d8:07:b3:67:d3:aa:
f8:d2:78:82:4a:f0:f1:b6:f7:50:fe:c7:a5:66:ef:
bf:98:5d:ea:91:57:67:29:92:8a:a7:d5:6b:2b:cd:
3b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:51:33:CE:0E:DB:5C:46:9F:EF:D6:1A:1E:B0:59:92:7B:0A:F7:8F
X509v3 Authority Key Identifier:
keyid:58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/elEzzg7bXEaf79YaHrBZknsK948.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/WLtUmHY5ugxs-8rVmMP145_KlFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.68.0/22
IPv6:
2a03:2a60:dc::/48
2a03:2a60:8000::/47
2a03:2a60:8100::/47
Signature Algorithm: sha256WithRSAEncryption
02:e7:f7:9e:05:93:97:1c:e9:8f:f3:0a:74:09:81:d8:f1:c9:
36:3c:f5:b2:3c:fc:b6:ad:e5:e9:be:f4:36:01:a3:70:e1:49:
05:52:91:aa:9b:d3:4e:6d:07:12:f1:a4:3b:0e:47:6b:77:37:
03:26:a9:69:17:89:b3:62:b8:ac:ef:51:27:80:c5:a1:21:31:
c2:a3:b5:1c:e2:ae:1c:12:27:75:6a:79:4f:d3:2b:84:03:ce:
1d:1a:a2:68:74:6c:e2:87:34:4d:81:74:41:3d:73:61:69:e0:
28:00:92:0b:60:57:46:00:4e:f2:f5:7b:5a:21:ba:8b:76:3e:
f0:14:b2:7b:8c:99:b7:38:18:01:62:25:f8:89:24:77:0d:db:
ba:71:80:9f:47:b5:71:a0:45:3c:67:ee:b2:3a:fb:67:d0:10:
27:63:79:ca:ca:77:48:2b:44:ab:5b:a1:a6:a9:d9:5f:31:3a:
6e:af:48:2e:21:d8:4a:1f:17:6f:e4:ba:14:33:ae:44:20:f5:
ed:53:87:40:4a:f2:1f:40:90:41:d9:73:f4:4e:0e:b9:13:bd:
ed:50:30:46:ec:8e:67:d0:4b:4b:c3:30:92:34:7b:01:f8:30:
0d:2a:ac:87:b5:06:36:70:8e:6b:10:1e:4f:3e:18:23:a5:c3:
67:81:61:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:12 2024 by rpki-client on console-ams.rpki-client.org