Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/ADnBAEzlKr0wf6eRz96rNdYZwXk.roa
File: ADnBAEzlKr0wf6eRz96rNdYZwXk.roa (raw, json)
Hash identifier: CbD/AA98p3RWbtNFypCI/H4zdODmq5BHAubRBGm1QEs=
Subject key identifier: 00:39:C1:00:4C:E5:2A:BD:30:7F:A7:91:CF:DE:AB:35:D6:19:C1:79
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 01856F024BCCBCCA54B450A7B01912B1B74B
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/ADnBAEzlKr0wf6eRz96rNdYZwXk.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206924
IP address blocks: 185.230.223.0/24 maxlen: 24
2a0c:2f07:d::/48 maxlen: 48
2a0c:2f07:f::/48 maxlen: 48
2a0c:2f07:384::/48 maxlen: 48
2a0c:2f07:29::/48 maxlen: 48
2a0c:2f07:9459::/48 maxlen: 48
2a0c:2f07:ac1::/48 maxlen: 48
2a0c:2f07:4896::/48 maxlen: 48
2a0c:2f07:4663::/48 maxlen: 48
2a0c:2f07::/64 maxlen: 64
2a0c:2f07::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Jun 2023 11:23:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4b:cc:bc:ca:54:b4:50:a7:b0:19:12:b1:b7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0039c1004ce52abd307fa791cfdeab35d619c179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b3:82:36:6e:37:d9:e3:5d:5d:70:58:a1:b4:
89:48:40:af:77:77:34:82:18:bc:fe:f7:86:e2:61:
a4:2e:b9:2e:50:cb:54:0f:48:85:4b:9a:1e:88:6a:
df:a4:1f:c5:d5:08:ce:d7:6b:e7:95:da:3e:ea:94:
4a:b3:e1:12:8e:bc:22:e6:7e:c0:3e:de:d7:c9:03:
7a:35:29:ac:38:d1:9e:89:10:50:96:f4:69:4d:f9:
74:e7:e8:e9:fc:dc:aa:93:5c:a0:59:e0:bb:63:c7:
6c:59:3a:ac:13:04:07:d4:5a:4f:f2:03:cd:9a:30:
8f:b5:f3:e4:54:a2:6f:95:f2:85:62:d2:80:45:4b:
91:43:fb:48:7d:c6:11:46:2d:2b:bc:74:fa:5f:a3:
d9:6e:e9:dc:1a:7b:76:ab:57:43:91:6e:13:22:36:
5d:92:75:16:e5:71:db:db:ef:fe:e1:9e:4f:c6:30:
46:af:ca:e4:c3:47:34:24:a1:c8:a9:56:48:07:c9:
cb:71:bc:b9:66:b5:6b:d7:e0:8f:1e:7d:d9:59:17:
bb:e9:b5:62:a6:dc:96:79:51:97:c8:37:fe:8a:01:
3f:7d:69:ab:a3:a3:cc:82:44:86:a3:3b:5a:ff:2b:
a4:5e:8f:20:e2:69:91:f7:97:ff:94:4b:4f:a4:7d:
2d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:39:C1:00:4C:E5:2A:BD:30:7F:A7:91:CF:DE:AB:35:D6:19:C1:79
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/ADnBAEzlKr0wf6eRz96rNdYZwXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.223.0/24
IPv6:
2a0c:2f07::/48
2a0c:2f07:d::/48
2a0c:2f07:f::/48
2a0c:2f07:29::/48
2a0c:2f07:384::/48
2a0c:2f07:ac1::/48
2a0c:2f07:4663::/48
2a0c:2f07:4896::/48
2a0c:2f07:9459::/48
Signature Algorithm: sha256WithRSAEncryption
4d:1b:b3:34:39:f0:c4:ad:77:37:22:a7:b2:02:ff:3a:50:4e:
38:b6:64:d4:b1:21:35:67:dd:de:39:88:48:e1:08:a1:8c:e3:
bb:36:5b:d4:be:0c:c1:79:1a:57:30:e9:d1:af:7e:54:fb:93:
b8:cb:5c:69:2c:84:bd:c8:b7:23:d1:e4:ef:07:6f:90:d4:52:
20:f7:d5:d5:08:72:5e:40:26:e6:46:65:a6:ad:e1:8e:13:89:
f6:da:0a:1b:64:56:7e:66:f7:ab:70:dd:fc:5e:8a:a8:f1:1e:
11:28:2c:b4:87:b2:ff:4c:65:ea:b0:a8:75:a2:09:4f:24:94:
cb:06:ed:b4:97:93:13:b7:50:5b:d3:df:d0:d4:75:af:26:9b:
eb:2f:72:b5:bf:cb:1f:70:67:03:a3:e0:6a:a8:c9:e7:a5:03:
10:1c:66:a0:70:19:85:f9:01:57:b0:11:4d:05:3f:dc:a2:49:
2c:47:16:5f:32:88:75:f9:8b:fc:40:36:9f:88:0f:18:44:ec:
1e:52:a7:8b:23:a5:ea:2e:fd:77:f7:c9:d9:ca:cd:63:6b:0b:
46:69:da:56:7a:ea:db:03:51:92:50:bf:3b:a2:27:89:64:6d:
82:38:ec:a6:2b:92:8b:b6:fb:91:dc:47:bb:75:e5:17:e7:af:
0a:0c:86:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:49 2024 by rpki-client on console-fra.rpki-client.org