Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/pm9Dn94sW8S8Ej-w_JPtzPUa44g.roa
File: pm9Dn94sW8S8Ej-w_JPtzPUa44g.roa (raw, json)
Hash identifier: Kod9AcSObPnN/iFcVWww4Gaov1Nkp25EToFTeAUMYYk=
Subject key identifier: A6:6F:43:9F:DE:2C:5B:C4:BC:12:3F:B0:FC:93:ED:CC:F5:1A:E3:88
Certificate issuer: /CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Certificate serial: 01856F0B53EE9C267C4964456BB41B202432
Authority key identifier: C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/pm9Dn94sW8S8Ej-w_JPtzPUa44g.roa
Signing time: Sun 01 Jan 2023 20:34:51 +0000
ROA not before: Sun 01 Jan 2023 20:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202701
IP address blocks: 194.5.100.0/22 maxlen: 24
185.156.204.0/22 maxlen: 24
2a07:a106::/32 maxlen: 32
2a07:a104::/32 maxlen: 32
2a0c:e840::/29 maxlen: 29
2a07:a105::/32 maxlen: 32
2a07:a107::/32 maxlen: 32
2a07:a100::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:53:ee:9c:26:7c:49:64:45:6b:b4:1b:20:24:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Validity
Not Before: Jan 1 20:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a66f439fde2c5bc4bc123fb0fc93edccf51ae388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b5:39:44:47:f4:94:6d:49:ac:6b:a8:93:9c:
b6:a7:8d:3c:20:8f:40:07:7a:fc:23:37:46:e1:26:
66:47:7c:47:5d:b8:02:bc:85:e0:69:67:65:f8:a4:
8f:86:3e:cd:44:53:e6:c4:46:f2:e1:4a:25:02:5b:
5f:41:36:dc:f4:d1:87:0f:c8:08:c3:24:34:14:27:
69:46:31:de:6a:3f:f3:32:41:e3:bb:12:00:7d:e2:
31:14:d4:af:c5:ac:93:19:da:6c:aa:a0:d1:6e:61:
2d:22:b3:b2:12:26:f6:a8:0b:46:9f:6e:2e:5b:97:
00:96:dd:c0:92:e2:cf:47:ea:ed:9d:f9:ec:3d:58:
1e:15:61:6c:43:63:9f:62:ec:6a:bf:e3:d6:6d:45:
03:16:8d:b2:5d:df:12:dc:a6:15:5d:31:08:05:7c:
67:74:fe:0c:51:b4:40:12:d6:6d:ff:85:b3:c1:29:
dc:2f:b9:bc:fb:ca:36:2f:bc:47:f7:b4:0f:0e:cf:
ff:61:5a:e7:9c:ee:aa:38:40:ba:08:b7:62:f4:52:
0a:0f:92:99:69:52:5e:8d:8c:a6:19:14:37:5d:2f:
d0:d9:04:8e:da:8d:11:e6:6e:29:b5:14:bd:20:d1:
ae:49:57:05:00:58:a7:87:cd:e9:0a:d6:82:94:24:
7f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6F:43:9F:DE:2C:5B:C4:BC:12:3F:B0:FC:93:ED:CC:F5:1A:E3:88
X509v3 Authority Key Identifier:
keyid:C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/pm9Dn94sW8S8Ej-w_JPtzPUa44g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.204.0/22
194.5.100.0/22
IPv6:
2a07:a100::/29
2a0c:e840::/29
Signature Algorithm: sha256WithRSAEncryption
c6:d2:89:a2:f9:8b:0e:8d:37:55:b7:70:4c:0a:20:23:ac:0d:
9b:4a:46:46:0c:12:d9:f2:a3:d8:68:98:83:ec:1c:00:66:e5:
e5:10:ff:77:ab:9b:9f:f6:6f:59:66:58:e5:a2:80:01:6a:46:
7a:b0:4b:eb:d0:f4:24:e8:62:46:62:5c:93:3a:e8:22:52:21:
11:05:07:9b:20:0f:ad:ec:94:4b:c6:b0:29:86:29:8b:ae:e2:
f4:13:de:e9:4c:8e:f5:60:d7:65:ea:a3:5b:2e:a9:3c:44:af:
f9:1b:bc:1e:1c:cf:c6:17:f7:92:c5:3c:54:5c:f9:ee:f2:b5:
f3:b6:71:21:1b:a4:3f:a9:e9:2b:53:7f:dd:db:16:25:21:4f:
60:81:b8:ea:45:d6:a0:cc:33:f9:2d:b4:5e:f3:aa:59:0e:3b:
3b:fe:b6:f3:48:68:13:ba:6d:4b:15:5c:08:ac:09:a1:75:f1:
fc:db:00:d4:72:64:ae:d1:82:5c:02:41:7b:12:d6:7d:b5:e6:
9d:68:cc:b2:6f:d5:c9:bb:b0:7f:13:94:6f:ac:f4:d9:d5:eb:
b2:f9:d1:fd:2d:7b:9d:f8:7d:e7:a7:c6:b0:57:d0:6f:1a:e6:
d2:76:7b:c4:2c:0d:bd:ae:bb:89:a1:0d:74:b6:14:d6:4e:01:
89:f4:b2:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:00 2024 by rpki-client on console-ams.rpki-client.org