Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/LuoyGrxZUpCXAemcwGMY_ubSYks.roa
File: LuoyGrxZUpCXAemcwGMY_ubSYks.roa (raw, json)
Hash identifier: BOpgl2QQwvRQs8s5tvn0tXyrVbyPu7tzclPQMOSEdZc=
Subject key identifier: 2E:EA:32:1A:BC:59:52:90:97:01:E9:9C:C0:63:18:FE:E6:D2:62:4B
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018570B9809533FB376B1D3EA4885FD12314
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/LuoyGrxZUpCXAemcwGMY_ubSYks.roa
Signing time: Mon 02 Jan 2023 04:24:43 +0000
ROA not before: Mon 02 Jan 2023 04:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201476
IP address blocks: 217.75.216.0/23 maxlen: 32
217.75.214.0/23 maxlen: 32
185.167.184.0/22 maxlen: 32
185.73.104.0/22 maxlen: 32
185.73.100.0/22 maxlen: 32
185.73.108.0/22 maxlen: 32
2a03:4260::/32 maxlen: 48
2a03:4260::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 06 Oct 2023 07:32:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:80:95:33:fb:37:6b:1d:3e:a4:88:5f:d1:23:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 2 04:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eea321abc5952909701e99cc06318fee6d2624b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:15:b2:47:35:f0:80:62:32:62:6d:96:8c:9c:
ed:50:5a:be:5b:34:90:13:a0:c8:d6:5c:94:77:26:
f8:7a:0e:1a:a2:dc:9e:8f:c3:64:51:19:ed:97:38:
d6:3e:4e:a8:4b:0b:c1:73:df:b7:51:c3:46:d5:9d:
31:fc:5e:a1:0f:a4:65:b7:2b:4d:2e:23:55:7e:80:
bd:d1:35:45:f0:f1:8a:97:f3:fd:0a:fe:3e:5b:ac:
ef:a4:06:6f:a3:d9:94:ac:ab:4b:84:66:72:65:c3:
b9:89:f4:63:46:4a:65:ed:22:98:b8:ba:68:c9:4c:
7e:6f:b2:83:25:77:72:ee:81:ef:ca:09:3a:46:d0:
58:d0:d1:b7:f7:e1:a3:c8:07:14:e5:70:e6:5b:48:
e8:6e:7a:30:7b:ed:a9:ae:03:ba:fa:4f:e4:67:70:
9b:82:3e:d3:09:c1:b8:4d:a5:1c:69:ac:c3:c6:bc:
65:f0:1d:ea:2b:e5:af:97:7e:99:f5:53:77:a9:c2:
d0:90:21:f3:27:05:ff:fa:2f:b1:38:a9:57:68:59:
a1:9f:99:48:24:6b:50:2c:2a:40:c7:cf:ac:34:33:
1a:d1:94:42:ef:e3:1c:9f:d0:ab:b6:de:ee:8e:0f:
84:09:e2:59:df:18:0d:57:65:5a:48:1a:b0:58:71:
d4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EA:32:1A:BC:59:52:90:97:01:E9:9C:C0:63:18:FE:E6:D2:62:4B
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/LuoyGrxZUpCXAemcwGMY_ubSYks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.100.0-185.73.111.255
185.167.184.0/22
217.75.214.0-217.75.217.255
IPv6:
2a03:4260::/29
Signature Algorithm: sha256WithRSAEncryption
3a:82:44:1f:03:dd:11:ad:91:41:29:95:b7:8c:71:ed:97:27:
92:6b:1d:a5:10:44:d8:36:f5:a3:f9:e3:cb:6a:61:70:1b:a8:
d5:95:07:f0:97:93:99:43:e8:f9:2f:e7:16:d2:d2:24:a1:27:
7e:ca:c5:14:7c:71:65:81:c1:dc:4f:ff:b0:68:b2:57:0a:89:
66:98:e1:2e:d1:95:22:e0:03:a9:ef:2f:8f:dc:2b:3a:2d:c7:
92:44:f2:a5:f9:e9:9a:a1:ab:70:53:e1:ff:ef:6d:7b:94:55:
bd:e6:69:54:72:bb:1c:38:ab:a0:8e:4e:5e:61:7c:60:38:b2:
a8:fe:77:71:33:11:79:b5:85:c7:40:c8:6c:62:1d:d6:00:59:
ca:57:cc:0b:0f:b9:5f:70:ae:98:26:8c:ba:af:83:d4:83:7e:
b5:23:21:44:d1:80:5c:6c:47:93:9e:9c:db:17:4b:76:f1:da:
dc:9d:c5:04:b4:52:7a:cb:18:77:73:ed:eb:1f:47:3f:94:42:
99:f9:8f:73:f0:56:54:c8:e1:9e:c8:a4:62:bb:da:1d:64:77:
e4:01:fb:44:b4:8a:88:7a:fd:54:c5:6b:9d:9b:48:89:2e:8d:
12:1f:d5:10:c7:1d:ee:8d:a8:04:16:a6:26:ee:b7:34:85:03:
95:85:64:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org