Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/M_tVOwdkKCbvS96mTDZiDCKd0ic.roa
File: M_tVOwdkKCbvS96mTDZiDCKd0ic.roa (raw, json)
Hash identifier: NccfQgw4nEIirWopu4l0W4ImqbSqfBFc/dZM/0vPRVA=
Subject key identifier: 33:FB:55:3B:07:64:28:26:EF:4B:DE:A6:4C:36:62:0C:22:9D:D2:27
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 0189782C2AB9C26CCBFCA16B3F4D444406A5
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/M_tVOwdkKCbvS96mTDZiDCKd0ic.roa
Signing time: Fri 21 Jul 2023 11:18:27 +0000
ROA not before: Fri 21 Jul 2023 11:18:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201453
IP address blocks: 185.160.231.0/24 maxlen: 24
185.160.230.0/24 maxlen: 24
185.160.229.0/24 maxlen: 24
185.160.228.0/24 maxlen: 24
185.160.228.0/22 maxlen: 22
185.232.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 24 Jul 2023 06:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:2c:2a:b9:c2:6c:cb:fc:a1:6b:3f:4d:44:44:06:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Jul 21 11:18:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33fb553b07642826ef4bdea64c36620c229dd227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a1:74:29:3d:d9:c8:1c:66:02:06:99:4d:fa:
9a:2e:eb:a7:6e:5c:ed:8b:85:b0:a4:0f:4e:ca:67:
93:a3:4b:e0:b8:f7:38:10:8d:79:07:ba:5d:3c:12:
e9:6f:af:77:58:78:e4:df:15:cc:32:e8:a9:08:44:
d0:6a:ad:60:81:84:07:98:65:8f:75:d2:89:b9:b0:
d8:72:9b:71:00:ab:27:a8:c6:6d:de:92:da:fe:80:
c6:99:90:85:75:6b:6c:4f:95:fb:26:26:be:0f:85:
33:38:e7:e8:e4:67:d5:3f:46:44:46:a0:d9:91:a9:
09:20:de:db:85:6d:96:2b:eb:6d:83:2d:2a:82:99:
2e:46:8b:45:eb:0b:45:51:75:69:ad:d0:6e:66:b2:
f6:08:d4:8c:79:38:b9:10:39:c2:65:ca:4e:0d:1f:
65:84:e5:a2:11:b6:13:aa:dc:7a:4b:82:52:e1:59:
c2:8e:41:70:3a:d8:0c:1f:e4:b6:82:0d:a0:8a:78:
ad:c8:69:40:a4:c6:ce:46:c9:fd:f6:cc:03:d2:f0:
d0:47:b7:c2:c1:20:5e:48:ef:b5:44:0e:d4:a1:f1:
e0:df:d3:bf:7f:02:ad:c3:b9:32:14:76:dd:24:ce:
76:b3:fc:5f:7a:72:36:73:4d:ee:c1:43:1f:cb:b6:
73:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FB:55:3B:07:64:28:26:EF:4B:DE:A6:4C:36:62:0C:22:9D:D2:27
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/M_tVOwdkKCbvS96mTDZiDCKd0ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.228.0/22
185.232.132.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:bc:7a:21:9f:81:53:d8:bd:a7:69:a0:c4:a4:78:04:f7:56:
67:2d:9e:b4:ca:81:61:54:a3:23:6b:06:c2:ee:f8:31:34:f8:
3b:5a:53:d4:30:a6:87:f7:b6:d5:6e:8e:5e:54:b3:72:c9:e4:
35:70:17:12:ba:ef:af:90:16:19:95:5a:3a:7d:16:a2:82:f3:
55:d0:2b:e1:b0:d8:93:ce:6d:a0:fb:4d:d3:a0:65:a5:31:1c:
64:c2:e7:62:a4:4f:f7:80:dc:5c:3a:67:9b:a4:5f:1d:67:66:
85:80:fe:a4:3e:ab:ea:79:98:26:34:d6:9c:c0:72:b1:b9:cf:
41:6a:55:d9:eb:97:e9:a9:86:e2:f0:e3:00:84:60:5a:63:21:
11:cf:93:a0:d9:be:27:7e:7d:74:38:af:aa:a1:c8:a2:68:e2:
ff:93:21:58:62:b0:3c:06:25:69:3b:00:bf:74:95:5f:86:c9:
57:d3:ab:60:17:51:7f:be:9e:b2:4f:ea:ce:97:f7:3e:aa:5c:
ea:ac:fd:82:98:72:e5:c8:cb:bd:0c:4b:28:dc:e3:be:a7:47:
64:61:43:02:9c:bd:e4:fe:4e:ba:84:8c:ee:96:74:d4:1f:6c:
5d:e6:c3:db:17:65:94:5a:9b:2b:91:69:49:c5:9b:7e:f6:82:
bf:2f:e3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org