Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/0c5f46-62b8-4af3-9b20-9f5f78352600/1/1bN_mvlrZ3alb9CQ5rrGp-bavgY.roa
File: 1bN_mvlrZ3alb9CQ5rrGp-bavgY.roa (raw, json)
Hash identifier: 6Guze9I9XgVIx/3y4kWSj/QybUw24pZEQBnSsk2bWgA=
Subject key identifier: D5:B3:7F:9A:F9:6B:67:76:A5:6F:D0:90:E6:BA:C6:A7:E6:DA:BE:06
Certificate issuer: /CN=7ab74b01307f9c3fa756196384173115e66e6c55
Certificate serial: 01888061C86C465318D49EE3F10450C5B28B
Authority key identifier: 7A:B7:4B:01:30:7F:9C:3F:A7:56:19:63:84:17:31:15:E6:6E:6C:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erdLATB_nD-nVhljhBcxFeZubFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/0c5f46-62b8-4af3-9b20-9f5f78352600/1/1bN_mvlrZ3alb9CQ5rrGp-bavgY.roa
Signing time: Sat 03 Jun 2023 08:31:11 +0000
ROA not before: Sat 03 Jun 2023 08:31:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25398
IP address blocks: 193.108.44.0/23 maxlen: 23
193.108.44.0/24 maxlen: 24
193.108.45.0/24 maxlen: 24
185.150.182.0/23 maxlen: 23
185.150.180.0/22 maxlen: 22
185.150.180.0/23 maxlen: 23
2a0d:7ec1::/32 maxlen: 32
2a0d:7ec0::/32 maxlen: 32
2a0d:7ec0::/31 maxlen: 31
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:80:61:c8:6c:46:53:18:d4:9e:e3:f1:04:50:c5:b2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ab74b01307f9c3fa756196384173115e66e6c55
Validity
Not Before: Jun 3 08:31:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5b37f9af96b6776a56fd090e6bac6a7e6dabe06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:a4:0d:e4:68:85:4d:62:40:2d:cc:33:89:
d5:20:3d:7a:95:4f:ee:79:00:9b:70:5a:2b:5c:8f:
52:53:a8:9d:a4:df:a9:ad:87:9c:95:09:5f:86:96:
86:46:9a:c9:07:2c:7f:c8:81:6e:c0:86:41:2a:4c:
67:a0:4b:ec:41:c6:17:01:05:f7:fb:3a:0e:e5:10:
17:ae:e6:d4:bd:81:a9:37:41:54:25:c7:ee:a6:c6:
01:97:2f:27:bb:2e:89:e7:19:d1:91:2b:11:62:1c:
01:d8:92:cb:82:51:71:5b:30:4b:d2:fd:49:69:86:
a8:d3:3f:20:26:d1:52:31:eb:e3:62:c9:8f:1e:04:
e7:d4:02:22:e4:57:d0:fa:e5:6c:ee:d5:f9:52:38:
de:61:d9:57:30:fd:74:f5:e7:a2:11:39:55:e4:5b:
d5:e9:9a:96:4a:ca:48:0c:d8:ba:5a:18:e4:fc:a9:
34:7a:4a:3f:ed:05:37:fa:61:13:09:6a:9c:8e:fe:
cf:27:4c:05:40:60:9b:82:39:70:65:3f:4f:e7:e3:
63:f7:46:c2:fb:92:a9:97:8d:b3:f2:d3:ed:21:38:
c3:15:ef:0d:11:90:b3:72:e2:96:32:06:3a:47:34:
04:cc:d1:5b:f8:53:81:87:ff:9d:c0:ae:c1:17:51:
47:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B3:7F:9A:F9:6B:67:76:A5:6F:D0:90:E6:BA:C6:A7:E6:DA:BE:06
X509v3 Authority Key Identifier:
keyid:7A:B7:4B:01:30:7F:9C:3F:A7:56:19:63:84:17:31:15:E6:6E:6C:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erdLATB_nD-nVhljhBcxFeZubFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/0c5f46-62b8-4af3-9b20-9f5f78352600/1/1bN_mvlrZ3alb9CQ5rrGp-bavgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/0c5f46-62b8-4af3-9b20-9f5f78352600/1/erdLATB_nD-nVhljhBcxFeZubFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.180.0/22
193.108.44.0/23
IPv6:
2a0d:7ec0::/31
Signature Algorithm: sha256WithRSAEncryption
63:a5:b2:ce:cf:b6:1e:e5:d6:ba:c8:88:ca:24:3d:6e:cc:bd:
21:23:5f:d0:f2:e8:ab:78:3c:fa:84:74:38:db:36:4c:18:44:
d2:19:63:94:d1:b4:3d:80:48:0e:f4:95:e7:9b:cd:63:c2:61:
cd:6c:97:36:dd:0c:0f:48:fa:33:cd:92:15:17:c8:c2:80:6f:
32:ec:3b:b2:3e:c2:3f:37:fe:61:fb:49:46:b0:e2:7e:34:00:
53:94:d1:19:0a:01:67:b1:a6:3a:94:23:b1:37:0a:7c:3a:0c:
16:d8:c2:30:6c:ab:aa:f8:aa:be:8b:b4:12:f4:26:07:f7:4c:
b2:8e:a6:ef:8d:b2:45:66:fe:db:cc:8d:84:4a:bc:22:0b:be:
f9:0f:af:52:2b:6a:80:b7:d7:fc:9e:86:a6:be:ae:ca:18:df:
75:64:42:49:c1:c5:bf:96:2b:84:26:eb:d5:76:e2:d1:ac:2c:
6b:84:ad:f5:3c:3d:eb:f8:5d:8d:46:48:e5:5b:3c:37:ca:9a:
54:90:f4:16:db:a7:52:2d:3e:55:13:fc:a5:29:39:91:00:fa:
29:02:55:e8:91:de:f4:c1:0c:57:d2:95:ce:d7:18:83:fd:06:
35:dc:bc:25:d7:1d:c5:e4:8a:38:ea:b0:f7:b4:f7:4a:6d:88:
4b:3a:69:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:29 2024 by rpki-client on console-ams.rpki-client.org