Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/pe1flwZhSRGbbi_XBwKoYDJyq1I.roa
File: pe1flwZhSRGbbi_XBwKoYDJyq1I.roa (raw, json)
Hash identifier: sovr+Bp4LQEMtRQtv0b1o2kmNb82ukieLrklWHw4LqI=
Subject key identifier: A5:ED:5F:97:06:61:49:11:9B:6E:2F:D7:07:02:A8:60:32:72:AB:52
Certificate issuer: /CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Certificate serial: 01884DB235AC1FDF8D57B25C1A466D3CCE73
Authority key identifier: 6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/pe1flwZhSRGbbi_XBwKoYDJyq1I.roa
Signing time: Wed 24 May 2023 12:18:24 +0000
ROA not before: Wed 24 May 2023 12:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39138
IP address blocks: 185.218.107.0/24 maxlen: 24
2a10:d1c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:b2:35:ac:1f:df:8d:57:b2:5c:1a:46:6d:3c:ce:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Validity
Not Before: May 24 12:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5ed5f97066149119b6e2fd70702a8603272ab52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:83:66:fd:bc:24:53:eb:a7:be:53:d0:77:4e:
30:39:7a:7d:bb:d9:9f:ba:ae:0b:d4:ca:b0:2c:8e:
68:71:e6:bf:cb:3c:c2:05:37:6f:44:01:63:90:55:
c9:a0:81:b9:2d:a9:68:de:59:fc:bf:f7:22:66:ab:
27:e5:93:65:3a:e3:cb:2c:6b:22:89:17:b8:ac:fb:
5f:9d:e2:9c:07:69:ea:0e:10:54:64:5f:aa:4d:45:
77:97:cc:8f:cb:59:16:42:2a:3f:15:07:67:9d:11:
51:1e:ad:db:45:04:68:08:a5:c3:54:cb:9d:4d:c9:
8d:15:9a:b9:6a:53:ea:7e:be:8b:bb:1b:12:85:2c:
46:19:dd:1e:47:f9:0c:ed:26:d0:5a:8b:33:a8:e0:
2d:0b:26:3e:a1:c3:36:e0:9e:d5:d5:fb:01:38:c7:
de:1f:cc:9b:45:19:e8:7d:9f:ef:a3:02:b6:31:38:
83:ec:80:4c:87:2c:87:30:13:a2:89:c6:f9:48:b2:
a0:31:2d:62:aa:f1:dc:39:c5:50:fe:d5:ce:1c:1d:
07:84:db:b4:39:3c:d1:70:90:ff:b8:54:e6:fc:80:
20:04:6d:29:98:01:69:3a:e2:f6:73:d8:38:d5:a5:
2c:f4:c6:c3:12:3e:4a:08:25:1f:2d:4b:d6:04:f7:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:ED:5F:97:06:61:49:11:9B:6E:2F:D7:07:02:A8:60:32:72:AB:52
X509v3 Authority Key Identifier:
keyid:6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/pe1flwZhSRGbbi_XBwKoYDJyq1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/b6MuZYEYPyxIl6dlIzOQH39b7nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.107.0/24
IPv6:
2a10:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
53:03:45:d1:70:c4:f4:c4:9b:28:c5:bf:d0:9d:82:88:fc:ca:
e7:12:44:5e:19:a6:7e:21:29:8d:43:87:6e:f4:ad:54:f4:80:
7f:75:c3:70:7a:3f:0c:f3:af:de:48:b2:c1:10:dc:c0:55:63:
59:b2:2e:f3:a1:f9:02:1e:2c:49:89:89:7a:49:da:23:3a:84:
8a:2b:6c:a6:31:5a:48:be:37:d6:8a:5e:90:65:7a:2a:b8:cf:
b2:d7:c2:7c:38:8e:07:eb:f9:44:35:62:c0:28:a3:d8:e2:c0:
e3:b1:b2:f8:65:d2:70:57:29:e6:68:b8:84:f2:d9:ce:21:37:
e4:b5:09:9a:1b:31:75:74:20:53:48:11:01:8b:5b:27:36:d7:
30:06:eb:16:b9:89:64:43:a9:29:af:05:d8:3a:d8:70:ad:13:
33:be:4b:ee:7a:41:a1:1e:5b:60:b0:e7:b4:ae:6f:68:6b:af:
07:3d:b2:28:cf:df:34:58:90:2d:1f:06:b6:4b:5c:ef:9d:17:
ce:d8:95:3a:bf:1a:57:8d:64:8c:46:4e:3e:15:f3:ac:7b:cc:
8f:12:a2:69:e5:00:f9:64:8b:9f:ee:cb:d5:26:c4:08:78:15:
7a:ea:e5:2e:c6:aa:4e:11:c4:0c:0d:38:d9:9e:a2:f3:4e:a0:
a1:bb:03:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org