Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/A0G_uijrkKcKKHdXYalCHFg2zAQ.roa
File: A0G_uijrkKcKKHdXYalCHFg2zAQ.roa (raw, json)
Hash identifier: tvcGWzM4WckU/819FrDu5a2agqbGYWpxH3KgX1CjupM=
Subject key identifier: 03:41:BF:BA:28:EB:90:A7:0A:28:77:57:61:A9:42:1C:58:36:CC:04
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018B3D531123ABA43075D92457830728A7B7
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/A0G_uijrkKcKKHdXYalCHFg2zAQ.roa
Signing time: Tue 17 Oct 2023 11:08:55 +0000
ROA not before: Tue 17 Oct 2023 11:08:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.37.82.0/24 maxlen: 24
185.247.116.0/24 maxlen: 24
185.247.119.0/24 maxlen: 24
185.181.9.0/24 maxlen: 24
185.181.11.0/24 maxlen: 24
185.227.109.0/24 maxlen: 24
2a07:3b80:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:53:11:23:ab:a4:30:75:d9:24:57:83:07:28:a7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Oct 17 11:08:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0341bfba28eb90a70a28775761a9421c5836cc04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1a:86:35:a6:bf:6b:ac:aa:0a:f8:38:cf:2b:
68:80:68:cb:c6:82:f1:eb:a8:98:1d:dd:54:2b:38:
e2:b1:0c:d9:08:c0:3f:16:be:67:34:a8:23:e8:39:
ba:8f:2e:f9:db:9f:bd:f6:1e:38:64:82:54:ec:5a:
d3:24:84:54:25:50:2b:33:3e:60:de:72:b9:fe:31:
66:cd:39:b3:f1:e6:f4:c7:d2:95:04:7a:d6:10:73:
87:3c:cc:ac:eb:ab:81:77:c5:43:5e:7c:cb:e1:23:
01:97:64:4b:db:8d:a0:b7:d5:9a:16:84:98:47:ea:
bd:9c:ba:be:49:36:e3:fa:3c:9c:db:c0:d3:32:48:
cb:30:59:c9:6e:4f:fc:b3:50:27:11:bd:1d:98:0f:
a5:56:3c:3d:fc:be:1e:1f:7c:ac:0a:b9:b7:bd:f7:
fa:5f:28:ac:b4:e8:bf:27:cd:fd:9f:98:7e:41:ab:
85:30:af:52:1a:2d:bb:84:3a:cd:96:88:24:1f:76:
02:cd:64:c4:fe:32:98:dd:69:52:62:19:2e:f3:46:
01:99:7c:b4:87:26:5f:1e:e5:9a:85:99:e7:cf:2d:
68:b4:33:41:82:f2:5f:b1:bf:43:4e:97:af:6b:33:
d4:85:fa:87:24:df:86:26:e8:f5:31:82:ab:f2:db:
15:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:41:BF:BA:28:EB:90:A7:0A:28:77:57:61:A9:42:1C:58:36:CC:04
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/A0G_uijrkKcKKHdXYalCHFg2zAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.9.0/24
185.181.11.0/24
185.227.109.0/24
185.247.116.0/24
185.247.119.0/24
194.37.82.0/24
IPv6:
2a07:3b80:2::/48
Signature Algorithm: sha256WithRSAEncryption
66:84:6b:96:2a:aa:fc:9f:d1:dd:80:02:8f:2f:d2:ec:28:08:
de:73:5a:54:3c:26:1b:d5:1a:b0:51:39:0f:33:04:df:b8:66:
45:62:45:07:3e:9a:ff:97:dd:03:d5:99:b5:ed:09:f4:3e:e2:
8a:66:8f:97:2d:86:30:23:78:5b:72:60:b5:ff:a9:a5:4a:74:
e8:a1:23:74:91:f4:77:74:be:df:d6:67:2f:a2:bd:8e:13:20:
41:f2:3c:ca:c4:be:f9:31:35:c8:9e:3c:32:84:a0:9e:c1:a9:
ff:7b:0f:8e:28:fd:06:8a:34:83:e9:75:66:e4:8a:c3:2a:be:
96:cf:d5:82:b3:a1:2a:c2:60:43:f6:a7:e8:b6:13:48:89:dd:
5b:32:01:d0:12:65:49:c1:72:a3:b6:b4:e3:15:47:5a:8f:d7:
09:71:33:10:fe:d3:5e:e4:53:79:73:68:3e:7d:31:d9:3a:9a:
1e:a0:01:8a:a1:90:2d:ab:93:99:a5:47:89:3c:7c:ce:8c:2b:
b4:1d:5b:51:bf:b7:e7:09:11:c2:fa:4f:2b:23:4c:93:43:db:
c9:e0:89:36:b4:34:a5:45:ce:af:d3:22:21:b2:66:51:a3:78:
f4:29:13:b3:d1:0b:3c:12:e8:c4:8e:4f:4b:aa:86:7f:a6:3f:
98:5c:d7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:35 2024 by rpki-client on console-ams.rpki-client.org