Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/56MV3Kn26AliOC8Nx3mu_mHQ53I.roa
File: 56MV3Kn26AliOC8Nx3mu_mHQ53I.roa (raw, json)
Hash identifier: /YdmO5WcX5ieknJWFDRBZsbCKPcUzoc8ezUukADDQo8=
Subject key identifier: E7:A3:15:DC:A9:F6:E8:09:62:38:2F:0D:C7:79:AE:FE:61:D0:E7:72
Certificate issuer: /CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Certificate serial: 01888BB36DA4AEA527C3DB66425C433BEC02
Authority key identifier: D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/56MV3Kn26AliOC8Nx3mu_mHQ53I.roa
Signing time: Mon 05 Jun 2023 13:16:12 +0000
ROA not before: Mon 05 Jun 2023 13:16:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197898
IP address blocks: 185.110.52.0/22 maxlen: 24
217.9.192.0/20 maxlen: 24
185.98.178.0/23 maxlen: 24
185.98.179.0/24 maxlen: 24
185.98.176.0/23 maxlen: 24
2a03:37e0::/32 maxlen: 32
2a00:8007::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:b3:6d:a4:ae:a5:27:c3:db:66:42:5c:43:3b:ec:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Validity
Not Before: Jun 5 13:16:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7a315dca9f6e80962382f0dc779aefe61d0e772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:33:98:ca:a4:47:86:2f:8c:39:7d:99:d7:6f:
3f:f5:4c:94:3e:d8:78:45:f0:95:60:c3:6b:86:08:
68:7a:55:90:b4:a5:de:94:8b:23:07:20:7b:82:22:
12:e6:df:43:95:a0:3b:9f:2f:21:72:a5:c1:c8:d5:
3e:aa:2e:41:eb:37:8c:dd:5a:f1:7f:fc:c0:6e:8f:
4f:60:2d:cc:5e:77:11:a0:de:b5:42:9d:16:e8:e8:
37:bd:fe:63:f7:2e:59:5f:36:73:17:9f:02:a4:bc:
6c:76:01:d9:bc:9e:f3:da:8f:34:74:9e:54:67:fc:
97:2d:b1:80:7a:b4:36:e4:1a:b7:6f:f8:70:bd:8c:
52:ce:08:d4:97:c3:d2:bd:5f:56:52:11:58:bc:ca:
a0:2d:25:04:12:58:cc:40:9c:ea:3a:12:fb:7e:52:
6a:3a:ce:99:bc:8c:43:2c:4d:ca:89:67:79:84:74:
0c:8f:3a:8c:c7:8c:8b:f7:a4:b1:04:fd:13:d0:ce:
0b:fa:86:44:c8:8f:bd:ea:04:6d:87:90:dc:a5:f7:
24:ad:62:68:b6:24:19:64:99:45:1d:e1:c9:cf:fa:
de:fe:f2:d1:95:69:cd:29:8e:82:56:8b:1a:c8:79:
cc:f6:09:97:5d:87:b1:92:09:b2:af:3d:bd:bf:3a:
05:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A3:15:DC:A9:F6:E8:09:62:38:2F:0D:C7:79:AE:FE:61:D0:E7:72
X509v3 Authority Key Identifier:
keyid:D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/56MV3Kn26AliOC8Nx3mu_mHQ53I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.176.0/22
185.110.52.0/22
217.9.192.0/20
IPv6:
2a00:8007::/32
2a03:37e0::/32
Signature Algorithm: sha256WithRSAEncryption
9c:c1:1d:06:1a:52:7f:10:6a:e7:d6:c2:5f:f9:38:17:c2:82:
50:52:0d:08:76:f2:e9:54:b0:53:b3:2a:9c:61:67:b6:40:80:
8d:5c:57:59:0d:35:93:d2:89:2d:cb:da:2b:39:ec:fb:e0:4f:
2e:b9:fb:9e:a3:c9:e8:f9:74:b6:24:ce:68:f1:2b:ab:85:4d:
b9:7f:e1:4f:3d:e3:9c:9e:73:90:03:99:d7:bb:17:00:bd:c9:
66:53:3a:9d:9d:a9:9d:08:5c:68:4a:58:57:d4:7b:f2:c1:b4:
de:57:72:6a:97:55:bd:26:85:2a:4c:fb:28:4b:ec:eb:e0:40:
26:e2:b5:bb:0c:23:ad:1a:06:d9:eb:d4:ed:68:c0:11:ce:c8:
2e:ef:f9:78:a2:37:61:e4:74:c9:13:64:77:8f:6a:aa:2d:b0:
c8:97:02:41:11:f7:13:e1:ca:23:3e:e3:0e:80:1f:a9:63:fb:
d4:06:4e:b3:c4:97:e6:e7:29:42:78:f5:8e:62:bb:83:78:d6:
b4:e2:3b:92:eb:a3:89:31:40:55:cf:06:7d:c7:78:ab:83:9d:
0f:e4:74:52:90:95:1f:e0:f6:2d:f4:89:00:39:2b:65:d4:87:
8f:48:fb:9d:dd:ac:6b:8b:13:0d:15:33:e6:19:ac:5c:c3:c4:
8c:a4:16:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org