Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/281kSZQF1-Jv4QesCjvbnvt-w2E.roa
File: 281kSZQF1-Jv4QesCjvbnvt-w2E.roa (raw, json)
Hash identifier: cFiqMMIg0FYna9BNDv4LdjpTaTIQaEE8Lg24BvDwIxQ=
Subject key identifier: DB:CD:64:49:94:05:D7:E2:6F:E1:07:AC:0A:3B:DB:9E:FB:7E:C3:61
Certificate issuer: /CN=eea02b197dbaf7deb74e0a27d9d4ecd3fae1e8ed
Certificate serial: 01872478E8BE0E750F91E39CA73E02DD7719
Authority key identifier: EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qArGX269963Tgon2dTs0_rh6O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/281kSZQF1-Jv4QesCjvbnvt-w2E.roa
Signing time: Mon 27 Mar 2023 19:08:36 +0000
ROA not before: Mon 27 Mar 2023 19:08:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57152
IP address blocks: 185.73.128.0/22 maxlen: 24
104.247.172.0/24 maxlen: 24
104.247.171.0/24 maxlen: 24
104.247.170.0/24 maxlen: 24
104.247.175.0/24 maxlen: 24
104.247.174.0/24 maxlen: 24
104.247.173.0/24 maxlen: 24
104.247.179.0/24 maxlen: 24
104.247.178.0/24 maxlen: 24
104.247.177.0/24 maxlen: 24
104.247.176.0/24 maxlen: 24
104.247.182.0/24 maxlen: 24
104.247.180.0/24 maxlen: 24
104.247.185.0/24 maxlen: 24
104.247.184.0/24 maxlen: 24
185.137.215.0/24 maxlen: 24
2a03:a5a0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Apr 2023 05:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:24:78:e8:be:0e:75:0f:91:e3:9c:a7:3e:02:dd:77:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eea02b197dbaf7deb74e0a27d9d4ecd3fae1e8ed
Validity
Not Before: Mar 27 19:08:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbcd64499405d7e26fe107ac0a3bdb9efb7ec361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:8d:5c:40:c1:b5:fe:73:87:11:3f:cb:5e:
bc:d2:39:d2:ff:d0:51:75:97:88:97:06:ec:70:9c:
2f:27:94:3b:55:49:88:c7:b5:7f:dc:19:c2:b6:eb:
99:fb:75:f1:80:ec:0d:7d:b5:b4:6f:40:94:20:b0:
5a:e6:84:12:d3:95:aa:ee:85:91:a7:39:12:80:b3:
00:54:b3:67:0f:d4:dd:06:ce:7b:15:fb:ba:47:63:
e4:e9:cb:c8:cd:16:9c:42:bc:50:76:05:1d:11:2f:
7e:41:cb:f1:b3:ac:8a:4f:05:86:05:c9:1f:f0:e4:
24:51:dd:90:93:48:1c:6d:6a:11:87:4d:36:d5:5c:
4b:35:80:88:bb:0c:81:cc:a7:bb:89:aa:97:f2:6e:
ad:05:55:9f:67:ec:05:e5:a9:c2:86:7f:4c:7f:77:
b1:2e:72:c5:51:85:a2:e4:94:2a:78:63:0a:af:03:
7c:52:1f:89:d2:81:42:54:53:fd:41:a1:ab:e5:c3:
24:2c:60:e7:a4:37:31:85:04:36:84:a2:5a:a3:f8:
2a:97:ad:37:91:18:53:e8:37:0d:ea:be:ee:25:8e:
1b:d3:d2:f8:79:89:a3:b7:26:80:df:76:98:28:c5:
5d:ac:21:72:f8:ab:51:4d:dc:7b:89:26:9a:fb:35:
13:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CD:64:49:94:05:D7:E2:6F:E1:07:AC:0A:3B:DB:9E:FB:7E:C3:61
X509v3 Authority Key Identifier:
keyid:EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qArGX269963Tgon2dTs0_rh6O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/281kSZQF1-Jv4QesCjvbnvt-w2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/7qArGX269963Tgon2dTs0_rh6O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.247.170.0-104.247.180.255
104.247.182.0/24
104.247.184.0/23
185.73.128.0/22
185.137.215.0/24
IPv6:
2a03:a5a0:1::/48
Signature Algorithm: sha256WithRSAEncryption
9d:67:1b:2c:8b:fb:54:05:85:fc:8a:d1:3f:92:91:62:41:e8:
aa:80:3c:49:67:13:b7:ce:10:dd:5a:3c:19:09:94:94:bb:5a:
dc:cd:a2:26:15:8f:3d:0c:7b:b7:7d:68:83:8b:fe:4b:a7:0f:
71:37:c5:0c:45:78:98:b5:a1:01:9d:69:84:71:b8:2e:f7:44:
e9:65:ad:11:e4:87:ed:99:88:61:09:4b:28:fe:b8:bf:e7:a1:
ce:f8:16:97:41:30:5d:52:b5:03:76:0d:62:ec:b0:e2:51:57:
1c:09:bb:a8:90:ec:66:b3:32:42:0d:83:52:5a:66:94:55:32:
3d:7b:01:d3:80:5b:d5:b4:26:70:8a:71:c0:e2:7e:e9:96:d5:
68:88:aa:bf:18:35:69:50:9a:0f:25:07:9a:55:77:28:ab:90:
87:4f:a4:aa:2c:fb:dc:34:7a:7f:54:67:c8:fd:55:49:15:5a:
f7:b5:5f:f4:c7:77:ef:ba:f3:10:f7:24:47:2a:9e:6e:70:80:
44:3a:3d:2e:42:8e:c0:f8:5b:6a:27:46:54:ca:c4:b5:b0:38:
51:2b:03:db:36:c9:6a:12:2a:14:14:66:99:2b:30:be:65:16:
8e:9e:41:e1:e4:7d:36:02:c1:76:18:95:8e:4d:fb:ca:6a:e3:
60:57:17:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:08 2024 by rpki-client on console-fra.rpki-client.org