Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/eTWbOSckCBB-aEsf7LaMjz2HWc8.roa
File: eTWbOSckCBB-aEsf7LaMjz2HWc8.roa (raw, json)
Hash identifier: MapqzmuJ2VEcjGsb4fhwpuwZEXeeQ4i+2dVqQeT1kTc=
Subject key identifier: 79:35:9B:39:27:24:08:10:7E:68:4B:1F:EC:B6:8C:8F:3D:87:59:CF
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CC61F231EFE72C122CE6794B036E28481
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/eTWbOSckCBB-aEsf7LaMjz2HWc8.roa
Signing time: Mon 01 Jan 2024 17:42:58 +0000
ROA not before: Mon 01 Jan 2024 17:42:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.201.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 29 Jan 2024 13:37:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:1f:23:1e:fe:72:c1:22:ce:67:94:b0:36:e2:84:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 17:42:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79359b39272408107e684b1fecb68c8f3d8759cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3f:2a:18:81:ea:0f:62:cc:ac:9b:60:45:8a:
53:79:30:25:0f:83:10:6a:35:60:4e:48:22:1f:d2:
1c:b7:71:8f:b1:f7:3d:cf:26:c8:fd:83:7a:0a:c2:
72:ae:0c:f6:4a:fd:04:3f:ae:0e:54:72:4a:12:c6:
50:29:19:6e:60:91:0c:0d:0b:78:b1:8c:79:f7:99:
f2:09:6a:13:92:0b:e2:a7:e4:13:a9:d0:fd:bf:76:
2c:69:f3:19:a0:aa:4a:16:82:47:21:8a:73:51:83:
bb:37:6a:62:87:0a:f5:38:d6:75:f7:53:07:db:63:
84:6f:61:3a:d4:4c:be:a5:a0:85:8e:19:04:ef:e3:
4c:f5:9e:39:55:fc:d4:e8:ab:1d:65:2e:0d:87:2c:
08:01:7f:fb:8d:55:a7:d0:8a:61:3c:c1:a8:c3:a3:
7d:59:0b:86:35:65:0a:32:ac:42:1a:5b:17:c7:76:
4c:25:1f:b6:75:3e:75:5c:52:42:67:46:57:c5:b3:
5f:4d:71:b8:16:e4:9a:13:e0:54:1a:c9:09:33:29:
da:4c:c5:29:d6:b6:ca:ad:3e:0b:f4:8f:61:a9:94:
ea:bd:7f:d3:7d:43:c8:49:d8:fc:de:45:65:4c:65:
04:c0:fb:95:ef:01:fa:c6:59:fa:21:d9:53:b2:37:
45:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:35:9B:39:27:24:08:10:7E:68:4B:1F:EC:B6:8C:8F:3D:87:59:CF
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/eTWbOSckCBB-aEsf7LaMjz2HWc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
06:64:74:3b:4a:c0:1a:6f:78:8b:c8:d6:28:8c:fc:e1:f6:b3:
5e:9c:98:c9:ba:ff:6f:3e:cf:d2:11:4f:76:8e:9c:8d:cf:38:
41:87:ab:75:41:2f:ef:c8:ab:ab:9c:4a:67:33:4e:0d:f9:95:
35:57:84:97:78:21:47:3a:5c:01:6c:e2:f7:6b:e2:16:6f:4b:
5c:c8:d1:31:11:2f:73:99:f1:ed:82:cb:42:bd:9a:8f:2a:10:
cd:04:7d:f3:c1:1e:9f:f6:a9:67:5f:41:d8:6d:bf:c7:5d:f6:
84:78:81:4a:31:84:d2:f7:76:b8:e6:3d:fe:ae:3a:7f:75:32:
2b:41:e5:74:af:a6:bd:40:35:bd:64:db:39:89:8c:9a:b8:57:
7e:d2:47:e0:20:b5:0e:94:75:c6:7d:89:c2:5c:55:9b:b4:ee:
6b:c1:17:b9:5d:08:dc:e7:0b:b4:eb:fb:83:ac:51:ec:be:c0:
7f:39:ea:ad:74:6a:92:a3:bf:fc:db:31:d1:f2:65:87:ab:c2:
b8:bc:70:8a:83:d5:1b:a2:86:2e:ac:f1:d8:fe:83:0e:0e:bd:
d1:2e:cd:a7:ff:c7:ac:b1:68:ab:4b:6b:e3:1d:fa:eb:c7:bc:
87:39:e7:8d:9d:40:9c:1d:65:44:0d:b0:e5:7b:4e:22:89:f4:
80:90:91:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org