Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/EFmhGU1dLCVXzz6xVhR1C3Wbspc.roa
File: EFmhGU1dLCVXzz6xVhR1C3Wbspc.roa (raw, json)
Hash identifier: M+AWfG/ik/eBVFg46BzkwOO3TV0jGU035IwiVhXYuVY=
Subject key identifier: 10:59:A1:19:4D:5D:2C:25:57:CF:3E:B1:56:14:75:0B:75:9B:B2:97
Certificate issuer: /CN=5ff9f4ecc5d050762c55698440f85ea96f7330f2
Certificate serial: 01856EB91C27EF73411D86DD88E29533678D
Authority key identifier: 5F:F9:F4:EC:C5:D0:50:76:2C:55:69:84:40:F8:5E:A9:6F:73:30:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_n07MXQUHYsVWmEQPheqW9zMPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/EFmhGU1dLCVXzz6xVhR1C3Wbspc.roa
Signing time: Sun 01 Jan 2023 19:05:03 +0000
ROA not before: Sun 01 Jan 2023 19:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60989
IP address blocks: 185.21.248.0/22 maxlen: 24
2a04:1d80::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:1c:27:ef:73:41:1d:86:dd:88:e2:95:33:67:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff9f4ecc5d050762c55698440f85ea96f7330f2
Validity
Not Before: Jan 1 19:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1059a1194d5d2c2557cf3eb15614750b759bb297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e6:21:c7:5b:da:c7:91:b2:22:cf:e0:a8:46:
34:15:e9:9c:8f:5c:1f:fc:16:dc:8f:3e:75:77:4c:
8c:a2:15:94:33:38:a0:67:78:ae:73:4f:55:d4:c9:
f2:e9:8f:85:5c:4d:3d:91:38:61:b8:48:ff:3f:28:
d5:d5:6b:e1:d2:78:10:e6:d8:1b:5b:66:34:3d:8c:
c2:78:f5:a6:d3:5e:81:35:03:d3:81:cc:be:8c:de:
48:68:e7:eb:0d:f0:f5:be:75:24:ec:38:f4:f3:d6:
81:67:57:18:ee:c2:0e:7e:bd:ac:af:3a:ce:b3:9d:
72:5c:17:f4:bc:75:35:8c:ab:18:b2:26:59:36:8d:
02:73:d0:b5:17:72:4d:16:a4:df:6a:0d:b0:34:80:
93:c1:81:18:a4:bd:92:07:1d:cd:69:33:8a:37:0e:
cc:dc:59:69:a2:21:ee:c6:cb:d1:40:dc:ea:75:13:
43:92:9b:87:76:c8:03:dc:a2:31:87:6d:b0:8a:02:
39:fd:22:c2:5f:5b:1d:68:35:3d:76:7b:0d:61:9d:
88:40:6e:07:23:2b:45:eb:9a:aa:0c:52:38:02:da:
52:55:6f:ed:aa:74:92:a4:76:5d:97:c4:af:0f:0c:
a1:98:f5:ca:03:51:5d:68:a2:ed:08:d4:4b:c7:81:
97:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:59:A1:19:4D:5D:2C:25:57:CF:3E:B1:56:14:75:0B:75:9B:B2:97
X509v3 Authority Key Identifier:
keyid:5F:F9:F4:EC:C5:D0:50:76:2C:55:69:84:40:F8:5E:A9:6F:73:30:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_n07MXQUHYsVWmEQPheqW9zMPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/EFmhGU1dLCVXzz6xVhR1C3Wbspc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/77c660-f82c-4106-abc9-4c1e49ec8f16/1/X_n07MXQUHYsVWmEQPheqW9zMPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.248.0/22
IPv6:
2a04:1d80::/29
Signature Algorithm: sha256WithRSAEncryption
89:87:62:4d:91:0a:9f:34:85:fd:da:cb:31:93:ad:6d:d7:f5:
f5:7b:69:27:60:a5:19:78:83:cb:96:3d:18:a9:27:30:b1:5a:
f6:60:18:ce:c3:93:ed:58:90:95:68:dc:9c:70:16:f5:ba:cc:
3c:1c:0b:fb:e7:3e:fa:fd:12:1a:69:d1:ec:19:a4:9e:75:4d:
54:54:85:ee:cf:50:5d:5b:cf:92:68:3a:8e:8d:1b:b1:50:f8:
4a:a3:09:27:d7:25:d1:7d:2b:62:64:0c:59:ac:13:e0:da:c1:
d0:7d:8b:03:6c:49:ae:35:e6:4c:5a:85:a5:88:42:52:98:2a:
fc:e6:91:a9:2a:db:fe:0a:65:30:1a:95:52:79:43:0c:11:2d:
d2:92:af:d9:ea:c0:02:df:2c:fb:58:0f:50:09:ca:ab:cd:30:
1d:cf:58:ff:05:d5:52:25:af:51:2a:2b:c2:ea:8f:ae:4b:57:
0d:59:c9:9e:a2:98:f2:3a:1a:f2:27:ca:43:94:14:90:1a:6e:
5c:26:1d:13:96:2c:9d:48:88:de:2c:f2:e1:a5:59:5c:f5:9c:
47:f6:2e:ce:70:95:b0:ce:29:10:ad:eb:0a:c1:7e:c9:bb:c0:
87:6a:aa:b3:34:f1:ad:e3:bf:d8:30:b5:cc:12:5b:66:a5:46:
f0:6f:be:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org