Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/2ORLAIWau1vw7SfQJQV12cXXYf4.roa
File: 2ORLAIWau1vw7SfQJQV12cXXYf4.roa (raw, json)
Hash identifier: ZOxA3FgxuEMJ40L73/VMge5Y3jmAyCYFSfXl5D9S2WA=
Subject key identifier: D8:E4:4B:00:85:9A:BB:5B:F0:ED:27:D0:25:05:75:D9:C5:D7:61:FE
Certificate issuer: /CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Certificate serial: 018608068C5297042C35EB8657635CB4DCA6
Authority key identifier: A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/2ORLAIWau1vw7SfQJQV12cXXYf4.roa
Signing time: Tue 31 Jan 2023 13:31:32 +0000
ROA not before: Tue 31 Jan 2023 13:31:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51956
IP address blocks: 185.201.174.160/29 maxlen: 29
185.201.174.176/29 maxlen: 29
185.201.174.240/29 maxlen: 29
185.201.172.0/22 maxlen: 22
185.201.174.224/28 maxlen: 28
185.201.174.192/28 maxlen: 28
92.53.236.0/22 maxlen: 22
92.53.236.0/24 maxlen: 24
92.53.237.0/24 maxlen: 24
92.53.238.0/24 maxlen: 24
92.53.239.0/24 maxlen: 24
185.201.174.184/29 maxlen: 29
185.201.174.64/26 maxlen: 26
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:06:8c:52:97:04:2c:35:eb:86:57:63:5c:b4:dc:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Validity
Not Before: Jan 31 13:31:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8e44b00859abb5bf0ed27d0250575d9c5d761fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:12:1d:a9:a9:2e:ea:51:d1:e3:48:db:0e:82:
c6:9c:29:02:da:ac:4c:46:53:6b:a0:0a:ec:d4:b2:
03:ba:b2:5f:5c:0d:94:31:90:5b:21:6a:ce:b1:ee:
f9:b8:a6:58:b3:70:a2:ba:40:fc:cd:1d:0a:40:a0:
6d:ed:0a:08:53:9c:03:7e:6e:7e:a2:db:cb:34:e3:
d1:ab:48:66:e2:ee:13:e3:7c:08:0f:f0:3f:3e:96:
6b:45:a0:9b:33:ae:79:31:f4:f6:74:ba:96:8a:d1:
e3:08:89:c3:eb:83:55:c4:0f:e8:99:cf:e6:73:39:
7c:e8:46:82:a1:cf:12:5a:64:ab:8d:c5:ca:ec:ac:
cc:32:d7:07:9c:1d:bb:a9:e5:cc:99:39:62:b3:de:
4b:2d:78:46:3b:50:59:b3:00:4c:d7:a9:ca:f3:39:
19:42:76:83:db:b4:43:75:a7:a0:5f:1a:a2:95:04:
d5:5f:ef:ba:bc:8a:c6:d2:41:99:3f:19:cc:23:57:
65:1a:47:a6:42:81:b4:46:6e:44:ac:ca:a4:39:e6:
e8:48:fe:3b:ed:d4:b4:07:78:12:28:b5:a8:ac:07:
22:be:b7:1a:bf:9d:35:db:65:7b:0e:49:ee:61:79:
f9:3b:33:ad:e1:b5:6e:1e:38:67:ba:9d:96:60:9e:
32:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E4:4B:00:85:9A:BB:5B:F0:ED:27:D0:25:05:75:D9:C5:D7:61:FE
X509v3 Authority Key Identifier:
keyid:A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/2ORLAIWau1vw7SfQJQV12cXXYf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.236.0/22
185.201.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:5e:18:57:2e:9e:28:c2:4d:4c:db:62:bb:41:d8:a3:06:41:
92:bf:67:95:b7:b8:3e:5a:f6:c2:21:3c:6b:97:93:d2:d1:d8:
7e:49:4c:40:72:0f:47:8b:1b:d6:9c:de:c3:4c:b3:f7:a2:52:
2f:81:6a:3e:3a:0b:ea:99:ab:98:39:d5:12:44:ba:b0:d5:ce:
fa:c1:ef:65:36:99:b9:c0:80:a5:64:2c:75:c1:9e:72:16:25:
45:97:5e:19:d2:42:0e:5e:f7:e1:14:05:0e:b0:31:93:5b:5c:
cc:8e:16:0c:76:72:5b:ba:5a:a2:6e:8c:5e:54:5d:07:f2:8c:
f3:a2:0b:cf:ab:24:4b:8e:0e:33:08:3b:b6:50:14:4f:20:f0:
52:fe:b0:ab:ca:c3:00:0f:48:cb:b4:c2:ac:28:ed:20:fe:33:
e9:80:e8:da:f5:bd:a1:67:09:c0:7b:62:cf:38:71:28:de:d2:
75:7a:c1:93:0f:c0:83:4f:79:bb:5c:ea:6c:f3:fe:57:80:f9:
1f:22:50:35:bd:d5:a9:60:6a:52:c0:0f:8e:1f:c3:a3:c4:6b:
00:d7:03:4f:b8:61:42:7a:5f:6f:7c:1d:b5:7e:01:7f:73:28:
5c:c3:98:11:e7:4d:93:7d:65:85:e9:e8:8a:94:02:d1:07:e5:
32:fc:92:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org