Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/E8AuklzbPtjvMhG3JiYkem4QZo4.roa
File: E8AuklzbPtjvMhG3JiYkem4QZo4.roa (raw, json)
Hash identifier: FuEouZRRZdCx/7iS2eOVfUu49ezdM8MxCujvLtxF4RY=
Subject key identifier: 13:C0:2E:92:5C:DB:3E:D8:EF:32:11:B7:26:26:24:7A:6E:10:66:8E
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018D6DF25CA3A6877728889D954E4AA7AF19
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/E8AuklzbPtjvMhG3JiYkem4QZo4.roa
Signing time: Sat 03 Feb 2024 07:50:16 +0000
ROA not before: Sat 03 Feb 2024 07:50:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 93.190.8.0/24 maxlen: 24
93.190.10.0/24 maxlen: 24
93.190.11.0/24 maxlen: 24
185.254.52.0/24 maxlen: 24
193.17.4.0/24 maxlen: 24
193.17.5.0/24 maxlen: 24
193.17.6.0/24 maxlen: 24
193.17.7.0/24 maxlen: 24
193.111.76.0/24 maxlen: 24
193.111.77.0/24 maxlen: 24
193.111.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 15:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6d:f2:5c:a3:a6:87:77:28:88:9d:95:4e:4a:a7:af:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Feb 3 07:50:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13c02e925cdb3ed8ef3211b72626247a6e10668e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:2c:04:77:09:51:95:07:ff:de:b0:ab:fc:
50:4b:13:32:6c:6d:0a:dd:df:cb:4f:97:2b:a5:3a:
b3:a4:a3:75:61:d8:aa:d4:72:ec:17:ce:71:a3:9e:
89:b1:83:cc:a6:9d:51:24:b0:f2:bf:50:c5:e3:44:
b3:3f:4e:46:9e:3c:e5:2b:aa:25:d5:6a:8f:e6:08:
39:fe:c4:06:e4:64:b1:12:63:f5:c1:88:7f:c3:1f:
63:39:b4:5c:1b:40:76:1f:1e:e1:ca:59:e0:12:22:
b4:47:25:46:d2:dd:19:2a:81:4b:bb:bb:8c:ab:fd:
d1:83:0f:b8:6d:8f:8b:df:67:f7:7e:86:be:f0:7f:
32:50:e1:90:19:76:43:2c:7e:7d:46:f6:b5:b0:94:
b5:fe:07:56:06:ec:2d:d5:9a:0f:6a:38:94:68:de:
ef:55:f5:15:6d:e3:b0:6c:41:bb:eb:0d:79:d3:6a:
e0:d4:df:31:de:64:89:21:1f:1c:48:38:6c:20:c5:
96:15:f7:7e:7e:03:80:a2:58:9e:ae:e6:c7:c1:ef:
5f:d1:6a:6c:d4:df:c6:da:47:73:e4:7e:2e:3c:c3:
b8:09:5b:77:94:d6:44:02:12:b2:a9:98:4d:3f:a5:
d8:51:e6:ff:b5:60:26:7d:f6:25:0d:f9:43:5a:f3:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C0:2E:92:5C:DB:3E:D8:EF:32:11:B7:26:26:24:7A:6E:10:66:8E
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/E8AuklzbPtjvMhG3JiYkem4QZo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.8.0/24
93.190.10.0/23
185.254.52.0/24
193.17.4.0/22
193.111.76.0-193.111.78.255
Signature Algorithm: sha256WithRSAEncryption
27:07:49:70:72:47:fd:8c:ae:a9:ec:ab:63:fe:b7:ee:ee:4e:
9d:6d:2a:e0:fd:30:23:88:85:d3:2e:ad:70:40:1e:1d:09:ae:
5c:5a:8a:8c:44:dc:5c:ac:e2:1b:7b:e8:4c:65:cc:89:c5:d0:
ed:7d:86:8b:68:c4:0e:ed:ed:db:39:a2:59:08:15:63:01:f6:
67:e3:3c:3a:b5:c9:93:f6:0c:55:15:6c:56:6f:af:00:ab:dd:
51:82:d6:c4:5d:b9:72:d4:25:4b:8d:a4:76:0b:7c:70:c1:aa:
42:83:ad:ce:05:b3:bc:dd:4d:2b:87:d3:ce:86:52:cc:64:7f:
c7:c0:c6:ba:47:c1:16:92:ac:03:91:9c:d0:bd:bd:6c:93:c5:
d0:8c:5e:8e:de:1d:de:02:85:0b:31:c3:79:27:87:25:69:44:
1b:88:6f:8d:98:16:a8:88:d6:c0:e1:e6:f0:64:75:cb:c7:38:
fd:6a:c3:ed:4a:12:45:85:6f:e2:6b:0d:7f:77:5b:64:1d:58:
d1:2c:91:e9:27:ed:78:f2:1c:60:86:2f:24:ce:aa:55:9c:51:
9d:f1:f6:d8:c7:4c:b3:b1:4b:2d:30:55:04:a2:c8:2c:c8:bf:
65:74:9b:49:f5:9e:69:2d:44:7e:a0:72:d6:04:51:c7:10:03:
7d:66:d1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 16:40:29 2024 by rpki-client on console-fra.rpki-client.org