Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/1-EUwPLEjBuCydYp0iI07Y_jpSR4.roa
File: 1-EUwPLEjBuCydYp0iI07Y_jpSR4.roa (raw, json)
Hash identifier: 7xVwy4CULcsQjBqya3s8SFoV7CvEUo08aXYmFrO0wGo=
Subject key identifier: F8:45:30:3C:B1:23:06:E0:B2:75:8A:74:88:8D:3B:63:F8:E9:49:1E
Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd
Certificate serial: 018CA6FBA5938685066782F15324A214C4DC
Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/1-EUwPLEjBuCydYp0iI07Y_jpSR4.roa
Signing time: Tue 26 Dec 2023 16:35:58 +0000
ROA not before: Tue 26 Dec 2023 16:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212921
IP address blocks: 2.59.152.0/24 maxlen: 24
2.59.155.0/24 maxlen: 24
45.142.152.0/24 maxlen: 24
193.239.150.0/24 maxlen: 24
194.126.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a6:fb:a5:93:86:85:06:67:82:f1:53:24:a2:14:c4:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd
Validity
Not Before: Dec 26 16:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f845303cb12306e0b2758a74888d3b63f8e9491e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ad:b1:18:cd:db:95:56:08:ed:12:8c:b6:6e:
36:bf:27:28:9b:c7:05:4d:1d:88:a5:63:ec:26:4c:
0b:92:84:ea:4e:2a:5a:31:65:16:13:7f:d3:b8:47:
d1:2e:aa:67:15:67:f4:e6:0b:cb:70:9d:0e:ce:89:
86:94:7b:f7:42:5c:98:cb:ad:a4:a1:3b:b8:2e:99:
43:0c:c7:09:83:44:62:98:f7:46:d9:7e:31:e3:b1:
61:a6:89:66:cc:72:6d:f6:8b:70:e0:72:16:39:b8:
0f:13:9f:b7:79:d3:fc:7e:3d:8f:1b:8a:19:01:bd:
da:43:72:39:c1:f8:46:55:ed:59:5b:28:38:60:77:
b1:d3:3c:a8:11:1f:09:a9:d2:6c:ab:74:f3:36:58:
98:02:43:0c:e5:3e:d3:a8:f3:17:90:0b:b2:f4:0a:
6a:07:1a:75:62:4d:75:3c:18:e1:15:b0:77:8f:6c:
7c:b1:31:27:fd:da:22:8f:3f:b6:8d:fd:74:2c:3a:
ee:b5:20:f3:1f:cd:d5:fa:eb:58:1c:fa:7d:8d:2c:
08:f2:44:5a:ae:a9:81:19:70:1c:99:7d:28:dc:81:
d2:b1:75:fd:61:d2:9c:72:f3:2a:09:3a:d9:93:7b:
a6:fb:ad:a6:eb:7c:2b:d8:f5:23:a8:8a:9e:7c:82:
09:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:45:30:3C:B1:23:06:E0:B2:75:8A:74:88:8D:3B:63:F8:E9:49:1E
X509v3 Authority Key Identifier:
keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/1-EUwPLEjBuCydYp0iI07Y_jpSR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.152.0/24
2.59.155.0/24
45.142.152.0/24
193.239.150.0/24
194.126.202.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:0b:da:99:dc:3d:50:6b:8c:f2:f1:56:c0:a2:ac:c5:68:20:
cf:0b:c9:c7:94:9a:e8:b3:78:a6:f0:b4:ec:dc:13:2c:d1:d4:
65:b1:f4:6f:39:e6:f5:76:bf:e9:f5:31:10:fe:2a:d6:a5:5c:
f7:d4:77:10:33:e2:90:32:40:40:3c:8e:b7:b6:60:52:a7:66:
a4:2c:b3:2c:87:f9:ba:8e:d3:89:e4:1f:8b:82:19:2e:3f:83:
8c:81:04:66:bb:b1:8e:4c:71:34:6c:1a:81:01:85:14:1f:50:
43:7b:21:82:58:79:26:e2:fd:63:75:b1:2d:d7:78:89:17:f4:
dd:ec:6c:9e:4a:0c:68:5d:78:06:87:0d:e3:8a:37:80:60:37:
21:71:50:7b:7a:0a:5e:f9:18:35:3f:17:be:59:c9:45:c4:28:
a8:9a:f0:a9:32:8a:d0:6c:1f:b4:57:8b:98:1b:e4:6b:5b:2d:
c6:e2:d6:f8:ce:f2:05:4c:77:a6:8c:4f:00:09:a7:2d:30:e2:
a8:de:d4:1e:98:6e:18:a3:a6:11:08:ee:08:1e:8a:b5:5d:b1:
d5:0e:76:a6:84:f1:98:65:2e:ad:dc:22:56:5a:23:4e:b2:d6:
f4:d0:bd:9a:16:1a:9b:a0:0b:d3:6b:44:ce:96:75:12:c3:27:
23:91:86:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:56 2024 by rpki-client on console-fra.rpki-client.org