Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/RxW18wUXpsOPYHWVkDqF8hDgD-Q.roa
File: RxW18wUXpsOPYHWVkDqF8hDgD-Q.roa (raw, json)
Hash identifier: DOVAkgfmTHL55dcIg2v3G7C2rXw7w5DrMXrdKnunY1o=
Subject key identifier: 47:15:B5:F3:05:17:A6:C3:8F:60:75:95:90:3A:85:F2:10:E0:0F:E4
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 01856F1D8A5ABBA288943DFC0C019B4E6E61
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/RxW18wUXpsOPYHWVkDqF8hDgD-Q.roa
Signing time: Sun 01 Jan 2023 20:54:45 +0000
ROA not before: Sun 01 Jan 2023 20:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7473
IP address blocks: 185.84.218.0/24 maxlen: 24
185.84.219.0/24 maxlen: 24
193.103.148.0/24 maxlen: 24
2a05:a884:de20::/48 maxlen: 48
2a05:a884:de10::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:8a:5a:bb:a2:88:94:3d:fc:0c:01:9b:4e:6e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Jan 1 20:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4715b5f30517a6c38f607595903a85f210e00fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:57:7b:38:67:23:76:af:d1:63:60:eb:1c:
f4:3a:02:71:c9:00:e3:49:41:e7:eb:2d:61:4d:be:
ba:0a:f4:40:78:c6:91:0b:b8:7f:0f:a8:e6:61:32:
9f:5a:75:db:2f:b7:92:3c:42:9a:44:77:55:eb:63:
71:b6:4f:01:58:25:9e:50:d9:fa:fe:f8:c7:6e:ea:
a7:14:5d:81:2a:2f:d6:75:e9:10:b6:82:23:03:d4:
8c:3e:11:0e:61:27:cf:ef:ea:83:21:cb:38:80:da:
76:51:cc:f8:87:5a:23:19:44:ea:5c:9a:99:c1:b0:
c8:c4:f1:93:d6:53:5e:c2:62:33:35:c8:4b:68:06:
15:d4:dd:42:b6:2f:57:32:40:10:0b:08:50:02:4d:
e5:1e:57:6b:fb:f5:f7:16:f0:c9:1c:83:e7:f6:fe:
ca:74:33:c4:39:ae:2d:14:bd:90:4b:8e:17:ce:4d:
71:51:d9:e4:b1:12:b8:3c:d5:03:68:3c:47:51:dc:
56:db:ba:d8:f6:ab:b7:c7:b0:2b:da:38:01:5e:ce:
05:93:2f:ce:75:a8:42:16:e8:61:a3:16:66:52:c2:
18:5a:b6:59:e1:eb:f9:02:09:3e:06:ee:da:69:04:
fb:de:37:72:f1:91:10:60:19:ca:80:ea:1a:76:fe:
f4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:15:B5:F3:05:17:A6:C3:8F:60:75:95:90:3A:85:F2:10:E0:0F:E4
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/RxW18wUXpsOPYHWVkDqF8hDgD-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.218.0/23
193.103.148.0/24
IPv6:
2a05:a884:de10::/48
2a05:a884:de20::/48
Signature Algorithm: sha256WithRSAEncryption
c4:d7:54:a9:c0:d2:e1:0a:1a:fd:b3:6b:8b:2c:f6:56:32:bc:
91:d9:9d:be:d2:2e:81:6b:34:e1:f6:5c:f8:4e:84:96:23:3c:
aa:0e:0f:b4:76:54:7e:85:64:64:c3:2b:87:1a:aa:ad:e0:c1:
f5:ef:07:8e:b0:65:5e:56:74:8f:3a:ed:41:a4:6b:3c:75:f4:
e0:f8:02:12:ec:74:58:a4:d7:58:0f:74:f0:45:72:df:b7:cf:
da:cb:6f:1e:2e:f1:76:97:1a:c9:49:f6:08:b5:22:14:ba:2b:
58:d4:33:e7:b8:b6:41:af:53:63:eb:6f:48:fd:d4:92:bd:69:
48:5c:d3:da:be:31:50:c6:12:39:90:11:ae:9f:c2:a9:ef:99:
45:74:dd:48:c0:cf:c8:2b:da:a3:6c:78:cd:04:77:fa:78:fd:
99:1e:b8:e9:94:c9:e3:c0:93:f9:61:38:16:53:cd:f9:36:24:
45:e0:ef:27:d7:e9:94:f2:b7:4a:3b:52:84:56:6b:42:bb:ea:
cd:70:ee:2a:1b:82:47:74:1f:63:ec:e3:24:cd:93:07:1e:39:
77:bc:f3:2a:77:8f:dd:09:11:49:1f:7d:87:a0:8d:87:67:2c:
3d:b2:ab:d8:88:8d:a9:53:e4:10:d3:6a:4b:0d:ae:60:50:5a:
a5:b5:cf:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:56 2024 by rpki-client on console-ams.rpki-client.org