Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/EKLjv04M1XojsajEDV-Qo3t6gjw.roa
File: EKLjv04M1XojsajEDV-Qo3t6gjw.roa (raw, json)
Hash identifier: 1sdSzvfT/ccYzaoM7Myth6IQa+0bN9UwhNnWgshjM0s=
Subject key identifier: 10:A2:E3:BF:4E:0C:D5:7A:23:B1:A8:C4:0D:5F:90:A3:7B:7A:82:3C
Certificate issuer: /CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Certificate serial: 0189D8EE3BECC361B417BA3C8EEDC6F0EDCC
Authority key identifier: 4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/EKLjv04M1XojsajEDV-Qo3t6gjw.roa
Signing time: Wed 09 Aug 2023 06:13:58 +0000
ROA not before: Wed 09 Aug 2023 06:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200414
IP address blocks: 194.29.180.0/23 maxlen: 23
185.101.190.0/23 maxlen: 23
195.110.50.0/24 maxlen: 24
185.11.108.0/23 maxlen: 23
178.219.131.0/24 maxlen: 24
178.219.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 07:14:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d8:ee:3b:ec:c3:61:b4:17:ba:3c:8e:ed:c6:f0:ed:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Validity
Not Before: Aug 9 06:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10a2e3bf4e0cd57a23b1a8c40d5f90a37b7a823c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1a:d0:d8:18:28:fa:1d:8d:3c:6e:06:ac:ba:
34:c1:5d:a7:e0:d6:9b:04:ac:18:8d:e6:9e:23:1d:
74:d7:76:a2:1d:46:1c:04:95:15:ee:6b:d6:81:1e:
58:11:bf:c7:da:3e:d5:08:9c:cc:83:96:a4:40:d0:
53:81:6e:a8:4e:c4:d2:18:61:09:a2:a5:e5:88:cf:
e6:01:e2:ec:ed:41:c0:bb:85:42:05:11:1e:e7:4b:
6a:f7:5b:9b:ca:03:ae:f8:af:4c:5a:0f:9f:c6:a6:
73:1e:61:1e:5a:24:6b:ae:78:4b:6a:d2:97:5e:e5:
16:6c:d2:c0:31:ad:f3:3d:b9:f0:97:c5:da:ab:35:
f4:5b:93:45:23:ba:59:bb:af:0d:29:8a:81:ec:23:
3b:a2:e1:cc:b8:38:db:16:41:79:e2:00:a8:14:1e:
bc:f5:27:ed:d9:bd:84:3c:2b:85:b5:d8:5f:1a:ec:
21:d1:ba:4b:74:d9:b5:1c:23:ee:6a:d1:ba:f8:16:
17:68:7b:13:a1:49:bd:02:33:9e:e1:0f:a9:79:ae:
7e:05:26:99:9c:18:29:36:a9:98:11:51:45:06:37:
be:b5:0a:30:75:ac:f8:63:b5:a4:6e:f7:c4:ed:00:
74:55:b0:d4:07:8e:93:da:6f:e3:c7:a3:80:6b:e8:
7b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A2:E3:BF:4E:0C:D5:7A:23:B1:A8:C4:0D:5F:90:A3:7B:7A:82:3C
X509v3 Authority Key Identifier:
keyid:4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/EKLjv04M1XojsajEDV-Qo3t6gjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.128.0/24
178.219.131.0/24
185.11.108.0/23
185.101.190.0/23
194.29.180.0/23
195.110.50.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b1:6d:08:4a:bd:a6:b4:d7:3b:79:5d:43:06:89:56:1a:5d:
d8:18:93:de:61:6e:f1:1c:db:96:e5:38:28:02:18:be:00:ca:
6e:aa:b1:2d:4c:6b:81:1d:d1:f0:98:d6:ff:69:a3:aa:43:63:
98:65:88:d1:12:d1:7d:3c:14:48:28:35:71:ff:29:37:51:8a:
cb:7f:f7:48:99:b3:b2:e9:f6:00:c9:e6:b9:d9:6f:da:a5:91:
10:3e:d7:0d:ca:5f:03:17:86:81:83:bb:9c:c6:5f:be:bd:5b:
9a:84:50:e0:b1:8f:e8:3f:c7:24:1a:74:ed:91:da:95:6f:51:
b9:82:65:75:53:71:0d:b6:e0:26:7b:37:7d:0f:03:46:62:f7:
8e:1c:25:20:8a:3b:a3:49:9c:66:3a:7e:be:f7:6c:bd:af:68:
3c:1c:d1:27:67:3b:4b:69:fd:31:f5:53:9e:6e:99:fb:f7:c3:
5c:fd:0f:d9:91:60:ab:03:c0:8d:4f:d5:f8:4c:f1:38:51:0b:
17:69:90:08:7b:47:2b:8d:06:e9:78:99:cc:8b:fe:4b:03:4c:
f6:43:3d:6e:e7:f3:fa:67:2a:d3:8a:f6:ba:fc:ee:0b:e9:ab:
71:12:94:b0:c0:3a:f5:27:3b:fb:e6:28:6f:d0:c8:0f:fd:a3:
b9:1a:69:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:59 2024 by rpki-client on console-ams.rpki-client.org