Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/vYRNLe_tgvD5kQ1UzLxxg9HHWbE.roa
File: vYRNLe_tgvD5kQ1UzLxxg9HHWbE.roa (raw, json)
Hash identifier: xI9XhitKDHZH6R1RDDy7owY4jmMgwdGwvRGwE+N64/g=
Subject key identifier: BD:84:4D:2D:EF:ED:82:F0:F9:91:0D:54:CC:BC:71:83:D1:C7:59:B1
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 0185A20091270F36D84D1166F282B2EA4B31
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/vYRNLe_tgvD5kQ1UzLxxg9HHWbE.roa
Signing time: Wed 11 Jan 2023 18:03:44 +0000
ROA not before: Wed 11 Jan 2023 18:03:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60268
IP address blocks: 193.19.97.0/24 maxlen: 24
193.19.96.0/24 maxlen: 24
185.97.132.0/22 maxlen: 24
185.97.132.0/24 maxlen: 24
185.97.132.0/23 maxlen: 24
185.97.133.0/24 maxlen: 24
185.97.134.0/23 maxlen: 24
185.97.134.0/24 maxlen: 24
185.97.135.0/24 maxlen: 24
185.33.171.0/24 maxlen: 24
185.33.169.0/24 maxlen: 24
185.33.170.0/24 maxlen: 24
185.33.170.0/23 maxlen: 24
185.33.168.0/24 maxlen: 24
185.33.168.0/23 maxlen: 24
185.33.168.0/22 maxlen: 22
193.19.72.0/24 maxlen: 24
193.19.73.0/24 maxlen: 24
2a00:cee6::/32 maxlen: 48
2a00:cee0::/32 maxlen: 48
2a00:cee2::/32 maxlen: 48
2a00:cee5::/32 maxlen: 48
2a00:cee0::/29 maxlen: 29
2a00:cee3::/32 maxlen: 48
2a00:cee1::/32 maxlen: 48
2a00:cee4::/32 maxlen: 48
Validation: Failed, certificate revoked on Sun 15 Jan 2023 16:49:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a2:00:91:27:0f:36:d8:4d:11:66:f2:82:b2:ea:4b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Jan 11 18:03:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd844d2defed82f0f9910d54ccbc7183d1c759b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:3b:20:88:df:5f:5a:12:83:02:6d:28:ef:
ad:92:a9:c7:bd:ac:7d:b2:67:51:ad:8b:0b:78:54:
4b:1b:8a:f4:51:1d:1b:ba:98:b3:ae:33:c3:d6:f2:
43:58:27:8e:d3:1f:c5:09:75:83:4b:e4:7e:f3:80:
c3:c7:53:b2:75:7f:0f:84:23:f4:93:01:a5:8f:95:
41:07:e5:14:83:52:e0:e7:70:7c:22:0b:85:2d:fd:
40:20:90:a5:92:e1:e3:c9:01:4f:74:a6:22:74:9d:
60:1b:8f:f6:8c:8e:af:6a:1f:77:4a:11:37:34:1b:
c0:25:57:e7:59:5a:35:5d:dc:3f:e9:fc:f9:2a:7c:
16:3e:e7:32:71:04:8f:cc:31:65:ab:5f:bd:8a:e1:
76:4a:0c:eb:ee:32:99:51:84:86:24:4e:53:f5:99:
ba:00:9e:03:cf:a9:cd:cc:21:ec:41:cd:8a:f7:ca:
c9:e6:30:9d:87:9b:3d:78:88:f7:1f:d4:45:19:4f:
33:3c:fe:f7:89:29:eb:cb:c7:ab:d8:a2:81:04:35:
9e:3d:8c:2e:38:00:99:7f:d0:d5:42:c9:4c:5a:47:
9c:76:c8:f6:4d:41:49:9b:61:8c:41:9e:34:26:25:
7a:50:22:4a:33:77:81:58:f4:d6:53:98:91:80:f2:
ac:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:84:4D:2D:EF:ED:82:F0:F9:91:0D:54:CC:BC:71:83:D1:C7:59:B1
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/vYRNLe_tgvD5kQ1UzLxxg9HHWbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.168.0/22
185.97.132.0/22
193.19.72.0/23
193.19.96.0/23
IPv6:
2a00:cee0::/29
Signature Algorithm: sha256WithRSAEncryption
25:b8:e9:85:77:4c:aa:8e:27:15:f5:b7:d9:83:ab:dd:50:8e:
1c:1f:07:ee:22:47:5b:c9:2e:45:bc:03:5d:58:1a:80:fb:b1:
cb:11:78:93:24:af:a2:a4:0f:5b:14:a3:73:63:24:c0:03:49:
4f:f8:7b:ba:fd:a1:64:4c:bb:c3:9a:ac:9c:7d:c2:7d:e3:28:
03:6c:e2:33:3b:32:db:80:3e:ac:42:10:fa:c3:48:4d:22:9a:
fe:11:d1:38:51:8c:8c:97:4a:70:1c:fb:c4:3b:62:17:46:42:
70:12:f4:e6:58:c4:96:f2:d0:20:0f:a8:a6:5c:e9:53:83:d5:
ca:6c:7b:82:b1:2e:9c:02:96:66:fd:62:c2:cb:03:36:3c:5e:
9e:f3:de:23:23:f7:84:b8:1e:f6:0f:9f:72:40:38:ca:8a:bb:
9c:9f:5c:d9:5f:37:fa:61:5e:6c:b5:f9:a8:a1:9b:e3:d8:85:
11:ec:13:38:54:d1:74:02:9f:dc:dd:e3:04:d9:30:6a:af:1b:
5f:c8:e7:70:e8:e7:e1:10:ee:93:44:cb:2e:52:b7:dc:53:22:
6f:88:bb:b2:b1:ae:d7:c5:06:fc:88:e9:da:b6:7b:40:92:e7:
2b:8a:4c:06:8f:1d:70:6f:c2:06:1f:7c:34:0c:5e:22:1f:83:
14:2e:1d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:37 2024 by rpki-client on console-ams.rpki-client.org