Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/pRFxmFsCewQ7uVzn2qVj6qVT94k.roa
File: pRFxmFsCewQ7uVzn2qVj6qVT94k.roa (raw, json)
Hash identifier: bVE9LlrKH7i3nUUAhJD8yqF94GPV/J0T4KU2+vMHT7c=
Subject key identifier: A5:11:71:98:5B:02:7B:04:3B:B9:5C:E7:DA:A5:63:EA:A5:53:F7:89
Certificate issuer: /CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Certificate serial: 01856C1CA6DB691710939B142E718DEF8D9D
Authority key identifier: A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/pRFxmFsCewQ7uVzn2qVj6qVT94k.roa
Signing time: Sun 01 Jan 2023 06:54:55 +0000
ROA not before: Sun 01 Jan 2023 06:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 185.9.156.0/24 maxlen: 24
185.9.157.0/24 maxlen: 24
185.9.158.0/24 maxlen: 24
185.118.142.0/24 maxlen: 24
178.20.224.0/24 maxlen: 24
185.118.143.0/24 maxlen: 24
178.20.225.0/24 maxlen: 24
178.20.226.0/24 maxlen: 24
185.118.140.0/24 maxlen: 24
178.20.229.0/24 maxlen: 24
178.20.230.0/24 maxlen: 24
178.20.231.0/24 maxlen: 24
178.20.227.0/24 maxlen: 24
178.20.228.0/24 maxlen: 24
37.123.96.0/24 maxlen: 24
37.123.97.0/24 maxlen: 24
37.123.98.0/24 maxlen: 24
37.123.99.0/24 maxlen: 24
37.123.100.0/24 maxlen: 24
37.123.101.0/24 maxlen: 24
37.123.102.0/24 maxlen: 24
37.123.103.0/24 maxlen: 24
2a00:9bc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 23 Apr 2023 07:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:a6:db:69:17:10:93:9b:14:2e:71:8d:ef:8d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Validity
Not Before: Jan 1 06:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a51171985b027b043bb95ce7daa563eaa553f789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:b2:08:b0:51:db:0e:ff:86:06:11:88:ff:
93:c1:c3:1a:09:7b:48:98:38:cb:8f:1f:25:01:b2:
57:78:12:61:de:36:45:28:8e:c5:c5:55:67:42:cf:
79:3d:38:fb:44:51:c3:12:de:b3:fb:12:1e:bf:c3:
36:cc:28:2f:d5:57:e8:c4:9d:73:2c:a8:a5:ee:6f:
d1:aa:52:b2:3e:45:d8:0e:ee:ef:6c:60:64:7a:e6:
5b:a3:4b:41:ad:b7:20:4d:da:30:50:a7:dc:6b:58:
c4:03:3b:02:76:17:09:c0:3b:30:f9:7a:78:b1:af:
b9:6d:45:37:98:9f:c0:0c:48:7e:8b:7a:a4:51:32:
11:aa:09:a2:3e:a2:31:a0:41:9a:50:fc:3b:3f:b8:
38:f2:9e:8d:2e:3c:c0:e2:c7:3c:63:96:79:ec:0a:
70:e2:2e:4c:dd:7d:c1:21:15:c8:ef:bd:09:bb:c3:
5b:d6:fc:cb:c4:d6:b1:eb:c6:fd:9d:e7:e8:b3:46:
b4:a6:56:4d:c4:91:27:34:b1:b2:42:c4:62:40:4f:
fd:2f:6a:23:aa:7c:b5:9e:5d:81:a5:06:bf:6d:f7:
30:67:a3:bb:ea:30:0a:ae:79:97:6a:38:d2:0e:af:
07:95:a1:19:59:35:ca:59:62:ae:27:4d:1e:c3:f2:
53:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:11:71:98:5B:02:7B:04:3B:B9:5C:E7:DA:A5:63:EA:A5:53:F7:89
X509v3 Authority Key Identifier:
keyid:A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/pRFxmFsCewQ7uVzn2qVj6qVT94k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/p72yx7M0uUvNQziPIfggktts_Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.96.0/21
178.20.224.0/21
185.9.156.0-185.9.158.255
185.118.140.0/24
185.118.142.0/23
IPv6:
2a00:9bc0::/32
Signature Algorithm: sha256WithRSAEncryption
82:60:e1:24:16:c7:c0:01:ff:68:06:a6:4f:cb:5c:fb:7d:c1:
2e:9c:ad:9d:03:61:f8:6b:ba:2b:6c:e1:b7:5c:b9:9f:7e:f0:
ce:18:07:36:97:5b:01:0f:61:44:22:43:18:2d:9f:d2:74:0e:
19:8f:11:29:22:e8:9c:ec:f1:8d:1d:16:4e:a3:9b:6c:c8:65:
29:97:c0:7d:2b:39:0f:f8:fc:f1:01:dd:aa:eb:9a:71:8c:57:
83:17:1c:0b:45:59:f6:da:19:08:4a:e6:e6:e4:21:29:98:de:
cf:95:27:c3:92:ba:6e:f7:1f:a4:38:c2:31:09:a8:e6:75:77:
4f:f7:39:1a:0d:8c:c9:21:ab:76:dd:7e:f9:70:5a:da:0c:c1:
28:8f:01:27:c7:94:b8:29:91:8c:12:a4:29:bb:44:c6:11:81:
64:0f:7e:45:f7:e9:ef:41:3d:03:0e:07:84:31:c4:06:1b:89:
0d:9c:41:10:ad:07:d9:2a:37:73:51:27:c9:7f:47:eb:4a:82:
b1:29:6d:a1:69:a8:09:2e:58:50:6a:5f:23:99:86:0b:94:52:
df:79:95:26:eb:03:fa:8b:08:7d:92:13:e2:ef:27:25:34:d3:
04:05:94:86:d9:d9:76:5d:12:d3:f3:f0:19:31:ab:38:d1:96:
c5:e1:78:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:24 2024 by rpki-client on console-ams.rpki-client.org