Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/8f0180-2b5b-4419-ad36-f4b8ca37a1fb/1/EA2N5FS5dMCWH8SiOOvzMMWD0O0.roa
File: EA2N5FS5dMCWH8SiOOvzMMWD0O0.roa (raw, json)
Hash identifier: dVphenDHeh3yEH6tLhEPwMrsMwxfgzH1aGrod60RJZo=
Subject key identifier: 10:0D:8D:E4:54:B9:74:C0:96:1F:C4:A2:38:EB:F3:30:C5:83:D0:ED
Certificate issuer: /CN=fa81dc46cce39c16c24396f55e6263a669c7e769
Certificate serial: 0185736863AC569FB7E7D1DA1636D9F9CF43
Authority key identifier: FA:81:DC:46:CC:E3:9C:16:C2:43:96:F5:5E:62:63:A6:69:C7:E7:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-oHcRszjnBbCQ5b1XmJjpmnH52k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/8f0180-2b5b-4419-ad36-f4b8ca37a1fb/1/EA2N5FS5dMCWH8SiOOvzMMWD0O0.roa
Signing time: Mon 02 Jan 2023 16:54:59 +0000
ROA not before: Mon 02 Jan 2023 16:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47610
IP address blocks: 134.130.0.0/16 maxlen: 16
137.226.0.0/16 maxlen: 16
134.61.0.0/16 maxlen: 16
194.35.108.0/22 maxlen: 22
192.35.229.0/24 maxlen: 24
2a00:8a60::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:63:ac:56:9f:b7:e7:d1:da:16:36:d9:f9:cf:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa81dc46cce39c16c24396f55e6263a669c7e769
Validity
Not Before: Jan 2 16:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=100d8de454b974c0961fc4a238ebf330c583d0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e5:b4:07:0a:89:37:73:29:2a:ae:ad:74:dc:
35:a6:52:8a:19:d2:4f:7e:2b:44:af:b3:a4:70:6b:
4f:8a:b9:6d:ac:2b:e7:ec:39:16:a8:55:31:6f:a8:
8b:9b:60:f5:ec:7e:86:91:92:6b:c8:55:72:db:fd:
c4:bb:6c:d2:91:05:fe:30:5e:22:d7:19:05:b6:98:
e3:71:9d:f6:c0:ed:a9:1a:97:bf:4b:a3:ac:8d:24:
f1:a5:57:ed:6c:58:d9:fd:31:10:3d:d5:3c:3c:5e:
5c:e8:a6:1e:9e:88:06:cc:49:0f:55:b4:cc:2d:fe:
7b:8f:1b:af:77:df:6b:27:a2:f6:ba:47:fd:5d:53:
fc:9f:ee:50:77:67:c1:c3:f2:cc:ff:d6:cb:26:3a:
fb:fa:eb:2d:8b:1e:e3:18:66:19:8a:f1:24:01:d3:
13:37:c8:de:1f:88:8c:bc:c4:13:32:f1:ac:47:8b:
54:c3:35:4c:d6:c8:7a:34:58:42:1a:f9:aa:36:ab:
39:20:aa:ac:8f:e8:8f:cf:04:34:7b:ee:c9:88:fe:
60:06:8a:d0:e8:a6:6b:87:38:1d:d7:46:0a:a6:48:
bf:20:55:22:c7:07:cf:6c:f1:ae:9b:fd:8d:33:04:
e5:57:79:19:a7:1c:12:48:08:f7:b4:5f:c3:d4:51:
4e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0D:8D:E4:54:B9:74:C0:96:1F:C4:A2:38:EB:F3:30:C5:83:D0:ED
X509v3 Authority Key Identifier:
keyid:FA:81:DC:46:CC:E3:9C:16:C2:43:96:F5:5E:62:63:A6:69:C7:E7:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-oHcRszjnBbCQ5b1XmJjpmnH52k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8f0180-2b5b-4419-ad36-f4b8ca37a1fb/1/EA2N5FS5dMCWH8SiOOvzMMWD0O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8f0180-2b5b-4419-ad36-f4b8ca37a1fb/1/1-oHcRszjnBbCQ5b1XmJjpmnH52k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.61.0.0/16
134.130.0.0/16
137.226.0.0/16
192.35.229.0/24
194.35.108.0/22
IPv6:
2a00:8a60::/29
Signature Algorithm: sha256WithRSAEncryption
43:0b:c3:60:d4:9d:a5:cd:5c:70:d4:89:98:7c:c7:bf:39:69:
1b:16:00:f0:9c:a7:ec:7c:f3:d9:1e:21:7f:38:0e:60:74:c5:
f7:ba:8f:4a:cf:ca:fe:25:57:4a:ec:96:e3:06:7f:a7:b4:d4:
03:05:af:77:d8:52:56:e7:eb:79:27:4f:9c:df:51:9a:86:b5:
81:1c:74:ff:11:07:bf:ce:73:60:fc:72:0a:68:11:87:cc:12:
86:66:ca:53:cb:c8:13:e0:a0:d3:72:d8:0b:f7:e1:cf:da:2f:
7d:99:58:5f:fe:d4:09:6b:1a:76:93:11:a8:c0:5b:cf:a3:d4:
bb:e0:e0:88:4e:1b:2e:99:2b:1a:e1:de:5d:b3:96:07:ea:b9:
f3:96:f1:c4:52:8d:0e:33:6b:5f:6d:26:f9:0d:b0:e5:f3:23:
69:e3:d9:32:59:e9:8c:b3:3e:e3:98:72:cb:6b:0d:84:59:b3:
ba:ad:c4:63:cf:57:34:6c:f0:30:f6:59:2f:47:a2:39:bc:66:
3d:81:5b:d5:77:4f:e4:cd:d2:5b:eb:93:49:ca:ec:62:8b:e2:
99:65:ae:48:69:6e:0d:9d:32:4d:6a:6c:66:ca:78:1f:62:36:
f4:4f:ae:c3:f7:95:61:ca:8f:bc:88:e0:93:35:41:5b:eb:97:
48:c0:7d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:57 2024 by rpki-client on console-fra.rpki-client.org