Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/ea1rMW2cHvpczu5zrkU_21Wt9Vs.roa
File: ea1rMW2cHvpczu5zrkU_21Wt9Vs.roa (raw, json)
Hash identifier: hEuszamA9HRnbODOpKWbw6VSqpu4/eTbcL/SpxaXu+k=
Subject key identifier: 79:AD:6B:31:6D:9C:1E:FA:5C:CE:EE:73:AE:45:3F:DB:55:AD:F5:5B
Certificate issuer: /CN=aceb99748999ab8e0218f7c8dbdcc5698d669d39
Certificate serial: 01856C9CA92335FA1B61CF2DB380B39572F7
Authority key identifier: AC:EB:99:74:89:99:AB:8E:02:18:F7:C8:DB:DC:C5:69:8D:66:9D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOuZdImZq44CGPfI29zFaY1mnTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/ea1rMW2cHvpczu5zrkU_21Wt9Vs.roa
Signing time: Sun 01 Jan 2023 09:14:44 +0000
ROA not before: Sun 01 Jan 2023 09:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204499
IP address blocks: 185.219.112.0/24 maxlen: 24
185.219.115.0/24 maxlen: 24
185.219.113.0/24 maxlen: 24
185.219.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 11:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:a9:23:35:fa:1b:61:cf:2d:b3:80:b3:95:72:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aceb99748999ab8e0218f7c8dbdcc5698d669d39
Validity
Not Before: Jan 1 09:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79ad6b316d9c1efa5cceee73ae453fdb55adf55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:aa:6a:2b:23:3e:dc:59:5c:aa:e2:3a:8d:
c6:00:2c:c2:dc:1b:78:18:a7:d5:af:9d:7b:6b:00:
bc:98:2b:17:4b:93:7c:5a:ff:de:f2:3f:67:ad:a9:
0c:bb:ee:18:a5:c2:91:dc:f2:59:58:e9:dc:c6:f5:
55:10:cb:de:d5:8a:aa:64:16:39:80:20:d3:e5:de:
14:2f:1e:8a:b7:d1:66:4a:9a:dd:2c:4d:08:71:b3:
b4:13:a1:39:d2:f2:8f:cb:71:92:e4:9d:1b:3b:f9:
cd:60:c5:90:b1:5a:a6:a7:2d:77:29:f5:7f:4d:34:
10:cc:67:75:3a:17:1e:c9:76:1a:02:4f:ff:0a:98:
f0:db:fc:45:fd:e8:a2:51:0c:ea:06:8b:9b:03:e3:
5d:d5:99:86:a2:3a:9c:6d:b2:cf:75:16:bc:f2:2e:
4d:6a:68:fa:14:04:99:bc:3c:a4:77:66:23:6c:0e:
d0:8d:b6:2d:2e:cb:69:c8:c3:59:9c:ff:67:5f:bb:
d8:f2:02:80:fa:f7:83:d0:54:85:ae:ec:4b:ef:85:
f7:c8:f4:d5:6e:42:3f:8d:94:69:30:fe:e3:4c:83:
11:d8:96:c1:44:85:34:77:3a:2d:dd:f9:3d:9b:e9:
f5:15:29:13:32:a8:c4:d3:bc:56:cc:b4:2d:09:54:
e8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AD:6B:31:6D:9C:1E:FA:5C:CE:EE:73:AE:45:3F:DB:55:AD:F5:5B
X509v3 Authority Key Identifier:
keyid:AC:EB:99:74:89:99:AB:8E:02:18:F7:C8:DB:DC:C5:69:8D:66:9D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOuZdImZq44CGPfI29zFaY1mnTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/ea1rMW2cHvpczu5zrkU_21Wt9Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/rOuZdImZq44CGPfI29zFaY1mnTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.112.0/22
Signature Algorithm: sha256WithRSAEncryption
43:d4:ca:45:48:53:10:66:61:19:7b:52:f2:6f:41:9e:04:ea:
2a:0d:49:6d:0d:e8:d0:75:d0:fe:23:c3:c9:86:e5:df:7b:5e:
8d:02:c1:a8:6f:12:31:f5:89:97:8e:cf:4d:c9:7a:3b:bc:e7:
a5:76:97:e4:a9:ad:7a:cb:fb:db:c5:7c:9b:d0:6c:e6:e7:10:
59:5a:fe:f9:86:fb:dd:2b:a2:d5:04:f2:6a:a6:2a:9b:3c:20:
ad:60:fd:0a:d1:27:ba:b6:16:a2:b2:7b:7c:f9:0b:50:e4:b1:
7a:bf:12:2d:8b:14:78:07:1e:47:ad:d6:0a:7b:e5:d9:52:3a:
d0:9c:36:94:3e:e4:13:04:79:53:2b:a3:bc:86:97:0b:4e:a6:
e9:3e:3f:09:56:cb:58:78:70:92:86:de:49:76:85:38:e9:ef:
e1:af:3a:2f:3d:c6:30:e4:de:a9:2b:8d:f1:bb:5c:b2:58:a4:
4b:3a:9d:50:41:f6:3c:2a:6e:0c:fa:9a:5c:52:b7:2a:18:7f:
b3:ee:b6:bf:c8:da:52:60:97:ae:de:35:75:ae:17:58:14:47:
ab:4c:e1:d0:45:b7:3d:d0:e4:82:53:f4:c7:5f:53:27:55:88:
c5:3f:e8:3b:cd:7b:40:7b:fd:54:52:a9:9b:fd:cb:07:24:fe:
9f:4e:e4:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org