Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AuMN2miQsxJzUD-Mp6pco6O5Sbs.roa
File: AuMN2miQsxJzUD-Mp6pco6O5Sbs.roa (raw, json)
Hash identifier: xmtM8zj2/UMPDGDp2aDF4tyJ8tne55RUVz5VsDtDu5c=
Subject key identifier: 02:E3:0D:DA:68:90:B3:12:73:50:3F:8C:A7:AA:5C:A3:A3:B9:49:BB
Certificate issuer: /CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Certificate serial: 018CC7274DC3FCF998EFAFAA1F80CD180A4C
Authority key identifier: E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AuMN2miQsxJzUD-Mp6pco6O5Sbs.roa
Signing time: Mon 01 Jan 2024 22:31:30 +0000
ROA not before: Mon 01 Jan 2024 22:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25054
IP address blocks: 81.90.192.0/20 maxlen: 24
185.94.36.0/22 maxlen: 24
212.101.32.0/19 maxlen: 24
130.193.96.0/21 maxlen: 24
2a02:1318::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 31 Jan 2024 03:38:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:4d:c3:fc:f9:98:ef:af:aa:1f:80:cd:18:0a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Validity
Not Before: Jan 1 22:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02e30dda6890b31273503f8ca7aa5ca3a3b949bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:4b:0c:d1:04:1d:3d:1c:27:31:a2:cd:67:
ea:87:b4:09:99:64:44:ae:16:2c:b2:7c:b9:d5:f9:
9b:0e:01:64:20:b0:4f:15:84:cc:62:2b:35:70:27:
48:27:ca:e5:95:56:2b:16:db:10:bf:6f:28:02:dd:
d3:40:e6:b6:d9:93:6b:a7:05:65:ec:53:81:64:b2:
57:96:8f:34:55:71:7c:cb:40:40:bf:f4:d3:9c:d2:
0f:54:04:7b:93:f9:b3:f9:0f:0d:d1:7f:38:85:eb:
af:12:4c:22:90:eb:c6:cb:c7:2a:7e:a2:0a:33:3f:
b5:99:7f:cb:85:02:fa:9a:8e:1a:89:a9:2b:bd:ac:
d2:2f:79:c0:63:25:9b:3e:09:8a:6c:1d:54:64:f2:
db:81:59:49:7b:2b:7d:2e:e1:be:cf:4d:e1:c3:b7:
39:55:71:45:89:da:e6:9b:84:0f:07:64:32:11:64:
99:51:ae:8a:b4:78:94:4b:4f:9f:0a:30:36:1e:2d:
48:64:92:82:61:b9:6b:52:08:e1:e9:4b:ac:c7:38:
95:ee:67:f4:88:df:7f:78:90:f5:9f:c0:cb:d6:d3:
18:d9:01:ac:08:4c:0f:e6:44:60:86:af:4b:d1:be:
72:d9:f2:66:7a:43:b9:48:63:65:f2:40:73:b0:4c:
18:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E3:0D:DA:68:90:B3:12:73:50:3F:8C:A7:AA:5C:A3:A3:B9:49:BB
X509v3 Authority Key Identifier:
keyid:E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AuMN2miQsxJzUD-Mp6pco6O5Sbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/458aboTAJ378tW2UKw615FZHESk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.192.0/20
130.193.96.0/21
185.94.36.0/22
212.101.32.0/19
IPv6:
2a02:1318::/32
Signature Algorithm: sha256WithRSAEncryption
ab:82:b4:32:a3:9f:7f:32:3b:6a:c6:da:f5:c4:eb:a2:1a:fd:
19:2a:91:06:85:70:66:04:e1:62:19:5b:f6:81:eb:92:b7:12:
fe:26:ca:86:fe:9b:a3:99:00:30:25:c1:62:8a:99:86:a4:31:
30:53:a2:1e:10:d7:95:a9:9f:41:d2:8f:d8:70:b0:9a:7f:7e:
76:b1:4f:fb:8b:66:49:e2:da:2e:20:2b:ac:27:40:6f:e6:d8:
09:c9:3c:24:49:9a:43:b7:7e:68:72:a7:b1:c3:72:32:a6:00:
fe:56:25:cc:05:bf:55:c8:28:14:a0:3c:18:85:44:ae:22:bd:
c4:ef:41:58:59:29:d8:f7:fb:8f:30:52:ad:71:f3:94:45:b3:
33:4f:00:72:98:0a:c1:be:70:73:08:7b:4a:bc:d7:6e:d5:e0:
d1:eb:fc:df:4a:55:13:7d:64:ee:d2:3c:d7:09:68:76:62:76:
27:fa:43:13:e4:9c:42:3a:fa:27:de:35:0b:50:c0:81:42:70:
79:63:ba:88:10:ed:77:22:e1:46:39:ce:8e:ba:fc:d2:0e:00:
01:6e:bb:f4:70:ce:f4:23:3c:00:87:f7:3b:46:63:bb:7f:07:
34:c3:7a:3e:9c:8f:6d:01:27:a6:df:0f:41:e5:7a:d2:35:5e:
46:49:56:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:28 2024 by rpki-client on console-fra.rpki-client.org