Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/v8S7VmOs5564R7Kg1Da0Mn1GNnc.roa
File: v8S7VmOs5564R7Kg1Da0Mn1GNnc.roa (raw, json)
Hash identifier: d2811hhUXIPRtYFg3DPqUefj6/Ff13TEGzFVnQueTJM=
Subject key identifier: BF:C4:BB:56:63:AC:E7:9E:B8:47:B2:A0:D4:36:B4:32:7D:46:36:77
Certificate issuer: /CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Certificate serial: 018673B3F2AFBBB11BEA7D9446BAEB11C4CC
Authority key identifier: 2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/v8S7VmOs5564R7Kg1Da0Mn1GNnc.roa
Signing time: Tue 21 Feb 2023 11:20:18 +0000
ROA not before: Tue 21 Feb 2023 11:20:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41720
IP address blocks: 185.242.181.0/24 maxlen: 24
185.242.180.0/24 maxlen: 24
185.242.183.0/24 maxlen: 24
185.242.180.0/22 maxlen: 22
185.242.182.0/24 maxlen: 24
2a0d:b280::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 29 Dec 2023 00:57:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:b3:f2:af:bb:b1:1b:ea:7d:94:46:ba:eb:11:c4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Validity
Not Before: Feb 21 11:20:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfc4bb5663ace79eb847b2a0d436b4327d463677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:40:d4:fb:ef:a5:b7:e4:6f:23:0a:d8:1b:d5:
33:89:69:bb:b2:eb:0b:18:98:91:e4:f4:a7:5b:66:
a7:99:a4:10:f9:27:f3:e0:a3:36:75:66:51:27:9f:
be:16:8b:09:1e:fe:9b:e9:77:fa:b1:e2:e4:4b:d2:
d9:21:e7:89:dd:f0:d7:7c:56:bc:21:2e:aa:4a:09:
2c:45:42:be:99:80:c6:36:42:d7:f9:99:ef:9b:6e:
04:f2:13:74:48:ed:43:b9:db:a2:8c:33:0a:e4:a8:
d6:3f:59:16:c7:ab:60:dd:ac:86:5a:28:e8:96:56:
4d:8b:40:e8:4d:eb:c4:1c:c1:e4:5a:37:fb:87:8b:
67:7b:ee:83:f4:28:e0:cd:cc:0f:4a:ec:6f:39:5e:
24:d9:cf:d8:1e:1b:bd:02:9e:18:3b:f4:19:41:cd:
c0:55:93:a8:7a:89:3b:cb:44:0c:67:fc:ed:6c:15:
fa:4a:09:43:2f:2a:0e:04:d9:bd:62:72:00:b9:96:
7b:f3:6f:26:1d:33:79:d2:33:7c:a6:70:05:0d:46:
eb:99:0f:fc:6d:da:32:6a:5a:ba:8e:a6:8e:bd:0a:
c8:0b:3d:1d:68:4e:86:bb:81:9a:03:5b:45:e4:21:
f9:9a:78:bd:2d:f5:e3:0a:29:28:77:e9:65:14:e6:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C4:BB:56:63:AC:E7:9E:B8:47:B2:A0:D4:36:B4:32:7D:46:36:77
X509v3 Authority Key Identifier:
keyid:2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/v8S7VmOs5564R7Kg1Da0Mn1GNnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/L8sw_X1uRJST7Hyw2feGAEWL4hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.180.0/22
IPv6:
2a0d:b280::/29
Signature Algorithm: sha256WithRSAEncryption
83:6b:35:91:6e:fe:ce:c5:d8:18:bf:ba:dd:d3:d7:c4:2a:26:
7a:48:02:14:a1:8e:b4:91:b5:1c:12:a3:ff:61:5a:7f:f3:3a:
e7:2b:a5:84:30:cc:3d:4d:24:3a:18:3d:63:6f:db:d7:4e:c5:
93:03:7b:fa:44:fa:c2:ec:f1:f4:43:ba:f3:72:7d:fc:4c:ee:
5a:78:f4:45:9b:d2:89:99:4a:bc:e1:86:59:27:5b:5c:c8:98:
87:0b:e0:ee:49:5a:79:94:6a:79:28:db:3f:cf:56:b6:12:5d:
1c:8b:0b:b7:42:d0:57:e8:a0:f0:45:43:40:6c:d1:9f:2e:28:
68:00:f8:26:a0:51:18:09:1d:dc:23:c3:04:70:d9:03:de:59:
c2:63:98:a5:56:bc:05:7b:3f:2f:19:91:a2:13:5d:97:04:77:
b4:7b:0f:52:6e:b4:38:11:64:20:7f:4c:52:fc:10:75:d9:ba:
65:52:7d:1c:8c:ab:ed:8f:9d:1e:ea:fb:0c:5f:dd:a8:17:97:
cc:1a:2e:98:56:4c:94:ed:39:73:39:55:b7:56:6f:25:50:41:
7b:b2:56:af:4d:46:ad:6f:58:36:fa:4c:52:c0:ef:ca:8e:32:
6a:92:eb:94:58:78:99:f0:78:56:16:6f:2e:66:0a:e4:a4:10:
35:b5:3a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:52 2024 by rpki-client on console-fra.rpki-client.org