Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/78VTqD_ZNl7px3nAD_mg_A6yZXk.roa
File: 78VTqD_ZNl7px3nAD_mg_A6yZXk.roa (raw, json)
Hash identifier: dDA9DnVhT7vynsyMYIXI3qRKEHtKnwVsPq117DaIyro=
Subject key identifier: EF:C5:53:A8:3F:D9:36:5E:E9:C7:79:C0:0F:F9:A0:FC:0E:B2:65:79
Certificate issuer: /CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Certificate serial: 018852DC3B0DC326963887C058079A629733
Authority key identifier: 65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/78VTqD_ZNl7px3nAD_mg_A6yZXk.roa
Signing time: Thu 25 May 2023 12:22:24 +0000
ROA not before: Thu 25 May 2023 12:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42049
IP address blocks: 185.134.192.0/22 maxlen: 22
185.134.192.0/23 maxlen: 23
185.134.194.0/23 maxlen: 23
188.126.0.0/19 maxlen: 19
188.126.0.0/21 maxlen: 21
188.126.0.0/20 maxlen: 20
188.126.8.0/21 maxlen: 21
188.126.16.0/21 maxlen: 21
188.126.16.0/20 maxlen: 20
188.126.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 25 May 2023 13:12:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:dc:3b:0d:c3:26:96:38:87:c0:58:07:9a:62:97:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Validity
Not Before: May 25 12:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efc553a83fd9365ee9c779c00ff9a0fc0eb26579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:95:b9:b1:07:f4:6c:9d:76:8c:79:b5:83:31:
91:2a:54:4a:3a:4f:04:8b:51:0e:db:bb:84:f7:f8:
1d:6c:42:55:1a:c5:52:d2:35:f5:08:f7:21:13:9f:
fd:96:a0:57:5c:32:c4:dc:98:d2:f9:05:bf:44:d1:
06:90:89:29:f0:58:f4:6d:85:d8:de:dd:49:15:57:
30:2e:7d:41:9e:e3:4a:17:de:97:ec:92:b9:15:b7:
7d:18:b7:7b:1b:cb:45:66:0b:1c:02:fc:11:85:98:
7b:e8:ab:af:4b:1e:f1:20:b4:46:dc:04:ff:bd:15:
76:e1:02:f9:82:1b:3b:dc:95:1f:2a:96:bb:62:ee:
c0:07:a3:f1:58:7f:28:cf:cb:2d:86:c5:06:b9:1b:
0d:a8:98:63:e6:f1:63:88:9f:53:43:33:7a:2b:f0:
71:2f:8f:ce:95:67:c4:a5:a3:43:73:69:fa:c5:c5:
69:c3:5c:91:db:9f:70:ac:00:d4:9e:0a:5d:74:61:
1e:a0:07:4c:66:6e:00:04:31:43:46:14:94:21:a0:
71:f3:ac:05:9e:f0:7d:e3:18:ae:1d:c4:0a:b4:7a:
ab:db:8a:8c:6b:fa:7a:ed:48:b7:2d:5a:82:78:15:
2e:9c:65:fb:45:6f:fc:fa:54:7e:99:17:30:05:3f:
67:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C5:53:A8:3F:D9:36:5E:E9:C7:79:C0:0F:F9:A0:FC:0E:B2:65:79
X509v3 Authority Key Identifier:
keyid:65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/78VTqD_ZNl7px3nAD_mg_A6yZXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ZeImvPSoMLL0SP1uqZdrFSCH3UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.192.0/22
188.126.0.0/19
Signature Algorithm: sha256WithRSAEncryption
33:85:5f:da:dd:fc:d7:e8:93:93:f7:4d:fb:e6:a8:41:f5:2e:
39:b4:34:e3:4f:82:35:cb:b9:85:df:98:65:69:36:23:c6:8c:
08:d2:3f:47:37:9f:1f:8f:9a:c2:90:c2:61:91:ef:1b:8b:42:
73:5a:03:f8:92:8b:31:b6:66:80:28:59:df:fa:5f:a5:ee:34:
af:ec:7b:bb:f2:79:02:c0:35:01:e5:d9:9c:70:e6:a8:fb:13:
e7:27:cf:a5:1f:f9:bb:e3:5a:56:69:99:e1:b7:57:9e:bf:97:
3e:a8:00:14:8b:c2:6b:5b:3b:ac:bc:a9:36:48:e2:f8:22:b1:
c6:06:31:84:59:72:16:44:b6:eb:1c:83:3d:24:87:c9:df:75:
10:84:b4:19:11:db:7f:0f:b6:10:15:fe:be:68:d3:3e:1c:99:
97:f8:56:ed:a5:e6:ce:c7:84:ae:20:db:fe:5a:15:90:54:85:
d1:8c:f1:a3:d5:02:30:a0:49:dc:d8:d4:18:8d:ca:2b:f7:4a:
6f:52:2e:17:2e:30:45:1e:91:25:84:ad:93:9c:ba:cc:ef:94:
c7:ab:c1:10:bb:cf:7d:16:d9:ec:c2:57:5f:05:4e:4c:30:90:
3b:67:fe:db:92:37:1d:11:98:46:f4:c7:35:11:28:90:8e:54:
6c:e0:33:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:53 2024 by rpki-client on console-fra.rpki-client.org