Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/E8OdbhDZ-XcpGG4JeELAU07jbDs.roa
File: E8OdbhDZ-XcpGG4JeELAU07jbDs.roa (raw, json)
Hash identifier: l7K24/kdUTbPPvAMnJ8JPMQ73ZE1iKCWp6fi+1rCeZE=
Subject key identifier: 13:C3:9D:6E:10:D9:F9:77:29:18:6E:09:78:42:C0:53:4E:E3:6C:3B
Certificate issuer: /CN=f49ba99114ebdabd6e4cbd36f6cd475b33cf1386
Certificate serial: 0188291A1149A81BA3FAD11918EE205ED981
Authority key identifier: F4:9B:A9:91:14:EB:DA:BD:6E:4C:BD:36:F6:CD:47:5B:33:CF:13:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9JupkRTr2r1uTL029s1HWzPPE4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/E8OdbhDZ-XcpGG4JeELAU07jbDs.roa
Signing time: Wed 17 May 2023 09:45:54 +0000
ROA not before: Wed 17 May 2023 09:45:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50875
IP address blocks: 185.86.245.0/24 maxlen: 24
185.86.246.0/24 maxlen: 24
185.86.244.0/22 maxlen: 22
185.86.244.0/24 maxlen: 24
185.86.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:1a:11:49:a8:1b:a3:fa:d1:19:18:ee:20:5e:d9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f49ba99114ebdabd6e4cbd36f6cd475b33cf1386
Validity
Not Before: May 17 09:45:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13c39d6e10d9f97729186e097842c0534ee36c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:67:99:a4:d2:17:64:f6:97:7a:23:8e:ee:
40:80:5d:18:78:63:7c:74:15:e2:68:a4:5d:31:87:
3e:89:55:ad:56:73:ff:6a:1e:b9:c1:aa:41:05:0e:
d3:69:51:81:a5:ad:18:b1:d4:55:ff:cd:33:71:b6:
a6:57:1e:ad:a4:ac:ec:91:26:72:4b:e6:0a:70:8b:
31:6c:c4:57:54:06:d9:75:d6:43:a2:f0:37:f0:08:
98:2b:bd:be:6e:31:33:4d:17:9e:94:6a:7e:2e:9f:
a9:94:eb:dc:7f:1c:5e:b9:87:97:5e:7e:49:be:fb:
0b:c0:96:03:29:bf:6c:8b:84:bd:71:29:00:ff:cd:
84:3a:bc:15:07:6c:99:de:94:08:b8:99:02:b7:29:
42:24:3e:1c:df:38:a3:17:cc:34:63:3d:49:5b:dd:
d4:3e:a3:f4:50:31:ef:da:30:f4:39:ec:df:81:6e:
7c:64:00:40:6e:f3:78:b7:76:82:77:e1:38:0a:db:
7b:01:eb:1e:ee:76:2e:3b:60:27:8a:63:3a:8f:84:
f1:2c:eb:3f:45:05:db:7a:d0:f5:b8:1a:d1:f1:e3:
08:cd:0a:26:9d:a1:6d:60:b2:a9:1f:67:2d:97:78:
5c:44:c7:5e:08:df:bc:34:74:6c:b8:32:53:2a:34:
15:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C3:9D:6E:10:D9:F9:77:29:18:6E:09:78:42:C0:53:4E:E3:6C:3B
X509v3 Authority Key Identifier:
keyid:F4:9B:A9:91:14:EB:DA:BD:6E:4C:BD:36:F6:CD:47:5B:33:CF:13:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9JupkRTr2r1uTL029s1HWzPPE4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/E8OdbhDZ-XcpGG4JeELAU07jbDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/9JupkRTr2r1uTL029s1HWzPPE4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:15:8e:21:91:e5:35:7a:3f:3a:5f:e2:d8:b3:e3:3f:87:8a:
9c:90:45:1b:ae:85:4d:77:e4:c5:2c:4c:a4:4a:4a:ab:26:23:
e9:91:a2:76:88:da:86:6e:32:5d:ad:88:c3:4e:db:88:5c:02:
c2:7c:52:12:e0:2b:ee:b2:7a:89:33:a5:d3:5d:19:8d:97:0a:
f4:89:63:3f:45:64:88:5e:82:20:1f:8f:42:20:6f:6b:88:0e:
b9:1f:d7:f5:49:9f:88:e3:df:68:cd:6d:d0:19:3f:1b:1d:5e:
b7:cc:d9:6a:74:98:53:b9:2c:68:30:b3:e4:be:ef:10:3a:51:
5b:a5:cd:de:24:36:66:76:6c:09:3c:bc:42:e8:03:e8:7a:3f:
b6:f3:e1:78:29:27:fb:70:00:86:54:b0:64:f6:39:ad:99:f7:
71:90:2d:d3:57:a1:2b:58:d4:3f:86:7c:1c:88:83:44:6b:3e:
c6:07:03:5c:15:e5:95:e9:b7:71:e9:3f:ef:7e:cb:90:3f:d8:
79:ff:b7:b8:e3:56:bd:1b:d0:f6:82:ac:16:44:bc:3d:dc:32:
66:06:a8:aa:51:75:bf:99:20:06:4e:57:9e:3c:de:a8:69:ae:
7f:dd:89:90:3c:cd:6d:07:e4:64:40:ae:ec:66:15:ad:60:03:
cd:fd:33:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:13 2024 by rpki-client on console-ams.rpki-client.org