Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/rnmCGrxKBIdtcO_194upMIYn0pQ.roa
File: rnmCGrxKBIdtcO_194upMIYn0pQ.roa (raw, json)
Hash identifier: +//WMUK9gRV6pd1iyfANsoUluo9y6tyEIc7UHrCSVvQ=
Subject key identifier: AE:79:82:1A:BC:4A:04:87:6D:70:EF:F5:F7:8B:A9:30:86:27:D2:94
Certificate issuer: /CN=72493d60b50427dd4316ed9505ad099eb5ac2e34
Certificate serial: 01857169C37212C900845EF404DA9105115F
Authority key identifier: 72:49:3D:60:B5:04:27:DD:43:16:ED:95:05:AD:09:9E:B5:AC:2E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/rnmCGrxKBIdtcO_194upMIYn0pQ.roa
Signing time: Mon 02 Jan 2023 07:37:14 +0000
ROA not before: Mon 02 Jan 2023 07:37:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203132
IP address blocks: 185.142.184.0/24 maxlen: 24
185.142.185.0/24 maxlen: 24
185.142.186.0/24 maxlen: 24
2a07:2f00:1337::/48 maxlen: 48
2a07:2f00:dead::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c3:72:12:c9:00:84:5e:f4:04:da:91:05:11:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72493d60b50427dd4316ed9505ad099eb5ac2e34
Validity
Not Before: Jan 2 07:37:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae79821abc4a04876d70eff5f78ba9308627d294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b0:c9:3f:98:95:b6:6b:d0:3a:32:8d:d4:62:
ca:f3:7f:32:0c:c1:5a:2d:8d:7a:ff:d6:2a:26:9e:
10:97:de:8a:99:97:bb:5e:46:34:e3:45:55:43:87:
87:87:d6:38:a6:e0:3b:7c:8a:a9:34:f6:d8:99:a4:
c4:b5:84:f7:c6:e4:ce:cc:9b:63:7a:6a:97:2d:8b:
38:63:13:05:d7:04:58:69:dc:80:1e:88:07:1a:15:
46:52:09:d2:70:d9:96:7d:2a:fa:a2:99:67:0f:e6:
36:d2:c8:d8:e0:c9:c9:5e:1b:9d:dd:82:e1:bd:ec:
90:a5:33:31:b2:bc:2c:d8:c5:7d:f1:83:31:4c:00:
7e:3e:d6:0a:b4:7f:a6:76:5c:32:dc:2d:83:6c:e1:
b0:dc:f6:82:e9:82:b3:69:04:dd:c7:4f:b1:4c:26:
17:f0:df:84:5b:c5:b1:e6:dd:08:fd:9e:0d:ad:69:
29:af:26:e3:5f:83:7a:6a:3a:79:7a:7a:a8:9b:28:
d7:75:e7:dd:45:f7:96:da:b5:6c:ba:08:7a:c4:12:
4a:a1:95:b6:6c:0e:df:25:e1:7d:3b:8a:75:32:31:
9a:ba:df:70:56:a1:29:1c:90:e7:7e:84:9f:fd:64:
46:a4:ea:44:ac:9d:36:bd:92:f8:51:35:be:d6:dd:
e6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:79:82:1A:BC:4A:04:87:6D:70:EF:F5:F7:8B:A9:30:86:27:D2:94
X509v3 Authority Key Identifier:
keyid:72:49:3D:60:B5:04:27:DD:43:16:ED:95:05:AD:09:9E:B5:AC:2E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/rnmCGrxKBIdtcO_194upMIYn0pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/71a349-baf4-47b3-a9ed-c6730c8e46aa/1/ckk9YLUEJ91DFu2VBa0JnrWsLjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.184.0-185.142.186.255
IPv6:
2a07:2f00:1337::/48
2a07:2f00:dead::/48
Signature Algorithm: sha256WithRSAEncryption
7e:80:1e:ac:72:cd:bf:65:48:52:2a:38:a5:3e:4f:29:93:b2:
04:f7:67:89:4b:e0:08:2d:ab:e6:cf:7f:9f:e6:87:62:67:d7:
04:07:16:93:a0:1a:b7:ab:b4:c6:b4:e5:7d:78:c9:1f:71:cd:
9b:5c:88:89:a0:11:01:3b:68:14:e1:2c:2f:b9:ea:34:88:aa:
0e:23:86:74:3a:b6:4b:20:d2:cd:88:15:90:8c:af:4b:d0:ed:
e0:85:ac:0a:33:50:b8:ac:06:c0:09:a8:49:40:8c:1c:67:34:
92:af:6d:58:f4:b4:3f:84:21:d2:fb:65:b3:ed:40:85:e7:72:
3b:c2:9d:c0:ca:6b:5b:a9:4f:2b:34:8b:67:cd:66:2e:31:6f:
bf:fd:97:d5:8d:40:fd:f3:d2:31:40:ec:b1:4e:bd:94:af:2b:
f6:72:d6:a9:75:04:30:af:1f:1c:9b:c9:a3:ef:b9:38:9d:c4:
01:50:f6:9b:c6:11:24:a5:ce:28:5c:f9:f6:0b:f5:25:bb:ea:
b2:2f:77:89:51:54:aa:9a:ed:e7:2d:19:c6:12:4b:e7:82:e1:
67:88:47:68:76:1f:e7:9e:e7:35:5e:2a:32:48:6f:6d:eb:1b:
0e:72:0c:55:4d:62:93:ca:a3:55:5b:c8:bf:3b:bd:06:7f:0e:
22:1d:82:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:40 2024 by rpki-client on console-fra.rpki-client.org