Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/BEM7v8sy0d0DxtUN503i2v9u-mU.roa
File: BEM7v8sy0d0DxtUN503i2v9u-mU.roa (raw, json)
Hash identifier: J/j6P17AdFsG93GzgUEWMG4G6/VKcdWxYbzClUNqwR8=
Subject key identifier: 04:43:3B:BF:CB:32:D1:DD:03:C6:D5:0D:E7:4D:E2:DA:FF:6E:FA:65
Certificate issuer: /CN=51afbc1462455e9869d48b257b18e23be77aa6c3
Certificate serial: 018CC5013BB6E33028624C0A57C97678FA88
Authority key identifier: 51:AF:BC:14:62:45:5E:98:69:D4:8B:25:7B:18:E2:3B:E7:7A:A6:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ua-8FGJFXphp1IslexjiO-d6psM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/BEM7v8sy0d0DxtUN503i2v9u-mU.roa
Signing time: Mon 01 Jan 2024 12:30:41 +0000
ROA not before: Mon 01 Jan 2024 12:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213241
IP address blocks: 185.185.230.0/24 maxlen: 24
185.39.9.0/24 maxlen: 24
87.238.226.0/24 maxlen: 24
94.139.34.0/23 maxlen: 24
94.139.38.0/24 maxlen: 24
2a13:1fc0::/48 maxlen: 48
2a13:1fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Apr 2024 11:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:3b:b6:e3:30:28:62:4c:0a:57:c9:76:78:fa:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51afbc1462455e9869d48b257b18e23be77aa6c3
Validity
Not Before: Jan 1 12:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04433bbfcb32d1dd03c6d50de74de2daff6efa65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:eb:36:ed:0d:71:46:a5:47:00:58:a4:db:f2:
bb:d3:e0:a8:a3:64:ac:71:9f:55:95:3b:4c:ca:fe:
8e:68:ff:54:ec:9d:af:0d:5d:85:cf:e5:27:69:cf:
98:a2:11:99:05:63:e5:e2:a4:1d:37:5b:cc:bf:87:
95:5a:77:da:1a:d9:32:b6:77:d7:ba:33:4f:64:59:
43:0f:51:0e:6b:e0:54:d5:57:db:89:d7:52:c5:bd:
b0:94:cd:a3:ea:bd:fa:af:e6:74:d2:aa:9a:2b:d1:
aa:59:bf:0e:43:ea:2b:09:76:3c:6c:c9:83:98:d7:
f1:e8:3f:45:fe:a9:19:a6:51:dd:99:bc:e2:09:d4:
6b:79:1c:af:a2:8f:0c:89:b3:8f:ed:6c:97:52:74:
69:b4:0c:91:fa:ec:57:0a:bd:a1:d1:7d:07:6d:34:
16:40:f4:e7:58:5f:8d:71:49:d9:a0:a9:4d:b0:ec:
dd:d5:4c:c5:bc:9b:02:49:71:96:5e:40:b9:17:8b:
98:1e:38:5e:cd:fe:df:5d:71:4e:aa:84:1f:8b:e3:
30:9b:b8:9e:bb:d1:8b:ac:b6:ac:aa:69:f6:ed:ab:
21:0c:9c:eb:5e:7e:a5:e8:5f:01:35:22:bb:06:5e:
9c:76:23:81:eb:71:44:e0:33:91:09:a7:b0:29:0b:
39:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:43:3B:BF:CB:32:D1:DD:03:C6:D5:0D:E7:4D:E2:DA:FF:6E:FA:65
X509v3 Authority Key Identifier:
keyid:51:AF:BC:14:62:45:5E:98:69:D4:8B:25:7B:18:E2:3B:E7:7A:A6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ua-8FGJFXphp1IslexjiO-d6psM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/BEM7v8sy0d0DxtUN503i2v9u-mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/70599d-c474-4123-a743-a201dfabdab1/1/Ua-8FGJFXphp1IslexjiO-d6psM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.238.226.0/24
94.139.34.0/23
94.139.38.0/24
185.39.9.0/24
185.185.230.0/24
IPv6:
2a13:1fc0::/47
Signature Algorithm: sha256WithRSAEncryption
56:2d:aa:97:67:3f:3c:ae:38:c4:0f:b9:c4:d9:c8:7e:c4:e4:
f6:8a:b3:dd:f0:02:6d:7f:45:d3:f3:87:0e:80:14:c6:75:48:
fd:e2:9b:2b:c2:b2:36:a1:62:76:53:2d:12:a4:26:d0:7f:7e:
62:2c:93:af:c6:5e:6f:7d:14:b6:32:a7:35:5b:8e:df:18:4a:
b9:97:ed:5e:34:bd:65:4a:88:a2:13:f9:72:db:7b:60:de:ee:
5d:04:b7:96:9e:82:cd:64:c9:2e:21:f1:25:6a:fe:13:8c:66:
2b:62:8d:d4:da:74:d1:40:8d:51:bb:04:6c:b6:49:d8:6b:37:
1c:a5:d6:f2:cb:cc:8c:55:4a:e1:85:cc:3e:5d:35:13:b9:2b:
4d:28:63:0f:31:cf:d2:f6:c9:98:53:75:1d:01:ec:9c:a5:5a:
df:1f:c3:95:e1:bc:bf:d8:53:aa:06:ab:63:3e:4d:57:91:5c:
f4:e7:10:3b:41:d2:75:2e:3a:c9:1d:ba:0c:6b:e0:6e:25:e7:
5c:ef:39:5c:75:62:c9:63:7c:1f:5a:ad:bb:c2:5f:4e:c0:a5:
72:c9:51:e0:dd:4d:a5:5e:35:02:96:3e:68:66:1f:70:55:5b:
1f:b5:53:87:f5:b3:f2:c4:0a:f9:9d:8b:50:a9:68:f4:f9:20:
b7:8a:fa:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:20 2024 by rpki-client on console-ams.rpki-client.org