Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/7WuJNIy-EqdG4RCcefzye7rOpKc.roa
File: 7WuJNIy-EqdG4RCcefzye7rOpKc.roa (raw, json)
Hash identifier: hYjWSwEUJFOALm5MtzjiA8uQF8YUhXb2O5OiELJebcc=
Subject key identifier: ED:6B:89:34:8C:BE:12:A7:46:E1:10:9C:79:FC:F2:7B:BA:CE:A4:A7
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018CC424F4B13125C2932D23F5264F4406F7
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/7WuJNIy-EqdG4RCcefzye7rOpKc.roa
Signing time: Mon 01 Jan 2024 08:30:05 +0000
ROA not before: Mon 01 Jan 2024 08:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 185.254.29.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
185.141.34.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
93.190.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Oct 2024 19:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:f4:b1:31:25:c2:93:2d:23:f5:26:4f:44:06:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 08:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed6b89348cbe12a746e1109c79fcf27bbacea4a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:9f:23:f6:b4:e9:fc:3e:17:be:d3:5a:47:
59:70:07:ec:29:d0:84:55:c1:99:3e:6a:c4:8c:46:
76:a3:52:59:7c:b6:a5:d7:de:0a:59:f3:19:d9:f5:
2b:c0:68:ff:e1:ed:a6:7f:07:32:1d:54:9a:bc:27:
ea:1e:9a:64:a0:7a:d1:21:59:fb:79:7a:65:b5:c8:
3d:5f:99:b3:5e:85:0e:a8:67:1b:30:a0:45:34:ee:
83:b7:4e:cf:04:7e:fc:ad:fb:56:af:06:5e:0c:7f:
57:e0:ec:64:34:66:03:37:d6:db:bd:9d:1d:ad:2e:
77:5f:a4:43:da:9c:b8:0c:b8:69:ec:28:6d:16:5b:
97:26:18:50:e7:ca:dc:5b:33:e4:74:57:62:63:ac:
14:02:12:cf:48:8c:eb:52:8e:69:04:2d:85:c0:ec:
40:db:ab:e7:fa:53:f9:b4:22:c5:e5:6d:46:ed:3d:
53:b1:16:7d:5a:96:48:01:be:9b:68:a6:0a:0f:a1:
be:dd:46:37:dd:e1:2c:61:14:68:e3:bd:89:62:95:
10:5a:b8:83:d5:5d:9f:d8:8b:67:e1:e1:d5:d6:e5:
ef:3f:f4:bb:59:d1:1d:dd:be:a4:0a:1e:3c:6c:68:
eb:f0:4f:3b:71:a1:43:41:22:4f:66:b7:83:9b:ec:
0a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:6B:89:34:8C:BE:12:A7:46:E1:10:9C:79:FC:F2:7B:BA:CE:A4:A7
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/7WuJNIy-EqdG4RCcefzye7rOpKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.13.0/24
185.98.61.0/24
185.141.34.0/24
185.185.232.0/24
185.243.182.0/24
185.254.29.0/24
193.160.142.0/24
193.223.104.0/23
194.62.53.0/24
194.62.55.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:9a:c3:93:ce:2f:7b:c6:c6:10:3d:5e:e9:3e:73:89:3d:86:
fa:7e:10:26:84:ea:fa:d9:2a:c7:c4:dd:c7:04:81:7b:15:79:
84:cb:89:74:3b:56:86:29:0e:da:e0:51:c2:4b:4a:d1:7d:bb:
1e:2d:85:00:bf:e5:4a:50:69:8e:96:c5:e6:5d:a7:71:b1:f3:
d6:29:95:74:04:f8:00:83:40:c9:6f:1a:f0:67:16:54:89:11:
19:5d:80:4e:63:f4:a0:bc:09:9d:75:dc:94:0e:69:42:d3:2f:
92:4f:08:0b:a1:63:b0:23:8b:25:89:4d:d3:c8:b1:c9:ef:c6:
ff:18:87:20:6b:5e:1f:2e:0f:92:e2:7e:31:cf:db:69:ba:2b:
01:2e:ca:17:59:e6:3b:72:72:98:4b:04:17:be:ae:03:2d:31:
bb:fd:04:93:ab:0f:fc:38:21:61:de:4f:22:dd:aa:0a:95:c0:
11:d3:de:9f:d1:25:a3:77:a4:85:81:03:1e:8c:00:3f:c8:c1:
58:5f:4e:4f:3a:40:69:90:17:46:aa:bf:7d:e8:1a:85:2c:e3:
f8:fd:25:bf:5c:ef:c5:13:3b:1b:2e:b3:67:3b:b3:5a:24:66:
ed:fa:fa:0b:7a:3e:8b:6a:d9:4d:76:28:04:d4:4d:fd:09:b5:
36:e7:d5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 23:39:19 2024 by rpki-client on console-ams.rpki-client.org