Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/1-wglf1CehbN-iYbOBaRcp7WBz7U.roa
File: 1-wglf1CehbN-iYbOBaRcp7WBz7U.roa (raw, json)
Hash identifier: 28vcbBa9kXc/FnUzmngACrAvmSCzkZt3f5ZLbpnOTDM=
Subject key identifier: FB:08:25:7F:50:9E:85:B3:7E:89:86:CE:05:A4:5C:A7:B5:81:CF:B5
Certificate issuer: /CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Certificate serial: 018572BA7EF48705356399B3BA229F26BF97
Authority key identifier: 8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/1-wglf1CehbN-iYbOBaRcp7WBz7U.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203924
IP address blocks: 185.113.144.0/22 maxlen: 22
185.146.36.0/22 maxlen: 22
185.216.120.0/22 maxlen: 22
193.105.0.0/24 maxlen: 24
2a06:6a40::/29 maxlen: 29
2a0b:b640::/29 maxlen: 29
2a07:4d00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 08 Feb 2023 10:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7e:f4:87:05:35:63:99:b3:ba:22:9f:26:bf:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb08257f509e85b37e8986ce05a45ca7b581cfb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d0:dc:44:a1:00:2b:41:03:11:77:13:d9:47:
ed:03:20:6b:53:fd:d4:51:d4:35:5c:45:13:57:4f:
66:4a:ef:31:e3:ce:18:78:12:91:32:79:9b:16:06:
9b:69:49:e5:5e:2f:5c:b1:bb:3e:a1:f0:56:dd:22:
4f:93:a1:90:88:b7:66:82:94:db:04:a6:d3:9d:03:
b1:34:9d:1f:17:cf:01:b5:3c:1f:33:1c:be:93:e3:
36:34:88:dd:7a:2c:ed:5b:e0:05:b8:57:1a:58:ef:
79:36:13:1e:5e:f4:bf:74:f8:ea:96:38:74:8a:84:
1c:55:a4:e0:b2:9d:f8:ed:6f:89:f9:83:54:18:68:
06:cf:80:98:6d:a1:80:54:f5:86:2b:cd:77:c6:7a:
9c:7d:f5:ad:bf:3a:35:69:25:8f:50:d1:2a:76:91:
ab:7a:3b:a9:3c:17:ae:2e:8f:67:db:34:5f:de:92:
db:25:bf:ac:eb:5b:b9:4d:1f:1b:6f:60:3b:1c:37:
bc:df:25:e1:df:51:75:c4:4e:8a:d4:89:eb:41:b8:
a5:79:66:0c:a7:96:53:7b:61:7d:54:55:6c:4c:7a:
0b:09:b2:ef:eb:7d:de:65:21:e1:51:21:f2:88:a5:
6c:68:91:3d:03:57:d5:80:69:4d:6f:b0:a2:ed:11:
88:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:08:25:7F:50:9E:85:B3:7E:89:86:CE:05:A4:5C:A7:B5:81:CF:B5
X509v3 Authority Key Identifier:
keyid:8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/1-wglf1CehbN-iYbOBaRcp7WBz7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/j5D2t16RPyeC7VSetyFyxZzEevE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.144.0/22
185.146.36.0/22
185.216.120.0/22
193.105.0.0/24
IPv6:
2a06:6a40::/29
2a07:4d00::/29
2a0b:b640::/29
Signature Algorithm: sha256WithRSAEncryption
68:af:90:db:10:f8:dd:1a:64:3c:38:3a:4b:12:d8:6a:a0:ce:
74:6e:8e:aa:ef:35:b4:11:c9:93:93:b0:e1:34:6d:50:b0:ab:
6b:db:97:dd:e1:b3:e0:46:b0:87:e8:52:d8:4e:dd:7f:4d:5a:
5e:9e:55:eb:e0:36:26:e4:bc:ca:79:79:62:3f:33:99:7c:89:
20:da:25:19:db:a3:b5:24:7c:99:33:e3:27:4b:c7:8c:45:22:
5b:03:68:82:a7:04:7e:2e:1d:fd:17:64:a5:ea:23:c3:fe:35:
84:21:c3:7c:44:f9:22:c6:e5:bf:25:ab:af:54:a8:77:4a:74:
ce:c2:a4:ef:55:25:c7:6b:ce:2c:be:fa:56:e6:cd:11:4b:45:
79:8f:12:b8:f5:22:f2:4f:f9:09:d0:cd:b8:d3:8f:cd:99:36:
31:3e:54:0c:c6:24:bd:ef:2b:41:22:ec:1d:c8:d5:22:e1:81:
98:0b:62:95:9a:86:81:47:c0:d5:f9:cd:2f:6f:bf:4e:73:80:
8d:82:a8:ed:25:2e:d8:23:ce:d0:24:08:01:25:d4:d6:db:85:
76:28:6d:20:30:b2:2f:11:cf:62:59:97:bc:e7:c4:a6:f6:67:
f6:03:b0:20:ee:5d:75:28:ef:1a:bb:ac:d6:b7:0a:bf:20:ef:
79:df:99:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:00 2024 by rpki-client on console-ams.rpki-client.org