Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/e94817-f259-4ffa-9ba3-7eb95cc0f749/1/sxnEcpDsEux_qAtmO6eaPmmt_zQ.roa
File: sxnEcpDsEux_qAtmO6eaPmmt_zQ.roa (raw, json)
Hash identifier: vlxEM85ogqmma6Sqr2/I15VdWh1cmwIwl4Motnrbffo=
Subject key identifier: B3:19:C4:72:90:EC:12:EC:7F:A8:0B:66:3B:A7:9A:3E:69:AD:FF:34
Certificate issuer: /CN=47e42233ed630b0b89f52c077ff0d5c2b37d4dfa
Certificate serial: 01856D4188C06C3560B9619A08DD25900384
Authority key identifier: 47:E4:22:33:ED:63:0B:0B:89:F5:2C:07:7F:F0:D5:C2:B3:7D:4D:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-QiM-1jCwuJ9SwHf_DVwrN9Tfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/e94817-f259-4ffa-9ba3-7eb95cc0f749/1/sxnEcpDsEux_qAtmO6eaPmmt_zQ.roa
Signing time: Sun 01 Jan 2023 12:14:49 +0000
ROA not before: Sun 01 Jan 2023 12:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47374
IP address blocks: 185.219.69.0/24 maxlen: 24
185.219.68.0/22 maxlen: 22
185.219.68.0/24 maxlen: 24
185.219.71.0/24 maxlen: 24
185.219.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:88:c0:6c:35:60:b9:61:9a:08:dd:25:90:03:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e42233ed630b0b89f52c077ff0d5c2b37d4dfa
Validity
Not Before: Jan 1 12:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b319c47290ec12ec7fa80b663ba79a3e69adff34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:d6:7c:a7:88:ca:0d:41:05:46:f8:46:7e:
65:d2:ac:78:ed:10:e8:4a:b8:ed:e3:40:33:77:e5:
6e:a0:78:6a:8a:f4:ed:8a:26:da:9b:d7:a1:68:4b:
83:87:61:6f:ef:b4:55:0e:cb:9b:f8:9f:bc:e5:8d:
bb:ca:d2:14:18:0c:7a:02:52:08:c3:6c:11:e3:ad:
a7:32:97:6d:88:d4:84:ad:ae:77:43:31:4f:a8:77:
e9:bf:e7:a5:06:62:31:72:ab:16:8e:2f:2b:58:82:
6d:a9:e0:8b:83:34:5b:b1:c3:18:68:c5:95:b0:91:
b4:46:9f:55:b5:1a:df:c8:41:95:f8:2d:cd:81:1c:
bd:ee:b8:81:73:79:46:78:de:51:e1:ad:63:10:f8:
42:61:97:8c:5e:fb:84:88:e0:d6:21:c9:ea:59:09:
86:f8:d3:89:10:b0:0f:0a:b0:d7:93:c8:a0:5c:e9:
ab:7e:09:7d:43:fc:f5:fa:ca:71:5e:65:e8:b6:5a:
e4:8d:5c:2b:3c:dc:b7:7d:0c:c7:de:f8:86:2a:06:
28:49:40:1e:c0:de:55:ec:48:c8:d5:83:10:c9:58:
5e:e2:68:f3:58:50:6a:20:42:92:ad:fb:b1:fe:38:
f7:1b:81:9b:80:62:30:43:92:0f:5c:c9:4a:69:fd:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:19:C4:72:90:EC:12:EC:7F:A8:0B:66:3B:A7:9A:3E:69:AD:FF:34
X509v3 Authority Key Identifier:
keyid:47:E4:22:33:ED:63:0B:0B:89:F5:2C:07:7F:F0:D5:C2:B3:7D:4D:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-QiM-1jCwuJ9SwHf_DVwrN9Tfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e94817-f259-4ffa-9ba3-7eb95cc0f749/1/sxnEcpDsEux_qAtmO6eaPmmt_zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e94817-f259-4ffa-9ba3-7eb95cc0f749/1/R-QiM-1jCwuJ9SwHf_DVwrN9Tfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.68.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:26:17:87:a2:03:ab:6c:41:90:71:37:d0:88:68:12:73:68:
cc:2d:a7:5a:01:7a:7a:cc:76:ea:19:34:a5:77:e7:7a:11:08:
68:32:ce:c5:1c:d9:2a:0f:4a:5d:3f:9f:44:d2:b9:6d:6d:61:
fa:80:77:1a:d6:52:43:69:ce:f0:33:f1:c8:4e:4e:46:ff:88:
59:f5:9e:7f:8b:07:47:68:24:0c:5f:dc:a4:7b:b3:06:5a:87:
41:1e:e8:96:96:c1:c6:2f:30:30:50:0b:4f:d7:83:62:37:17:
fc:c5:8b:2e:0e:b7:fe:62:37:c0:83:44:35:bd:39:e9:b4:49:
41:61:69:67:37:81:2f:27:82:39:1a:64:18:65:dc:15:ff:f7:
6a:7b:d0:06:0a:9b:05:a6:de:58:87:75:3c:05:8b:a1:f8:57:
7e:ff:1e:56:ef:6b:d5:77:57:0f:bc:b9:bf:d5:7c:df:b4:bf:
c1:a8:f4:01:46:10:a3:b4:9e:a6:a4:82:1d:82:a6:6e:ec:b0:
2e:24:45:07:9d:78:6d:b5:c8:21:cd:58:8e:b7:2c:a4:e6:69:
cd:82:72:30:b2:7d:56:df:a4:9a:b9:2c:4b:c7:4b:eb:7f:b4:
3d:26:74:ee:da:01:6d:be:7e:86:f9:f6:bb:ba:6f:a3:c3:c5:
7d:0f:74:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org