Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2Vuwp69rV3lsDF6W8b5IEK2eUpI.roa
File: 2Vuwp69rV3lsDF6W8b5IEK2eUpI.roa (raw, json)
Hash identifier: 2XCxd/mQmjFzmzkC9mpCJRNIzUVIJOJv0f0h1knti64=
Subject key identifier: D9:5B:B0:A7:AF:6B:57:79:6C:0C:5E:96:F1:BE:48:10:AD:9E:52:92
Certificate issuer: /CN=153d757b77067befd9446694748ad2b04e97b38c
Certificate serial: 018996E0DF3EEFC999BADE1EEEE239B96F92
Authority key identifier: 15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2Vuwp69rV3lsDF6W8b5IEK2eUpI.roa
Signing time: Thu 27 Jul 2023 10:24:26 +0000
ROA not before: Thu 27 Jul 2023 10:24:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201193
IP address blocks: 185.76.233.0/24 maxlen: 24
185.76.232.0/24 maxlen: 24
185.76.232.0/22 maxlen: 24
185.76.234.0/24 maxlen: 24
185.76.235.0/24 maxlen: 24
2a05:5dc0::/29 maxlen: 30
2a05:5dc4::/30 maxlen: 30
2a05:5dc0::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:e0:df:3e:ef:c9:99:ba:de:1e:ee:e2:39:b9:6f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153d757b77067befd9446694748ad2b04e97b38c
Validity
Not Before: Jul 27 10:24:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d95bb0a7af6b57796c0c5e96f1be4810ad9e5292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9e:92:e8:c0:63:9e:af:29:ed:2b:4e:67:a3:
a4:33:33:84:99:a0:55:a1:77:e9:67:fe:26:98:63:
c0:b7:7e:eb:3f:fa:ce:39:49:96:f0:ff:5e:ef:c0:
c4:10:86:4a:f5:a9:7f:8d:2d:4d:1d:03:d4:9d:cd:
f2:c3:5e:fc:14:38:14:f7:d6:d9:59:a7:6e:df:eb:
34:0a:0d:66:b2:69:53:29:e2:f7:c6:2d:6f:90:68:
21:ae:09:5f:fa:3b:60:de:76:84:ce:08:69:06:24:
5e:9e:eb:9e:ac:09:3e:9b:f6:ff:8b:0d:8a:62:d3:
c0:09:2b:89:3a:53:66:0f:2f:76:f2:14:de:ef:8c:
03:9c:26:c6:7c:8a:82:8d:b2:db:07:00:a9:b7:f8:
7a:f7:d7:5f:cf:1b:3e:00:f5:32:a7:d1:f0:ce:69:
f7:16:91:cf:ec:0c:6d:4a:b9:3f:8e:e3:71:4d:42:
2f:ff:5f:ee:c0:2f:1c:40:94:51:30:fa:1b:a1:e9:
b2:21:13:7c:99:08:f2:a5:b7:42:65:0c:d8:50:cf:
7d:b0:bd:50:78:fb:3f:d4:f6:77:0d:4a:62:d1:fc:
ef:ed:e1:fe:88:2f:95:24:5d:9e:1a:19:02:cb:1f:
7e:fc:6c:e9:6f:68:a0:fa:56:76:27:25:5c:1f:91:
5b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5B:B0:A7:AF:6B:57:79:6C:0C:5E:96:F1:BE:48:10:AD:9E:52:92
X509v3 Authority Key Identifier:
keyid:15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2Vuwp69rV3lsDF6W8b5IEK2eUpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.232.0/22
IPv6:
2a05:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
71:7d:8a:df:0a:b3:91:90:30:81:d5:79:67:22:6b:0f:1c:c3:
58:c6:81:21:a8:f2:5f:c0:8a:aa:31:3e:c7:22:d6:52:69:95:
e7:54:a1:d8:94:69:2c:0b:df:f9:8b:bc:ec:eb:f1:9d:b5:b2:
88:15:49:3a:c9:84:aa:8d:bf:ad:9a:48:96:8d:dd:2a:cb:ce:
18:a4:43:67:8d:ca:cd:c4:65:56:a8:80:ac:cf:72:53:31:13:
72:9a:8e:3a:2c:e7:0e:1f:81:0a:5f:4f:2a:57:c7:5e:aa:d7:
ee:d3:d2:ec:2d:29:0d:9f:de:41:7a:26:fe:1c:93:2f:36:76:
82:e0:39:3a:96:02:dd:58:86:04:1a:c0:a7:d5:13:63:6b:1e:
57:27:f2:32:99:9a:c2:c7:16:18:54:5b:58:8f:cd:78:c5:04:
14:59:28:2b:d2:fd:3b:d5:ed:0e:50:9e:52:02:cf:50:0e:d0:
fa:0b:e4:46:b6:f8:32:43:9c:a8:37:b6:a4:54:af:4c:c2:7f:
fc:0b:5e:e3:dc:5d:13:04:76:71:76:16:02:b4:0c:23:ae:6b:
46:6b:ed:9d:56:10:c8:6b:2c:a4:23:56:66:a8:93:02:07:93:
d9:46:5a:90:58:b1:74:37:5f:5a:1c:c5:8e:e7:d2:e2:ec:b3:
e0:4c:73:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:02 2024 by rpki-client on console-fra.rpki-client.org