Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/5-rMNdUGsfDzmgm7gn_9OdnUIvc.roa
File: 5-rMNdUGsfDzmgm7gn_9OdnUIvc.roa (raw, json)
Hash identifier: 3uzrEFgvaCRw1Axg0ygknPq7+fV7WpXn8HwXjzKABtY=
Subject key identifier: E7:EA:CC:35:D5:06:B1:F0:F3:9A:09:BB:82:7F:FD:39:D9:D4:22:F7
Certificate issuer: /CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Certificate serial: 01857182FD413E6CAE8E3A22BD62613A7F7C
Authority key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/5-rMNdUGsfDzmgm7gn_9OdnUIvc.roa
Signing time: Mon 02 Jan 2023 08:04:47 +0000
ROA not before: Mon 02 Jan 2023 08:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64476
IP address blocks: 185.231.8.0/22 maxlen: 22
85.190.84.0/24 maxlen: 24
85.190.85.0/24 maxlen: 24
85.190.88.0/22 maxlen: 22
185.253.171.0/24 maxlen: 24
185.253.169.0/24 maxlen: 24
185.253.170.0/24 maxlen: 24
185.253.168.0/24 maxlen: 24
46.247.138.0/23 maxlen: 23
46.247.136.0/23 maxlen: 23
85.190.67.0/24 maxlen: 24
46.247.141.0/24 maxlen: 24
185.161.168.0/22 maxlen: 22
46.247.140.0/24 maxlen: 24
87.121.208.0/21 maxlen: 21
2a0a:e805:500::/40 maxlen: 40
2a0a:e805:210::/44 maxlen: 44
2a0a:e805:610::/44 maxlen: 44
2a0a:e805:710::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 22 Aug 2023 07:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:82:fd:41:3e:6c:ae:8e:3a:22:bd:62:61:3a:7f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Validity
Not Before: Jan 2 08:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7eacc35d506b1f0f39a09bb827ffd39d9d422f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5d:0a:f1:f6:65:a3:d9:2f:ab:ed:dd:6b:de:
b9:78:7d:d3:f8:1d:23:fd:b8:4f:68:9d:4f:b9:e4:
be:6e:a7:e8:40:d1:93:a5:6e:53:23:ea:ac:2a:38:
5a:ba:23:76:93:0b:0a:5f:d9:fd:5a:ae:dd:21:c1:
d0:2e:d0:6d:eb:3d:58:16:c3:8e:c6:a7:03:3e:c4:
74:74:95:bf:71:58:5a:10:a4:9a:85:35:cd:58:89:
7e:2c:52:ed:55:4c:77:a9:d7:76:7b:34:37:e1:3c:
2b:09:01:39:9b:9c:15:c7:2d:0e:27:d2:a3:81:c8:
e7:60:5a:78:d3:6a:ba:01:ec:61:6d:0e:bc:a3:eb:
1e:7b:8e:92:8f:13:b4:bd:33:eb:db:65:60:7f:3a:
1a:13:2d:92:4e:76:34:4f:ec:4c:38:f1:58:f2:e5:
7a:2b:84:a2:4a:75:e8:5b:ff:dc:ba:2f:64:81:c5:
fe:84:e8:68:4f:e9:9a:7b:41:55:03:01:24:9d:65:
55:0f:59:95:ba:e2:a6:45:5c:b2:ce:46:eb:db:29:
f7:3b:3c:93:78:16:45:86:45:92:9c:d8:15:dc:9f:
00:8d:fa:77:a5:7b:2c:2e:c2:fd:e2:84:a2:fe:ae:
bd:69:54:1f:65:ef:d3:0b:26:12:5d:f6:30:a2:6e:
f2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EA:CC:35:D5:06:B1:F0:F3:9A:09:BB:82:7F:FD:39:D9:D4:22:F7
X509v3 Authority Key Identifier:
keyid:6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/5-rMNdUGsfDzmgm7gn_9OdnUIvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0-46.247.141.255
85.190.67.0/24
85.190.84.0/23
85.190.88.0/22
87.121.208.0/21
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e805:210::/44
2a0a:e805:500::/40
2a0a:e805:610::/44
2a0a:e805:710::/44
Signature Algorithm: sha256WithRSAEncryption
8f:2f:32:77:b9:57:bb:70:b8:a0:cc:ef:42:69:92:01:8b:14:
5f:78:d6:5b:65:1b:3a:1b:2e:65:f9:4a:de:f3:f5:e6:9d:1a:
3d:a8:e7:d9:b3:8e:65:69:e9:a0:d8:d8:f7:ec:da:9f:03:0d:
76:1d:f2:00:1a:66:1f:27:94:c8:76:b3:e0:b7:87:11:1d:4b:
87:94:c4:60:fe:f0:a9:a5:00:64:99:c6:d4:85:d7:de:4c:eb:
4d:4f:d9:36:30:97:91:d2:54:a3:7d:41:a1:14:fa:b0:87:82:
a5:5b:85:ad:54:6d:0e:b0:6b:e8:02:cb:48:64:3c:af:55:c6:
87:54:99:c4:94:d0:a6:75:14:e2:e6:87:c2:1e:c8:88:67:fc:
6c:63:7b:ca:b6:92:84:ab:8f:57:f6:11:83:2b:3c:a9:4d:54:
c7:e2:3a:ab:91:0b:6a:c3:f0:5a:1d:f7:a4:b0:46:6b:57:d3:
cc:42:53:6f:aa:bd:66:bd:8b:6f:77:00:91:61:8d:e9:86:be:
aa:8e:d5:f4:25:61:fa:f4:5f:07:ca:43:39:5a:27:1d:0e:b4:
50:c2:e5:38:c7:1c:60:fe:ea:fd:ad:b8:5c:66:a7:f9:dd:b3:
e8:2c:75:82:8d:8a:fa:55:46:13:e2:16:6f:32:3d:81:8a:bd:
f2:da:57:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:06 2024 by rpki-client on console-fra.rpki-client.org