Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0e9fb9-f5a7-466a-8f81-9e10294a18ea/1/TJv5RoQZPmcG9UIWRV4PAznIln0.roa
File: TJv5RoQZPmcG9UIWRV4PAznIln0.roa (raw, json)
Hash identifier: IbZguhBmrghbzNxxRETQssBEVVmocCnmtt+XTowdkHU=
Subject key identifier: 4C:9B:F9:46:84:19:3E:67:06:F5:42:16:45:5E:0F:03:39:C8:96:7D
Certificate issuer: /CN=ae1fff9eb0cf4c0ba7814e322ec8e03d4f1f0718
Certificate serial: 018AAD7C77EBF6F7259751DA39094F3623EA
Authority key identifier: AE:1F:FF:9E:B0:CF:4C:0B:A7:81:4E:32:2E:C8:E0:3D:4F:1F:07:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh__nrDPTAungU4yLsjgPU8fBxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0e9fb9-f5a7-466a-8f81-9e10294a18ea/1/TJv5RoQZPmcG9UIWRV4PAznIln0.roa
Signing time: Tue 19 Sep 2023 12:48:50 +0000
ROA not before: Tue 19 Sep 2023 12:48:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41061
IP address blocks: 185.222.182.0/24 maxlen: 24
185.222.182.0/23 maxlen: 23
185.222.181.0/24 maxlen: 24
185.222.180.0/24 maxlen: 24
185.222.180.0/22 maxlen: 22
185.222.180.0/23 maxlen: 23
185.222.183.0/24 maxlen: 24
2a0c:9800:9800::/48 maxlen: 48
2a0c:9800::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ad:7c:77:eb:f6:f7:25:97:51:da:39:09:4f:36:23:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1fff9eb0cf4c0ba7814e322ec8e03d4f1f0718
Validity
Not Before: Sep 19 12:48:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c9bf94684193e6706f54216455e0f0339c8967d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:42:e5:c3:dc:d5:2a:7d:87:4f:df:85:44:37:
8e:30:8a:f4:fc:e8:ee:a0:44:b3:1a:7c:71:98:f0:
5f:8e:08:ba:b9:35:32:1e:50:b0:52:d6:cf:94:0b:
4f:bc:19:9a:ef:28:84:0b:f1:9d:47:51:fc:c0:c6:
c2:78:55:34:3c:de:20:84:01:e1:be:88:d5:5b:a3:
57:68:70:eb:cf:9e:50:3c:16:b8:34:bc:89:e8:f5:
a0:88:3d:9b:b5:d7:a6:90:a5:93:f1:09:ef:c2:b3:
b2:39:21:dc:9a:5a:f4:f9:fa:1f:52:10:6b:ce:96:
2b:2b:6b:c7:21:c4:fc:7c:34:b9:a4:35:06:ac:d1:
29:f6:0b:63:3c:f5:57:e6:33:51:b2:29:1e:ef:b8:
6f:81:2b:d1:1b:91:15:80:18:50:48:6c:81:62:9c:
a0:73:2f:56:dc:b5:59:09:72:11:31:db:76:6d:48:
31:85:e3:63:db:e0:60:b5:94:1f:9b:bb:37:a7:2d:
b4:ae:cb:31:16:ca:be:a7:10:97:b7:4a:24:20:01:
3c:7c:71:00:00:38:9b:06:af:f6:fc:c7:2d:81:4a:
8e:02:a5:5e:c9:4e:20:fe:66:e3:1e:e8:24:4d:2e:
df:fe:64:f3:46:bf:f2:5a:34:29:03:50:6b:32:c3:
b9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9B:F9:46:84:19:3E:67:06:F5:42:16:45:5E:0F:03:39:C8:96:7D
X509v3 Authority Key Identifier:
keyid:AE:1F:FF:9E:B0:CF:4C:0B:A7:81:4E:32:2E:C8:E0:3D:4F:1F:07:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh__nrDPTAungU4yLsjgPU8fBxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0e9fb9-f5a7-466a-8f81-9e10294a18ea/1/TJv5RoQZPmcG9UIWRV4PAznIln0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0e9fb9-f5a7-466a-8f81-9e10294a18ea/1/rh__nrDPTAungU4yLsjgPU8fBxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.180.0/22
IPv6:
2a0c:9800::/29
Signature Algorithm: sha256WithRSAEncryption
63:e8:f4:31:30:86:3e:98:3c:88:77:52:c0:f5:65:da:42:59:
f1:64:7d:fa:95:40:75:60:76:f2:01:91:7d:d8:35:cc:60:c8:
96:b4:5f:c1:d7:1e:71:47:62:b9:f4:af:40:4c:6c:b4:2d:9b:
26:9a:9c:4f:ce:46:50:94:bf:88:44:06:34:12:14:69:0c:b3:
58:59:38:f0:09:29:0e:c0:b2:d2:27:37:d7:04:5a:62:b5:fe:
26:ad:61:19:7e:0d:2f:3a:dd:5d:d8:d1:8a:3b:ca:b5:a5:2b:
91:cb:4e:b4:64:7b:3a:d3:5a:ac:89:54:94:98:a8:f9:a3:b6:
fd:28:af:98:24:18:da:f0:b7:20:9e:1d:6d:49:fe:90:b1:63:
60:4c:a0:20:18:f1:1c:bf:df:3f:e8:dc:d0:74:86:a8:aa:a7:
4e:de:d7:86:b7:fe:a1:c0:4c:70:09:3b:74:66:46:d1:ed:37:
51:ef:94:84:64:89:3e:14:e1:e9:1c:70:33:6f:86:5a:0a:cd:
60:72:b9:ee:dc:4d:db:24:e7:77:80:1f:3b:79:f5:b2:8a:1e:
85:70:0f:39:77:4d:76:29:6f:96:bf:79:6a:54:38:86:ed:7a:
0c:4d:0a:bd:87:48:e2:7d:94:5d:69:93:16:04:d9:0d:36:8f:
df:8e:47:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:49 2024 by rpki-client on console-ams.rpki-client.org