Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/tErew0rqi_UHQzs74lxNbuAvU6w.roa
File: tErew0rqi_UHQzs74lxNbuAvU6w.roa (raw, json)
Hash identifier: OWZ7tqq8McmH8mo+SUqExL1uWSY1Ru4lADQu5Mw4ars=
Subject key identifier: B4:4A:DE:C3:4A:EA:8B:F5:07:43:3B:3B:E2:5C:4D:6E:E0:2F:53:AC
Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Certificate serial: 018CC80161A060C30B67E46AE3A0B1ACF81C
Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/tErew0rqi_UHQzs74lxNbuAvU6w.roa
Signing time: Tue 02 Jan 2024 02:29:42 +0000
ROA not before: Tue 02 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57568
IP address blocks: 185.235.40.0/22 maxlen: 24
130.185.120.0/22 maxlen: 24
194.5.192.0/23 maxlen: 24
194.5.206.0/23 maxlen: 24
185.204.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 12:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:61:a0:60:c3:0b:67:e4:6a:e3:a0:b1:ac:f8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Validity
Not Before: Jan 2 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b44adec34aea8bf507433b3be25c4d6ee02f53ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:da:fe:61:43:4d:2e:60:df:f9:b7:6f:31:18:
d1:52:a1:05:a5:2e:df:32:b4:1d:80:d7:d1:a4:4b:
ea:4a:5a:9e:d1:1e:82:11:ee:06:f0:1e:5f:93:72:
28:db:cc:2d:4c:62:e8:9f:f2:d3:3f:d5:56:ad:3f:
af:03:d1:17:ac:bf:0a:6a:23:93:90:9a:50:0a:e4:
23:d4:11:33:11:ca:c5:15:f9:be:e8:49:74:d3:8e:
7f:f9:c0:79:1a:13:06:30:6c:28:60:e4:6b:9a:84:
16:ee:d0:38:93:e0:87:1c:45:ee:35:da:05:f8:ea:
64:de:dc:44:42:72:8f:26:d7:d6:75:1f:09:38:ab:
78:77:00:ec:c6:01:fb:23:6e:22:a1:26:20:ce:eb:
4d:95:58:4a:8b:53:fe:57:a7:f6:4e:b6:b7:69:04:
b6:84:4e:8b:ed:af:f3:ac:2b:53:13:9b:5b:34:25:
35:94:95:5c:3e:77:a1:50:fe:bb:41:1a:75:ab:40:
6d:6f:4b:eb:9c:6e:22:33:a6:e6:3a:de:ff:18:11:
8b:c1:e2:67:1f:25:4e:19:1a:4c:e7:44:63:51:b8:
99:70:c8:b0:4c:4a:46:79:6f:52:08:0d:4a:8b:9d:
6d:37:ad:61:c7:65:dd:0b:bd:03:73:a0:79:ce:7c:
dd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4A:DE:C3:4A:EA:8B:F5:07:43:3B:3B:E2:5C:4D:6E:E0:2F:53:AC
X509v3 Authority Key Identifier:
keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/tErew0rqi_UHQzs74lxNbuAvU6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.120.0/22
185.204.168.0/22
185.235.40.0/22
194.5.192.0/23
194.5.206.0/23
Signature Algorithm: sha256WithRSAEncryption
01:28:b4:52:6b:4a:f8:1c:e9:7b:2e:92:c5:2f:86:c4:6b:59:
74:fc:a7:fe:2c:ac:c1:29:07:0e:4b:e8:80:7a:bb:c4:1f:59:
65:54:c9:7a:d8:12:32:29:b3:a3:a4:58:88:6d:31:10:34:9b:
08:e7:76:bf:b8:bb:68:e4:19:55:c1:f9:81:9e:fb:f1:8c:57:
6b:72:ee:5b:ff:de:08:4f:24:ce:d6:ab:7f:12:fe:5f:89:bc:
e0:6b:e8:cb:b7:28:35:12:ee:a9:ba:d8:28:8d:1e:8e:fe:66:
5b:63:d6:a9:98:8d:d2:8a:89:7b:08:dd:aa:c3:35:bf:b8:a7:
38:8a:7b:7e:e9:66:86:5b:db:41:ac:c4:73:94:67:85:ba:bd:
65:fa:59:94:58:58:09:ca:f6:50:8a:de:73:4a:3c:91:6b:6a:
10:ac:1f:3e:1e:8b:f1:3d:dd:83:30:fd:59:99:4e:f1:ff:de:
d4:2f:86:cc:0b:9b:83:0e:ec:f0:80:ba:49:5a:67:ab:05:8e:
23:6f:1d:1e:c7:b3:b2:ba:5c:a3:e9:bd:12:d8:af:b1:33:50:
c9:33:07:31:41:ff:cb:f9:4e:d9:19:4f:20:10:bd:3c:6a:0a:
db:82:c9:bc:90:67:df:8f:11:ca:2e:e1:33:ea:28:53:e3:b3:
f0:66:70:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:06 2024 by rpki-client on console-fra.rpki-client.org