Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/7GyOxkwt0tq3XVb99NRA975BHIQ.roa
File: 7GyOxkwt0tq3XVb99NRA975BHIQ.roa (raw, json)
Hash identifier: 6Rn4PomlRBfTjpLaYE3vs2tPZ3BBfVoYq/4tfcGUeDw=
Subject key identifier: EC:6C:8E:C6:4C:2D:D2:DA:B7:5D:56:FD:F4:D4:40:F7:BE:41:1C:84
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 018570C2BB742EB792DC42A551B5D8B4DC79
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/7GyOxkwt0tq3XVb99NRA975BHIQ.roa
Signing time: Mon 02 Jan 2023 04:34:48 +0000
ROA not before: Mon 02 Jan 2023 04:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.154.81.0/24 maxlen: 24
185.154.82.0/24 maxlen: 24
185.154.83.0/24 maxlen: 24
185.154.80.0/24 maxlen: 24
185.154.80.0/22 maxlen: 24
2a05:f500:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:bb:74:2e:b7:92:dc:42:a5:51:b5:d8:b4:dc:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: Jan 2 04:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec6c8ec64c2dd2dab75d56fdf4d440f7be411c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:32:1c:4b:b2:d6:bd:c0:bd:95:f3:12:ea:be:
f3:0f:62:54:21:eb:46:9b:c8:c8:19:85:1b:5f:5e:
44:82:e5:bf:1e:f8:e3:e3:ee:2e:19:99:73:b0:b3:
72:b2:c1:bf:1e:14:aa:ec:e7:5d:69:2a:11:45:3a:
d1:cf:bc:fd:7f:07:6d:de:16:4b:be:f6:17:5f:07:
02:0a:fa:b5:bd:3b:aa:76:a4:14:49:4e:ae:87:25:
36:0f:f3:aa:46:65:88:06:aa:a3:03:c5:ae:0a:01:
25:b6:dc:b1:09:ce:41:5e:6e:79:ca:b1:88:69:f0:
14:b5:49:c1:b9:95:78:04:ba:d2:ae:b3:cd:42:d7:
5e:35:53:43:dd:bc:58:73:72:e2:4f:90:b8:bc:95:
37:fa:2b:9b:24:3d:20:5c:31:49:ca:cc:aa:68:18:
6e:8d:94:20:65:66:0c:13:8c:96:f0:56:1a:1e:45:
d0:68:39:4b:33:9f:40:fb:1d:13:25:ec:a9:0f:85:
8a:b0:c9:cb:68:7d:b0:13:9e:3a:85:56:6b:5c:f3:
35:a8:2b:52:63:61:96:58:fd:a3:81:ae:6b:37:a3:
0d:b1:94:cd:f8:03:dd:d7:a4:42:1f:74:54:e9:0a:
45:ad:85:eb:8b:38:96:09:5b:47:48:ff:e9:eb:48:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:6C:8E:C6:4C:2D:D2:DA:B7:5D:56:FD:F4:D4:40:F7:BE:41:1C:84
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/7GyOxkwt0tq3XVb99NRA975BHIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500:2::/48
Signature Algorithm: sha256WithRSAEncryption
91:a7:e9:74:2d:68:4a:7d:01:f2:1f:f3:e3:bf:16:a1:da:c5:
db:44:ad:a2:d2:c2:f2:cd:bc:95:23:f0:f7:7f:a2:4c:6a:68:
6d:1c:ad:6d:6d:75:3b:64:0c:41:ff:09:1b:de:b0:f8:22:cf:
4d:53:9f:ed:94:78:3c:1e:a8:c7:ca:da:e5:97:a4:37:3b:7f:
c3:c7:8d:17:c0:15:59:93:7d:e9:1c:43:36:60:5f:99:06:85:
52:94:6e:68:d6:14:06:ea:d2:96:bf:de:19:6b:47:2f:c8:84:
1d:54:01:ea:cf:34:4c:66:3d:62:7c:9e:f1:4e:dc:28:4c:da:
67:97:91:df:c9:53:8f:5e:4f:24:79:8f:e0:c3:78:ac:ce:89:
d7:5a:8e:da:6f:56:f5:f7:7a:f5:fb:69:98:1b:e5:7a:35:d9:
8c:fc:88:6c:ce:c4:6b:bb:6e:70:c8:69:6d:5e:e1:81:71:c6:
8f:e5:ac:50:c0:57:86:c7:fb:6f:b0:6f:98:8f:cb:40:46:1d:
b3:6e:53:ba:23:c3:6a:36:15:81:d9:ed:f0:fe:86:40:5a:b2:
31:10:c1:d7:8a:79:e1:5f:fa:94:0c:c2:56:e2:d7:1a:b2:e9:
b3:26:f8:9f:35:29:c5:91:83:bf:17:d9:76:5b:c3:5b:33:bd:
f9:26:4b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:25 2024 by rpki-client on console-ams.rpki-client.org