Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Fb4PcXnK73tphc4ni3L7yBNb-HY.roa
File: Fb4PcXnK73tphc4ni3L7yBNb-HY.roa (raw, json)
Hash identifier: hEdW8RzUmA1RG4UCH2zj7DAXUWd3TnWqctTiNei/V7E=
Subject key identifier: 15:BE:0F:71:79:CA:EF:7B:69:85:CE:27:8B:72:FB:C8:13:5B:F8:76
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 01856B9C8359455ADDA175BC912D712C0829
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Fb4PcXnK73tphc4ni3L7yBNb-HY.roa
Signing time: Sun 01 Jan 2023 04:34:57 +0000
ROA not before: Sun 01 Jan 2023 04:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64413
IP address blocks: 185.233.15.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
185.233.12.0/24 maxlen: 24
185.237.10.0/24 maxlen: 24
185.237.9.0/24 maxlen: 24
185.237.8.0/24 maxlen: 24
185.237.11.0/24 maxlen: 24
185.189.123.0/24 maxlen: 24
185.189.122.0/24 maxlen: 24
185.189.121.0/24 maxlen: 24
185.189.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 10:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:83:59:45:5a:dd:a1:75:bc:91:2d:71:2c:08:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Jan 1 04:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15be0f7179caef7b6985ce278b72fbc8135bf876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:36:14:12:34:0d:a6:bf:8c:1e:28:84:0b:3c:
53:34:cb:1c:32:2a:fc:fc:c3:c0:a5:8d:7b:ff:32:
ba:df:76:ad:87:cb:34:bd:00:23:b5:03:53:c0:80:
a2:68:1c:68:8f:55:06:95:01:b9:39:a3:06:39:a3:
6b:5d:21:ba:d8:3d:d7:0a:d3:60:df:a7:3d:d2:21:
23:1c:2c:9e:a2:6d:01:80:33:c3:53:c8:8f:94:cf:
ef:b5:f0:bf:dd:fe:f7:97:3f:a9:4d:9b:5d:17:ec:
87:1d:0c:e9:11:e3:43:32:e9:b3:42:bc:3d:09:a7:
c4:ad:91:b0:af:bd:d1:2a:67:50:20:00:4c:ee:c5:
97:84:ed:e2:cc:5d:11:08:94:e2:57:3f:29:d6:9f:
b0:54:ac:41:70:32:fd:fb:e3:c9:93:a6:2d:b6:a3:
66:13:22:62:f9:41:65:d8:cc:69:e4:2f:5b:cf:f6:
f3:d6:17:f4:a5:8d:b7:05:89:d9:ce:a7:81:55:ee:
d9:b4:f7:54:4d:0a:a2:cd:b6:af:35:a0:66:78:9a:
8c:40:f3:26:45:aa:b0:dd:67:51:e8:33:9a:44:ee:
46:43:7b:d4:2d:0b:ee:86:9d:4c:a8:eb:87:01:e4:
79:86:5d:69:10:e0:7e:be:df:31:88:4d:33:58:cd:
0c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BE:0F:71:79:CA:EF:7B:69:85:CE:27:8B:72:FB:C8:13:5B:F8:76
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Fb4PcXnK73tphc4ni3L7yBNb-HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.120.0/22
185.233.12.0/22
185.237.8.0/22
Signature Algorithm: sha256WithRSAEncryption
21:8e:aa:a3:5b:ec:10:cb:6d:96:78:38:d5:5c:32:a7:05:08:
47:b6:cd:e0:a9:7a:79:c8:b3:ef:b6:86:32:37:b9:cb:90:cb:
e3:d5:f6:51:e1:1b:e8:85:df:84:dc:ca:d1:91:6e:c5:0a:af:
ba:7f:17:f6:6b:52:c4:81:04:22:56:f6:f9:b3:f9:5a:a7:08:
2b:01:0c:a8:20:fb:84:2c:3b:27:93:33:97:03:41:15:ac:ad:
e4:4c:cb:01:67:fa:50:fb:fd:d1:57:fa:12:a5:c4:cd:b6:a5:
e2:c3:5a:4f:cb:fe:f3:d0:9f:33:93:52:a7:34:59:11:d1:13:
57:72:18:c2:ab:72:8b:13:7f:66:41:e5:da:bf:25:0e:36:90:
cb:bf:b4:74:ba:29:d1:b3:16:fa:b8:86:38:32:e4:65:e9:49:
51:2f:9f:7e:a8:3f:dc:35:a6:84:40:e1:f3:4b:94:80:63:d0:
e2:95:1e:f0:f3:7a:bb:4b:19:a7:d1:71:8b:8a:14:d6:ed:5e:
4f:4f:48:1b:26:1d:ca:12:39:b5:2f:0d:7b:34:33:e3:02:69:
1b:cb:d2:f3:c2:60:44:6b:84:be:15:ad:14:7a:94:34:10:14:
5b:31:39:da:1e:cb:bc:a7:de:62:6d:20:2f:e0:a2:24:dc:a8:
d1:af:17:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:35 2024 by rpki-client on console-ams.rpki-client.org