Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/h5DsZiYpFKFIj9YkQQmKIQHCwng.roa
File: h5DsZiYpFKFIj9YkQQmKIQHCwng.roa (raw, json)
Hash identifier: 2VZdPqeqBRErpJ3PKf2aHwLraMo0hpcXfKgIMxs6xlQ=
Subject key identifier: 87:90:EC:66:26:29:14:A1:48:8F:D6:24:41:09:8A:21:01:C2:C2:78
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190C6608CF93A1EAF6F49482BEED634F530
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/h5DsZiYpFKFIj9YkQQmKIQHCwng.roa
Signing time: Thu 18 Jul 2024 15:05:34 +0000
ROA not before: Thu 18 Jul 2024 15:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 264825
IP address blocks: 185.181.32.0/22 maxlen: 22
185.181.32.0/23 maxlen: 23
185.181.32.0/24 maxlen: 24
185.181.34.0/23 maxlen: 23
185.181.34.0/24 maxlen: 24
185.181.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 10:27:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c6:60:8c:f9:3a:1e:af:6f:49:48:2b:ee:d6:34:f5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 18 15:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8790ec66262914a1488fd62441098a2101c2c278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ed:18:9e:da:45:c5:66:26:8c:76:0b:bb:9e:
8e:1d:24:38:23:88:a0:c8:07:f1:3b:19:e7:14:e7:
b5:12:d7:01:f0:9c:1b:a9:bb:8a:55:d6:7a:22:9e:
01:db:dd:35:ac:8e:26:f1:cb:9a:7a:d2:40:c9:dd:
a0:62:7d:65:10:e0:e4:07:c4:85:2d:ed:6d:71:96:
41:36:58:cd:0f:0e:d6:8b:91:ca:e5:65:59:3f:38:
17:63:74:90:d8:fa:e7:63:5c:09:33:94:e5:fb:ef:
96:72:20:6b:1f:7a:f1:ed:56:8b:a4:53:3e:09:16:
ab:71:a5:0c:55:85:6a:1a:62:48:8d:3f:35:a3:5c:
7a:82:0d:ea:1e:12:08:b3:39:e7:c2:9e:42:64:a2:
7a:6b:19:ad:6b:3c:2b:cc:f3:8d:3b:c4:84:10:46:
68:73:fd:7b:7c:18:3d:16:01:1e:1b:42:4e:79:46:
fa:f9:71:b9:f1:07:f9:fe:ca:15:85:4d:10:db:fe:
60:8a:55:33:9c:71:29:a9:fb:23:54:ed:2f:a2:fd:
ce:2f:55:b9:0b:c7:e3:19:43:fd:ca:b1:c5:ca:73:
34:bd:5b:17:83:54:f7:4a:43:60:0d:3b:60:6b:ad:
4e:34:8c:c6:39:49:93:6c:88:32:a6:41:c1:e8:2d:
4d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:90:EC:66:26:29:14:A1:48:8F:D6:24:41:09:8A:21:01:C2:C2:78
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/h5DsZiYpFKFIj9YkQQmKIQHCwng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.32.0/22
Signature Algorithm: sha256WithRSAEncryption
35:5e:a8:4f:b9:45:68:50:6c:31:95:87:4a:78:ce:c4:7a:69:
62:e2:11:86:62:df:87:34:c3:23:79:e0:37:d7:94:81:a3:e6:
7c:f5:55:fc:46:79:85:f0:f6:e4:0d:bc:1a:5e:34:e8:bf:f8:
e6:17:16:8b:c8:a5:d7:4c:c1:e0:79:97:e4:98:98:95:dd:40:
a0:6c:53:ea:68:4e:f8:2b:80:71:6d:06:84:a3:aa:4f:e3:ee:
02:79:99:f6:18:8b:09:81:ba:38:78:9a:e4:c4:bc:19:b8:dc:
d3:32:b7:63:f9:ff:af:a2:08:9c:89:03:80:b5:19:f1:72:9d:
aa:62:cb:5b:90:a6:86:48:33:d8:63:c6:90:b2:b8:a2:51:ab:
3c:b5:74:fd:f7:fa:57:be:ca:fa:35:60:09:8b:3d:25:f2:c8:
19:3b:30:35:fc:9c:01:65:00:1a:37:dd:15:a2:b8:54:c5:79:
0e:b1:5a:ff:3e:32:7f:5e:82:99:9f:f1:28:87:98:ec:66:c1:
b9:97:53:a7:a2:c8:3a:f8:fc:8c:ba:be:ee:aa:4b:0b:b4:e5:
15:58:ab:df:64:7d:66:5c:46:a9:70:cc:84:61:fa:22:64:58:
e8:b2:55:6d:4e:5c:83:e3:c9:fa:8f:e0:d5:ba:23:bd:8b:0f:
ab:b1:35:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 13:23:21 2024 by rpki-client on console-fra.rpki-client.org