Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mwTPSSnVz9R5pV5V0-dSOUWyWxk.roa
File: mwTPSSnVz9R5pV5V0-dSOUWyWxk.roa (raw, json)
Hash identifier: JcQr4N0eHLIm5zWTLjvd+8Na7H6sNv4msDYmkQcfiNw=
Subject key identifier: 9B:04:CF:49:29:D5:CF:D4:79:A5:5E:55:D3:E7:52:39:45:B2:5B:19
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019030451EAE98BF41666CCF64AC22DAF83C
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mwTPSSnVz9R5pV5V0-dSOUWyWxk.roa
Signing time: Wed 19 Jun 2024 11:32:34 +0000
ROA not before: Wed 19 Jun 2024 11:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43419
IP address blocks: 185.229.218.0/24 maxlen: 24
2a04:3a40:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 25 Jun 2024 08:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:45:1e:ae:98:bf:41:66:6c:cf:64:ac:22:da:f8:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 19 11:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b04cf4929d5cfd479a55e55d3e7523945b25b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8d:43:a8:42:29:35:f1:00:d3:21:f8:67:73:
1f:7a:85:6c:ba:8c:b0:e7:a9:d2:1d:b7:64:ca:9b:
af:17:0f:db:04:07:e3:fa:35:71:f1:da:c1:ae:a3:
53:e7:9d:0e:4d:c9:ed:0c:5f:67:5b:e5:af:f4:ee:
3f:73:14:f0:c9:11:d8:cd:cc:52:3d:36:3b:1a:f9:
d9:6f:9e:bf:8b:73:bf:b9:3a:27:36:f5:b5:00:5e:
a7:ad:c9:11:05:9c:52:da:c9:8b:1a:a1:82:74:f9:
bb:95:02:11:6b:9b:d5:29:ec:2f:67:da:49:c8:a9:
e7:24:92:7d:78:66:c4:14:c7:3f:89:82:b6:68:03:
45:b9:e7:8a:7d:68:f2:f0:25:cd:43:4f:34:2a:84:
14:b6:34:4b:9a:41:4e:34:06:ee:71:c6:67:c5:c8:
e3:0e:2d:73:f3:16:54:9b:5c:b1:b5:4d:05:9c:ec:
20:9d:3f:10:a9:f0:1e:4e:9f:52:50:15:dd:5b:34:
20:da:35:fe:db:45:57:d0:2d:c9:cd:65:e0:4a:c1:
36:b0:6a:dc:b5:d2:c2:98:aa:a3:a3:b7:83:7c:7e:
ad:eb:d7:58:da:21:86:1c:77:c7:b2:df:74:e3:37:
9e:51:c9:cc:92:cb:f2:64:00:d1:6e:70:cc:8d:88:
de:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:04:CF:49:29:D5:CF:D4:79:A5:5E:55:D3:E7:52:39:45:B2:5B:19
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mwTPSSnVz9R5pV5V0-dSOUWyWxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.218.0/24
IPv6:
2a04:3a40:8000::/33
Signature Algorithm: sha256WithRSAEncryption
cc:1f:c1:83:0c:e3:ae:aa:88:20:5c:36:c5:44:8e:a5:da:8b:
db:55:67:16:d9:c8:90:4c:79:af:fc:f3:a5:c5:35:ec:56:82:
8e:c8:9d:f3:cd:72:31:6e:1f:88:ad:1d:60:51:d9:9a:80:9c:
e5:89:b0:8c:03:46:74:cb:23:5a:76:a2:bb:d4:8c:4d:58:cc:
1a:73:33:96:77:b4:08:0d:3d:ab:c5:00:7e:97:25:84:2f:76:
97:36:0b:59:25:9c:51:af:44:27:61:d4:17:60:4f:c7:67:84:
a2:2e:a0:33:49:3e:fd:e9:80:cf:cd:7c:55:06:cd:0a:f2:ce:
66:2d:be:20:b2:c1:f4:6a:03:9f:5f:58:82:c9:f4:21:1c:0b:
ad:69:50:04:09:cb:16:76:17:eb:ac:5c:78:ac:d4:8f:78:6c:
e0:90:59:52:11:48:1f:ab:4b:9c:7f:61:27:48:e8:82:5c:67:
68:90:a0:4a:86:35:bd:d0:7b:b1:7c:c7:0b:96:7f:26:79:cf:
95:54:ba:d4:15:22:a6:3e:5f:a0:6d:fb:54:fd:95:4a:2a:cc:
0f:81:4a:a9:c0:60:1e:c8:93:99:6e:13:b3:2f:df:b9:ec:85:
50:af:56:d3:4f:66:c7:30:b8:86:a0:d9:d7:b6:e8:09:4f:1b:
d1:18:aa:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 12:08:04 2024 by rpki-client on console-fra.rpki-client.org