Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/rVpha2PDw5h97psLKS8sV44-O5Y.roa
File: rVpha2PDw5h97psLKS8sV44-O5Y.roa (raw, json)
Hash identifier: fEE4jGCWrG55JrmnVChZGJ34+ldJiVSd8vTaWJIUf1s=
Subject key identifier: AD:5A:61:6B:63:C3:C3:98:7D:EE:9B:0B:29:2F:2C:57:8E:3E:3B:96
Certificate issuer: /CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Certificate serial: 01907D5FA4DFCAA3178CC65DF0333D12C978
Authority key identifier: A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/rVpha2PDw5h97psLKS8sV44-O5Y.roa
Signing time: Thu 04 Jul 2024 10:52:18 +0000
ROA not before: Thu 04 Jul 2024 10:52:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24806
IP address blocks: 81.2.192.0/18 maxlen: 32
185.28.100.0/22 maxlen: 32
185.129.136.0/22 maxlen: 32
195.181.208.0/20 maxlen: 32
2001:15e8::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 23 Aug 2024 11:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7d:5f:a4:df:ca:a3:17:8c:c6:5d:f0:33:3d:12:c9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Validity
Not Before: Jul 4 10:52:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad5a616b63c3c3987dee9b0b292f2c578e3e3b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b8:8a:04:a5:8b:69:ad:ff:62:6f:08:57:b0:
3c:1e:c7:ae:ec:f6:be:13:0d:78:46:f1:d1:b1:31:
96:61:63:89:c7:6f:c4:d7:c1:3e:cb:08:55:11:3e:
3d:c7:2a:59:f6:8b:1e:1a:63:09:fc:ff:74:b8:f1:
6f:9a:b7:56:52:71:63:c6:f1:99:55:83:c2:f2:44:
eb:66:fd:60:37:f2:1c:4e:48:b9:af:6e:94:0a:3c:
ce:d5:89:27:f7:25:6c:2c:1e:38:13:e2:50:0a:db:
87:41:29:ef:0f:ee:fb:f4:d5:d3:50:8d:91:b1:3d:
88:ec:b3:47:e9:b8:33:59:36:69:b2:c7:75:47:27:
76:4a:87:5a:9a:05:4d:6c:db:ac:e7:cb:6c:4f:da:
26:df:81:a8:4a:81:8f:44:fd:d8:07:e8:97:88:04:
86:45:88:dd:10:ec:49:05:37:6e:b1:c9:85:f1:28:
48:bd:a8:a5:c8:cc:21:61:c0:2a:87:c1:08:93:bc:
01:46:a9:53:b3:6c:b3:1e:6e:6f:e5:22:79:b1:b5:
31:1e:ce:0b:5e:dc:64:68:c5:bc:be:d5:76:f7:4b:
20:fd:53:6e:bb:aa:30:7e:05:f9:0b:41:70:f4:ca:
df:c5:55:a3:8a:8d:29:7c:09:f9:44:c0:35:10:0b:
47:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5A:61:6B:63:C3:C3:98:7D:EE:9B:0B:29:2F:2C:57:8E:3E:3B:96
X509v3 Authority Key Identifier:
keyid:A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/rVpha2PDw5h97psLKS8sV44-O5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.2.192.0/18
185.28.100.0/22
185.129.136.0/22
195.181.208.0/20
IPv6:
2001:15e8::/32
Signature Algorithm: sha256WithRSAEncryption
1d:5e:fe:f0:0e:f1:2d:56:79:96:a6:da:e3:32:d5:de:87:0d:
8c:40:b9:4c:e9:2a:40:ce:89:a6:43:63:32:b8:8c:ff:db:29:
d0:3a:58:21:8a:dc:b9:08:4c:7e:da:0b:da:cf:1f:f2:91:bd:
04:8e:fc:18:ac:70:5d:72:34:73:a1:4a:b4:ae:35:81:b5:f6:
13:7f:48:1c:a6:31:83:ff:d1:c9:ea:3e:ba:04:b5:47:55:31:
a6:b2:e6:19:48:12:4b:76:f7:25:72:0b:73:6b:86:ea:bd:08:
bf:66:b5:1c:62:bf:e0:4e:7a:82:2f:02:9e:a3:b5:ba:3f:84:
d2:e6:03:af:27:ff:f4:5d:0a:1d:8d:31:b1:90:3d:f2:b7:75:
83:27:6c:f1:0b:55:54:f7:86:0b:c3:dd:51:c6:d8:a6:15:a1:
bd:a6:e5:de:b2:93:03:e3:bc:6b:90:49:1a:4e:db:c5:6a:ad:
1a:bd:28:e4:1a:6d:47:c8:3b:99:a1:62:2c:d6:81:86:ef:df:
4f:53:68:a1:2e:13:72:26:1b:a3:ab:f7:9c:fe:d7:43:61:85:
38:d2:51:66:af:12:06:c7:9e:d2:59:7e:0d:89:31:e6:21:52:
e4:14:c9:e2:c3:09:04:1b:d0:05:76:e5:6c:5d:57:40:f0:a1:
fb:96:60:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 16:39:17 2024 by rpki-client on console-ams.rpki-client.org