Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1RzPb_qvu1VKFGt59kv_yYqV5Kg.roa
File: 1RzPb_qvu1VKFGt59kv_yYqV5Kg.roa (raw, json)
Hash identifier: Ks1mnFXb94WqAg37Tz7eNDnMPiehZHp9Fo855AG6oJA=
Subject key identifier: D5:1C:CF:6F:FA:AF:BB:55:4A:14:6B:79:F6:4B:FF:C9:8A:95:E4:A8
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018CC5DCC0E20688FA80A66E28AC49892FB3
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1RzPb_qvu1VKFGt59kv_yYqV5Kg.roa
Signing time: Mon 01 Jan 2024 16:30:27 +0000
ROA not before: Mon 01 Jan 2024 16:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199152
IP address blocks: 185.120.58.0/24 maxlen: 24
185.120.57.0/24 maxlen: 24
185.120.56.0/24 maxlen: 24
185.120.59.0/24 maxlen: 24
212.22.64.0/24 maxlen: 24
212.22.77.0/24 maxlen: 24
212.22.75.0/24 maxlen: 24
185.255.179.0/24 maxlen: 24
185.255.178.0/24 maxlen: 24
2a06:c3c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 May 2024 05:35:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:c0:e2:06:88:fa:80:a6:6e:28:ac:49:89:2f:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 16:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d51ccf6ffaafbb554a146b79f64bffc98a95e4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:09:51:5a:e4:81:91:a2:bf:99:7d:da:33:22:
ed:ad:40:df:38:cf:6e:70:36:32:d3:dc:bd:e5:9d:
6a:47:8c:ad:52:27:8f:6d:c1:04:23:f2:8c:7a:4b:
da:a3:c6:a3:26:23:8c:1a:4d:25:d8:11:f2:e7:a1:
ab:dd:7c:b3:13:93:af:bc:47:42:30:42:8a:28:e6:
49:81:0c:6f:89:71:ce:f2:3c:4d:21:24:60:a2:19:
0f:3a:ae:42:49:14:22:f1:b7:1c:b2:ed:3c:e0:3c:
c6:38:c0:87:40:4f:6f:cc:0d:4b:07:e6:ce:07:fc:
79:aa:00:8e:0e:49:fa:a8:67:d2:9d:c9:43:32:d8:
5a:c7:fd:d8:39:96:0a:f0:9d:05:ac:77:31:f3:6c:
4b:4b:e2:7f:f6:bc:48:70:ce:3b:7f:50:a0:05:8b:
3c:5d:fe:13:3c:d5:24:22:76:e6:64:34:db:45:d7:
0a:ad:bf:5b:5a:da:5b:29:42:13:4a:3d:a8:59:7d:
b2:18:f7:63:ef:d2:bc:47:a8:3a:1e:be:e8:ee:68:
aa:0a:f5:41:ec:0a:fc:ed:9c:45:9c:89:a5:73:33:
15:2d:bf:78:52:a6:6f:5a:7d:49:50:12:64:6a:d7:
84:89:aa:73:e5:db:63:35:76:44:61:d8:3c:24:09:
0a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:1C:CF:6F:FA:AF:BB:55:4A:14:6B:79:F6:4B:FF:C9:8A:95:E4:A8
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1RzPb_qvu1VKFGt59kv_yYqV5Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.56.0/22
185.255.178.0/23
212.22.64.0/24
212.22.75.0/24
212.22.77.0/24
IPv6:
2a06:c3c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
80:df:f6:b5:44:9d:b9:68:69:50:1b:c5:87:1e:a7:bd:cc:4a:
fe:62:49:34:ba:5f:9f:8f:ca:84:5f:03:70:08:b9:43:ec:ee:
45:87:64:b8:ed:ef:da:21:f6:60:89:44:4f:fa:a8:12:07:93:
0e:97:6f:24:0b:14:71:3a:64:7c:44:98:a8:19:10:f3:69:3e:
29:45:b9:7a:8e:a0:05:94:0c:c7:de:cf:28:0c:bd:bf:18:71:
25:6e:83:4e:ab:9d:df:5f:0b:69:d3:55:2e:d9:30:ac:d9:fb:
ac:04:e3:52:78:4a:30:a6:a3:fa:82:ee:f2:ba:00:67:a0:6d:
e8:e3:07:46:ed:9f:de:f4:db:fb:3c:01:f9:c6:e9:7a:47:1e:
30:95:de:03:24:06:bb:63:eb:d4:c1:d6:b1:83:eb:79:68:13:
61:a8:03:de:0a:05:aa:50:2e:57:19:b2:37:05:72:8f:94:b7:
99:f3:ac:4c:41:81:ed:7c:81:e2:98:53:43:67:cf:fe:a9:e0:
ab:e4:a9:2a:2a:08:75:be:e7:fe:12:7f:55:ca:17:40:15:53:
45:19:2e:fe:6a:a9:94:9c:06:7b:3b:b3:67:e5:48:99:18:d1:
fe:d2:6b:d9:78:3b:2e:a9:b8:63:ff:7b:7c:dc:72:95:ae:28:
43:cd:5e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 09:25:11 2024 by rpki-client on console-ams.rpki-client.org