Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/A_fRrRaVZhvPeeWTwjL1xHP2KEw.roa
File: A_fRrRaVZhvPeeWTwjL1xHP2KEw.roa (raw, json)
Hash identifier: 2otm8DpSoKtMUkXeVleVYHxEWwltE23mhySKeWZ8m9Y=
Subject key identifier: 03:F7:D1:AD:16:95:66:1B:CF:79:E5:93:C2:32:F5:C4:73:F6:28:4C
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018F37CD5D86942F9FEBD72998FE422949F0
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/A_fRrRaVZhvPeeWTwjL1xHP2KEw.roa
Signing time: Thu 02 May 2024 05:35:56 +0000
ROA not before: Thu 02 May 2024 05:35:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47596
IP address blocks: 185.120.56.0/24 maxlen: 24
185.120.57.0/24 maxlen: 24
185.120.58.0/24 maxlen: 24
185.120.59.0/24 maxlen: 24
212.22.64.0/24 maxlen: 24
212.22.77.0/24 maxlen: 24
2a06:c3c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Jul 2024 06:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:37:cd:5d:86:94:2f:9f:eb:d7:29:98:fe:42:29:49:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 2 05:35:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03f7d1ad1695661bcf79e593c232f5c473f6284c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:12:40:87:5d:ae:17:60:15:5a:9a:10:a1:4c:
5c:96:bb:4f:69:80:0f:aa:52:79:52:29:62:23:01:
15:8e:3b:99:9a:ed:d1:d6:be:7e:4d:db:c9:20:66:
5d:81:78:c0:cf:74:9e:4b:a5:f6:36:e0:48:2e:8c:
56:b5:64:cf:e9:b2:d4:bf:e2:0b:82:7c:26:3c:bc:
08:2d:c6:03:ff:33:95:2e:28:eb:dc:08:97:5b:6e:
30:bb:4c:5d:f3:2a:de:2c:af:48:46:6d:e4:cd:1a:
fd:01:45:d6:03:f8:7d:13:1c:03:0e:93:93:4f:65:
66:39:f9:ad:9c:cc:bc:38:9e:ea:17:d1:00:7d:f4:
e4:72:27:dd:d1:75:79:52:d1:57:0c:72:e8:db:5e:
3e:cd:51:0a:aa:4d:d8:f2:23:b8:40:24:fe:48:1f:
bc:17:23:85:20:09:d9:e9:3c:bb:98:f5:a3:02:71:
97:9a:0b:87:94:e4:c6:66:61:66:bd:8d:b4:2c:17:
53:69:3b:c6:cb:35:b4:d0:fd:bc:d4:62:bb:30:33:
16:8a:57:f7:74:d9:66:16:73:d6:cf:d5:92:f8:9c:
e8:fe:1d:39:25:43:86:e0:89:76:b7:74:24:73:94:
c5:34:48:62:fa:19:12:43:9f:1b:90:d0:0d:16:f0:
75:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F7:D1:AD:16:95:66:1B:CF:79:E5:93:C2:32:F5:C4:73:F6:28:4C
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/A_fRrRaVZhvPeeWTwjL1xHP2KEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.56.0/22
212.22.64.0/24
212.22.77.0/24
IPv6:
2a06:c3c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
2b:c6:fd:fb:fd:14:8d:69:ee:b5:cc:fe:47:ca:3b:e3:ac:3c:
d1:fe:6b:52:89:ab:f0:cc:d3:10:3d:10:72:68:83:61:41:ac:
0e:13:10:51:10:16:be:06:01:0b:66:78:e1:2b:ae:a8:a6:fb:
3d:d4:40:50:7d:b3:e4:9b:17:cc:b9:4f:ad:51:67:ad:d7:85:
33:7f:d9:1a:55:bc:d5:1e:8a:c0:e4:f2:8d:f6:63:e1:47:08:
ab:25:d7:82:4d:19:dc:b4:dc:6e:56:ea:c9:04:11:79:9b:1a:
fe:d4:12:7b:33:b2:af:bd:bf:90:7b:fe:62:b0:d9:78:b6:39:
e1:d5:a5:e2:fa:7d:8b:2c:52:4c:85:a0:00:be:ce:ae:54:7c:
b4:8c:6f:df:fd:c5:72:40:df:af:c6:bc:ec:64:51:40:f3:b9:
78:7b:bc:4c:20:14:f5:67:05:73:60:40:59:71:65:f2:6d:67:
b1:26:f9:78:67:d9:d7:10:31:f8:e9:24:93:df:a1:8a:11:c2:
6b:a9:fa:18:38:0a:dc:9c:b8:4d:6a:3f:ca:3d:61:a4:2e:89:
3c:45:60:e4:bd:49:d5:84:a1:6f:9a:92:3e:ad:57:f0:4a:bb:
a3:e6:bb:85:62:95:79:48:92:70:4d:6b:a1:e1:c1:c7:fa:c9:
b6:7c:fd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 08:08:13 2024 by rpki-client on console-fra.rpki-client.org