Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b8cc66-cc65-4dc2-ae86-61c1ecaab55f/1/4KNEoReuKvFDNlNe-Jd6b8RAS9A.roa
File: 4KNEoReuKvFDNlNe-Jd6b8RAS9A.roa (raw, json)
Hash identifier: 4z0ykmNKYPgFhgna/6blQFKUOtamJUoUX/ZjT0vAS70=
Subject key identifier: E0:A3:44:A1:17:AE:2A:F1:43:36:53:5E:F8:97:7A:6F:C4:40:4B:D0
Certificate issuer: /CN=e283c4ad2fd8724a8c7d5eaf431814cb3d15127e
Certificate serial: 0192AB1F6F8FDD121A2019EF0392D5F5BA85
Authority key identifier: E2:83:C4:AD:2F:D8:72:4A:8C:7D:5E:AF:43:18:14:CB:3D:15:12:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oPErS_YckqMfV6vQxgUyz0VEn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b8cc66-cc65-4dc2-ae86-61c1ecaab55f/1/4KNEoReuKvFDNlNe-Jd6b8RAS9A.roa
Signing time: Sun 20 Oct 2024 18:10:16 +0000
ROA not before: Sun 20 Oct 2024 18:10:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200849
IP address blocks: 185.92.200.0/24 maxlen: 24
185.92.201.0/24 maxlen: 24
185.92.202.0/24 maxlen: 24
185.92.203.0/24 maxlen: 24
2a03:8d20::/32 maxlen: 32
2a03:8d20:1186::/48 maxlen: 48
2a03:8d20:2282::/48 maxlen: 48
2a03:8d20:7286::/48 maxlen: 48
2a03:8d20:9000::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 20 Oct 2024 19:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ab:1f:6f:8f:dd:12:1a:20:19:ef:03:92:d5:f5:ba:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e283c4ad2fd8724a8c7d5eaf431814cb3d15127e
Validity
Not Before: Oct 20 18:10:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0a344a117ae2af14336535ef8977a6fc4404bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c8:7c:53:64:68:23:c8:00:0c:c8:09:04:4d:
ab:14:f8:24:3a:3b:16:c0:10:ce:95:c8:64:a7:45:
75:c9:46:19:f6:30:91:10:35:48:c7:7c:d7:d2:18:
92:48:d1:ef:b3:2a:3a:16:dc:4f:5d:26:35:41:43:
62:6b:02:e8:39:39:21:9d:6b:43:66:b4:7f:5e:0f:
80:9c:39:c7:1e:fb:ac:48:ce:cc:1b:4e:4e:18:2a:
f8:d1:9e:45:fd:ca:11:2c:44:71:82:0e:34:93:b7:
64:45:8d:39:b6:6b:2a:e7:41:9c:9f:7e:09:16:4c:
5b:19:d1:0b:60:55:c1:1a:e2:2a:cd:13:dd:16:63:
95:de:25:04:cf:ac:3e:af:da:05:2c:f6:13:59:12:
ba:14:fb:f4:48:b8:a6:1a:cf:b3:b4:e7:59:a8:3f:
ca:6b:7d:ad:8c:d5:ed:b5:c8:9f:82:44:7f:64:e4:
fa:08:ef:06:50:8d:35:ad:0d:64:98:52:83:85:78:
d3:26:40:92:d2:55:92:3d:b0:c6:ab:a7:12:d1:4e:
09:22:dd:8e:9d:32:ca:ce:11:c8:e2:80:04:97:b4:
90:79:88:a3:31:8d:d3:23:69:b4:2a:40:ea:24:2e:
b8:20:6c:f3:8a:62:c3:82:1b:53:97:d1:e7:40:f4:
4f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A3:44:A1:17:AE:2A:F1:43:36:53:5E:F8:97:7A:6F:C4:40:4B:D0
X509v3 Authority Key Identifier:
keyid:E2:83:C4:AD:2F:D8:72:4A:8C:7D:5E:AF:43:18:14:CB:3D:15:12:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oPErS_YckqMfV6vQxgUyz0VEn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b8cc66-cc65-4dc2-ae86-61c1ecaab55f/1/4KNEoReuKvFDNlNe-Jd6b8RAS9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b8cc66-cc65-4dc2-ae86-61c1ecaab55f/1/4oPErS_YckqMfV6vQxgUyz0VEn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.200.0/22
IPv6:
2a03:8d20::/32
Signature Algorithm: sha256WithRSAEncryption
0b:13:9b:a7:d1:fc:99:b1:3c:e6:5e:df:8e:20:75:e5:1f:8a:
db:f5:92:54:c1:73:86:62:9e:a0:8f:21:c3:e8:5b:45:ea:71:
12:3c:e5:29:93:00:55:56:58:ac:b7:41:8b:23:88:39:7f:fc:
52:c2:b9:66:8d:a2:9a:22:0a:95:be:e5:ac:07:ae:88:9f:a3:
58:62:e8:d7:78:53:76:57:84:c9:a6:a5:20:67:aa:47:04:e0:
66:a8:4f:d5:1b:79:1f:40:df:ab:cb:fb:52:5b:be:99:06:47:
6b:c3:ca:20:d8:e1:2b:fe:e8:c3:95:a1:73:b4:22:86:43:31:
f4:62:d9:b4:27:46:0b:77:14:66:21:66:88:91:99:1e:44:75:
22:71:ce:87:17:cf:03:e9:b9:16:c2:1a:7d:4d:30:e2:cf:dd:
f3:f6:ac:74:fd:9d:0d:76:d4:c0:dd:45:51:a3:e1:cc:d7:c2:
63:68:af:23:10:09:23:a2:12:67:ab:cb:73:3e:aa:69:bd:96:
97:be:66:15:d4:57:0d:aa:03:2f:f9:30:6a:45:55:7d:82:52:
12:81:f0:4a:44:43:06:62:74:b1:61:12:99:26:cc:8c:3c:b6:
ca:64:69:1b:ae:5b:5a:fb:07:f6:55:5e:b6:62:87:3b:a2:2b:
0e:01:3f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 21:28:25 2024 by rpki-client on console-ams.rpki-client.org