Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/8Da8L6V3Urq2czLHxJmD2nXqrDE.roa
File: 8Da8L6V3Urq2czLHxJmD2nXqrDE.roa (raw, json)
Hash identifier: l02HGWf/AQgCbAPZ+yxphZtIMCHZ71nFKYf/D+B8Tik=
Subject key identifier: F0:36:BC:2F:A5:77:52:BA:B6:73:32:C7:C4:99:83:DA:75:EA:AC:31
Certificate issuer: /CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Certificate serial: 01856F549FFBCD237416F2EFE025688A76AB
Authority key identifier: 4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/8Da8L6V3Urq2czLHxJmD2nXqrDE.roa
Signing time: Sun 01 Jan 2023 21:54:54 +0000
ROA not before: Sun 01 Jan 2023 21:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57976
IP address blocks: 137.221.64.0/18 maxlen: 24
37.244.0.0/18 maxlen: 24
185.60.112.0/22 maxlen: 24
5.42.160.0/19 maxlen: 24
2a04:e800::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:9f:fb:cd:23:74:16:f2:ef:e0:25:68:8a:76:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Validity
Not Before: Jan 1 21:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f036bc2fa57752bab67332c7c49983da75eaac31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:98:e4:c7:94:7b:87:d6:c0:aa:93:b9:7b:9f:
60:55:66:c6:41:0b:01:1f:15:ad:aa:66:31:47:da:
39:9c:95:34:38:d9:a8:59:ba:ed:f7:75:72:33:7d:
a8:31:c9:c1:21:2d:b1:41:17:01:bf:9a:5b:58:a3:
6a:48:ee:9a:6a:b9:26:4b:19:33:8b:26:52:54:c6:
08:54:dc:7d:6b:bb:ab:ea:1b:77:15:39:6a:fe:e8:
f3:b4:7d:fd:fd:cc:74:43:79:64:9f:22:87:62:91:
a9:e7:1a:bf:a5:8f:57:14:c1:31:96:e7:dd:40:64:
94:58:f5:5e:e4:94:00:ea:2e:ab:b1:ad:e4:2d:0d:
9d:90:9a:50:de:e0:2e:86:4f:c4:c1:dc:2a:39:a1:
09:16:47:1b:0a:6d:88:9d:9c:6a:a8:13:81:0e:eb:
a5:fe:e7:89:50:b8:75:f9:2c:89:bf:1f:14:14:8e:
93:3c:4f:fc:94:0e:7a:70:bd:77:d7:4f:f3:59:16:
37:a8:44:90:3d:b4:32:45:07:1c:96:4f:cb:2c:4a:
73:1b:32:17:21:4c:bd:ad:3f:76:74:7b:02:62:34:
2f:bb:ef:0c:5d:04:92:01:e2:4d:6a:1f:a3:22:d2:
68:5d:57:a5:da:9a:49:61:15:ad:00:19:8d:0b:c2:
56:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:36:BC:2F:A5:77:52:BA:B6:73:32:C7:C4:99:83:DA:75:EA:AC:31
X509v3 Authority Key Identifier:
keyid:4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/8Da8L6V3Urq2czLHxJmD2nXqrDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/S_P7j_jdr9qJ2zlwX3j2QY79H-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.160.0/19
37.244.0.0/18
137.221.64.0/18
185.60.112.0/22
IPv6:
2a04:e800::/29
Signature Algorithm: sha256WithRSAEncryption
2c:d1:10:4a:d9:a7:47:45:c0:92:12:7a:d3:29:f3:94:5a:83:
93:5f:30:f5:aa:65:fc:68:24:8c:72:88:db:9f:ac:91:2c:2e:
d7:a6:9d:76:2c:c2:88:fd:19:3e:65:4e:63:ed:d3:f2:e9:f1:
20:a5:96:9d:b0:cd:0e:fc:df:67:f2:6a:c6:a9:17:6c:f8:19:
2d:07:ee:5b:bc:1b:22:99:ee:f1:0f:77:54:4c:f9:23:1d:01:
79:dc:2c:5e:17:f8:ed:43:88:52:c9:70:94:14:3a:a1:9f:f1:
e3:4d:39:42:29:b0:3e:83:0b:e0:db:b9:cd:87:e3:b0:a8:4f:
f9:fa:ec:2e:4a:b9:64:2c:1b:cf:42:ea:fc:17:bb:e4:af:d6:
7b:be:4f:90:d1:02:f7:e5:3d:64:0f:e9:07:18:6e:cc:17:9e:
68:51:f8:2c:29:46:2c:b1:e3:3b:07:01:95:be:a1:7c:77:61:
fa:07:a3:f6:97:84:b5:f0:33:f0:22:25:8e:6b:0c:1a:23:7e:
cb:76:c1:6d:88:e0:68:05:16:53:61:c1:76:10:69:c2:5e:9c:
71:a4:30:54:04:c4:a9:9a:1a:17:2a:b2:c8:c9:69:70:7e:f4:
58:bf:5d:98:ce:bf:d4:3e:e1:16:31:5e:53:e4:dc:68:14:8d:
85:b0:dd:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org