Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/mZ1UJIsiIAqpOSHkqCbSJFP_iUA.roa
File: mZ1UJIsiIAqpOSHkqCbSJFP_iUA.roa (raw, json)
Hash identifier: lv6bm1aCifCc/lyZF5GjucesGgJWmRltrVKbf291yYI=
Subject key identifier: 99:9D:54:24:8B:22:20:0A:A9:39:21:E4:A8:26:D2:24:53:FF:89:40
Certificate issuer: /CN=ed64691c31892cc991ad4e9a9671147759e417ab
Certificate serial: 0187C2BCBC5D1464EF02DF5EFC8F6FB271C0
Authority key identifier: ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/mZ1UJIsiIAqpOSHkqCbSJFP_iUA.roa
Signing time: Thu 27 Apr 2023 12:42:41 +0000
ROA not before: Thu 27 Apr 2023 12:42:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8218
IP address blocks: 185.75.241.0/24 maxlen: 24
2a05:5504:3::/48 maxlen: 48
2a05:5504:6::/48 maxlen: 48
2a05:5504:9::/48 maxlen: 48
2a05:5504:11::/48 maxlen: 48
2a05:5504:1::/48 maxlen: 48
2a05:5504:4::/48 maxlen: 48
2a05:5504:7::/48 maxlen: 48
2a05:5504:2::/48 maxlen: 48
2a05:5504:5::/48 maxlen: 48
2a05:5504:8::/48 maxlen: 48
2a05:5504:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jul 2023 09:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:bc:bc:5d:14:64:ef:02:df:5e:fc:8f:6f:b2:71:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed64691c31892cc991ad4e9a9671147759e417ab
Validity
Not Before: Apr 27 12:42:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=999d54248b22200aa93921e4a826d22453ff8940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:17:17:bb:9f:16:49:f1:1e:e7:76:6f:24:7d:
28:aa:2e:af:8f:1c:a3:12:26:f1:c3:f7:33:41:18:
76:ae:4f:6a:a0:01:63:c6:c5:1d:01:91:e1:46:07:
57:1a:a5:ba:66:cf:b1:fa:3b:97:8a:1e:f8:e8:87:
c4:6c:42:0b:31:21:0c:63:47:32:73:34:69:aa:7c:
6e:1b:0f:c1:cc:34:90:03:1c:5f:06:e9:b1:fd:5d:
04:e0:77:be:89:16:f1:76:82:41:0e:2b:d5:a9:c4:
f8:f0:f1:0e:b9:05:fb:1c:be:dd:a6:1a:85:bf:50:
85:b5:25:38:61:6b:26:d5:f3:20:05:62:2b:20:a3:
0d:bb:ad:fa:90:56:5d:1e:9f:09:34:57:17:2f:2e:
5c:e7:01:b4:8b:a5:78:82:11:a9:31:5e:72:35:f7:
3e:46:84:b3:42:7e:11:da:cc:93:5d:12:5a:ee:1f:
49:2e:35:39:51:ba:1f:a6:c3:05:63:4f:1b:c0:31:
3f:1b:a5:df:58:5a:f2:79:d1:22:21:07:79:ba:b1:
e6:2d:f6:ae:39:57:d7:40:47:e6:5a:e4:15:6b:fb:
14:97:46:58:d6:9d:97:94:7f:7f:4f:88:9a:d6:a9:
cc:98:e5:11:38:f0:ee:bf:25:5f:bd:2c:91:ce:18:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9D:54:24:8B:22:20:0A:A9:39:21:E4:A8:26:D2:24:53:FF:89:40
X509v3 Authority Key Identifier:
keyid:ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/mZ1UJIsiIAqpOSHkqCbSJFP_iUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/7WRpHDGJLMmRrU6alnEUd1nkF6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.241.0/24
IPv6:
2a05:5504:1::-2a05:5504:9:ffff:ffff:ffff:ffff:ffff
2a05:5504:10::/47
Signature Algorithm: sha256WithRSAEncryption
6d:dd:2b:e3:9a:26:3b:c7:e3:1f:e4:e9:0c:5d:0d:0c:d7:42:
f1:84:61:b0:e6:2a:75:bb:00:03:84:db:3f:ac:3a:24:60:47:
80:20:f2:ab:6f:0f:eb:ea:df:56:cc:6c:6f:d8:99:1a:1a:9c:
be:3e:a7:52:bb:61:52:5a:ee:3c:b4:4a:12:f9:e4:bf:77:b4:
77:04:3d:62:1e:d3:16:57:79:20:04:c1:93:12:db:90:ea:d3:
fb:96:53:5d:1b:16:81:3d:f8:1f:91:61:cf:f3:43:74:7a:67:
4e:2e:ff:92:06:f1:62:d2:91:f5:19:17:13:03:09:03:3f:c4:
42:6b:cc:e4:81:bb:69:91:88:9c:44:63:2b:50:3c:bd:4c:41:
3d:3d:b7:37:d7:c6:99:c3:67:93:41:87:87:ec:f6:97:f2:5b:
f7:3e:4e:ec:72:16:68:af:95:db:89:2b:69:78:4f:f5:de:8a:
dd:fb:cb:3f:56:ca:32:c7:c8:14:67:b9:14:68:3a:6f:1d:a6:
9f:7a:71:57:d4:87:88:f5:f3:53:87:02:8f:75:25:3a:57:a2:
0b:8a:8f:4e:ef:b5:3e:d4:ba:9a:67:3b:d6:07:7d:36:d7:c0:
7a:e7:91:56:3d:4f:cc:b1:78:98:62:2e:2b:b4:a4:20:4a:1d:
29:53:69:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org