Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/eGhft67b0YKmrvooNLz6HwnwJsI.roa
File: eGhft67b0YKmrvooNLz6HwnwJsI.roa (raw, json)
Hash identifier: 4mdqZLy6SYgQXn1GG6Jpuub7QAcTBCk/EDlYgvtc0Pk=
Subject key identifier: 78:68:5F:B7:AE:DB:D1:82:A6:AE:FA:28:34:BC:FA:1F:09:F0:26:C2
Certificate issuer: /CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Certificate serial: 0189FE90B7A8E29AA83EFE809536269F2773
Authority key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/eGhft67b0YKmrvooNLz6HwnwJsI.roa
Signing time: Wed 16 Aug 2023 13:37:24 +0000
ROA not before: Wed 16 Aug 2023 13:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43926
IP address blocks: 185.182.152.0/24 maxlen: 24
185.182.155.0/24 maxlen: 24
185.182.154.0/24 maxlen: 24
185.182.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 14:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:90:b7:a8:e2:9a:a8:3e:fe:80:95:36:26:9f:27:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Validity
Not Before: Aug 16 13:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78685fb7aedbd182a6aefa2834bcfa1f09f026c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:c4:61:58:34:d3:d2:d8:63:d8:51:76:f3:
fc:e5:5e:21:b8:e2:14:08:b8:20:e5:6d:61:5f:fc:
83:07:fb:15:e2:27:db:57:4e:b9:25:49:52:a0:4e:
c9:bd:9b:65:d3:0b:fc:b0:26:f3:4e:c9:d1:2a:76:
dd:79:16:9b:0c:0d:0b:95:74:e7:76:64:db:74:0e:
fa:da:60:d3:41:08:e4:ab:d3:8c:39:95:15:44:eb:
70:02:12:03:59:14:bf:d5:e3:31:fe:d2:c1:ca:2b:
44:8d:22:4a:85:b9:02:76:c4:5e:5a:0c:01:b2:df:
47:b2:d4:75:79:bc:62:a5:69:e3:db:a0:b9:47:e3:
d5:49:b2:68:24:93:46:b6:93:f7:0e:2f:e7:ac:31:
43:e7:95:c7:8d:9e:27:44:6d:d8:e1:00:5d:ba:01:
87:83:9b:15:2c:aa:e8:dd:bd:4e:59:ec:b0:22:f1:
36:a7:ea:2e:91:d0:4e:79:21:da:79:ce:51:9c:fc:
b8:27:e3:16:ee:ee:e4:54:38:14:44:2c:a6:d7:cd:
36:2b:53:21:91:95:c3:e8:b8:40:07:2f:2e:7d:b9:
fb:a0:b2:0a:46:a0:d8:22:f5:16:e3:86:1c:58:ea:
77:ed:b6:ad:26:78:a8:f5:02:d2:47:dd:94:19:3a:
db:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:68:5F:B7:AE:DB:D1:82:A6:AE:FA:28:34:BC:FA:1F:09:F0:26:C2
X509v3 Authority Key Identifier:
keyid:5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/eGhft67b0YKmrvooNLz6HwnwJsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.152.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:5b:25:2f:5c:a2:f3:a2:27:08:c9:df:5b:fd:d9:d3:be:27:
91:8c:7c:b8:7b:c3:04:d0:7f:d9:64:2c:87:fa:25:5d:2a:ff:
2d:c8:5a:cd:7c:51:0b:0c:ca:e9:05:bc:e6:b1:18:c5:46:96:
de:cf:b2:fc:83:7d:64:5f:51:0b:a1:45:e5:27:8c:e7:33:52:
8f:e2:04:7f:1c:da:1a:84:6c:d9:62:9f:c4:fb:c3:2d:35:b3:
4c:01:77:1e:f6:7e:a0:fd:31:d5:77:ca:b6:5e:97:cd:5e:9a:
60:f1:22:6b:e4:8c:ac:82:4d:37:74:f6:29:e2:6e:94:fa:dc:
26:af:d8:f2:30:09:b0:53:69:94:2c:87:2a:4a:52:ea:38:eb:
28:d8:77:4a:cf:4c:23:65:6c:3f:cd:4f:34:10:81:ec:51:c6:
0c:93:c4:2a:58:34:d0:a3:34:4b:44:e2:1a:b9:ce:80:44:bb:
9f:86:23:d4:6f:a7:25:43:b2:26:8f:b4:85:d5:06:4d:f7:46:
8d:6d:9c:dc:c8:14:1b:04:07:a6:7f:64:26:c4:6b:92:2c:39:
6c:63:64:27:bf:d3:34:21:2f:2f:2c:f9:18:65:2b:ae:cc:f3:
b0:2d:e7:49:42:57:5c:af:81:66:90:da:0f:51:08:52:e5:43:
1e:0d:c1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:22 2024 by rpki-client on console-fra.rpki-client.org