Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/EgTM9Yn5CpfpdGH1TDkTGBINaI8.roa
File: EgTM9Yn5CpfpdGH1TDkTGBINaI8.roa (raw, json)
Hash identifier: a/Zcy8lBwvKXDeBR8bg7j7UwZI9wUGdUnJ1q+F4+pKU=
Subject key identifier: 12:04:CC:F5:89:F9:0A:97:E9:74:61:F5:4C:39:13:18:12:0D:68:8F
Certificate issuer: /CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Certificate serial: 018CC349413BACBF559CA0B55DD55F4664B9
Authority key identifier: 3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/EgTM9Yn5CpfpdGH1TDkTGBINaI8.roa
Signing time: Mon 01 Jan 2024 04:30:07 +0000
ROA not before: Mon 01 Jan 2024 04:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134433
IP address blocks: 185.71.229.0/24 maxlen: 24
185.71.230.0/24 maxlen: 24
185.71.231.0/24 maxlen: 24
185.71.228.0/24 maxlen: 24
185.125.84.0/24 maxlen: 24
185.125.85.0/24 maxlen: 24
193.0.180.0/24 maxlen: 24
185.125.86.0/24 maxlen: 24
193.0.181.0/24 maxlen: 24
185.125.87.0/24 maxlen: 24
193.0.182.0/24 maxlen: 24
193.0.183.0/24 maxlen: 24
2a05:3343:4::/48 maxlen: 48
2a05:3340:140::/42 maxlen: 48
2a05:3340::/42 maxlen: 42
2a05:3343:5::/48 maxlen: 48
2a05:3343:a::/48 maxlen: 48
2a05:3340::/29 maxlen: 64
2a05:3343:c::/48 maxlen: 48
2a05:3343:6::/48 maxlen: 48
2a05:3343:b::/48 maxlen: 48
2a05:3343:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Jun 2024 22:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:41:3b:ac:bf:55:9c:a0:b5:5d:d5:5f:46:64:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Validity
Not Before: Jan 1 04:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1204ccf589f90a97e97461f54c391318120d688f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4a:ca:21:c8:be:d0:67:51:81:6b:08:11:c0:
7c:5a:1d:ca:78:7e:5b:f7:61:a7:09:56:27:f4:db:
9d:67:25:b9:64:ae:62:b6:a2:03:4e:86:e5:c1:53:
85:1e:73:cd:ac:e4:21:a3:80:6d:7c:98:e4:05:a4:
a9:fb:1e:79:f5:6d:52:ad:39:0e:3c:d6:4b:76:15:
54:eb:05:a1:d5:6b:31:ec:18:3a:74:f5:cb:a5:f4:
63:9b:b5:00:61:a8:5c:5e:fd:ce:5b:4d:c4:f9:a9:
d1:8f:7e:89:39:03:9d:d5:57:fe:aa:09:b5:23:ff:
89:01:89:e9:fc:1f:22:a9:9b:1a:c5:8f:69:1e:42:
de:d1:d5:5c:fb:67:e4:36:a8:36:b8:9a:d4:e8:8c:
4e:2f:8b:4d:1c:fe:41:c3:31:2c:e6:6a:49:fd:ce:
2a:27:64:6f:75:e9:7a:29:86:e9:98:a9:c2:1f:e2:
18:0f:39:d4:f5:52:21:ae:6e:56:85:02:13:c2:cd:
a3:d5:6d:ce:8b:a9:e0:cb:dd:99:b7:51:c3:de:51:
78:1a:e8:27:b5:92:51:65:77:23:8d:5b:b0:7a:2e:
3b:3b:cf:17:72:2d:a2:27:bf:57:49:00:4d:4c:41:
db:4b:0d:b2:70:b0:50:57:d8:3c:2b:17:90:56:cc:
15:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:04:CC:F5:89:F9:0A:97:E9:74:61:F5:4C:39:13:18:12:0D:68:8F
X509v3 Authority Key Identifier:
keyid:3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/EgTM9Yn5CpfpdGH1TDkTGBINaI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.228.0/22
185.125.84.0/22
193.0.180.0/22
IPv6:
2a05:3340::/29
Signature Algorithm: sha256WithRSAEncryption
59:1c:18:cd:21:d4:f0:5a:79:75:0d:ca:0c:a4:1b:3a:f7:2a:
89:38:12:01:34:71:dd:2e:95:b9:ca:90:35:ce:23:83:ed:bf:
a9:09:ea:46:c6:b6:51:c2:4a:a1:14:7b:9d:a2:1d:af:ca:78:
0a:67:b3:4c:09:59:d5:9b:63:21:b3:db:2c:8c:6f:41:ec:b4:
07:eb:27:8d:df:81:d1:51:53:1a:dc:66:d8:0e:f7:24:2b:41:
65:57:48:3b:43:f5:a1:94:16:9a:b8:51:3a:f1:21:f9:45:4b:
bb:2b:79:b6:f2:ca:93:a4:b3:c6:be:9c:b8:05:44:83:98:5f:
d2:14:e5:c6:66:60:20:81:bf:93:57:5a:b3:b9:4b:a7:6b:01:
6e:57:53:8e:1a:8e:5e:1d:ae:2d:1d:da:90:33:69:0d:25:17:
36:fa:82:af:66:d4:92:5b:c7:15:4b:5d:af:b6:85:d6:68:fb:
7c:4c:18:60:9e:5c:43:8a:c2:a2:f0:45:d5:62:c4:ee:13:66:
88:fd:8f:b8:8d:89:f2:76:18:e5:7b:46:7c:b2:27:0c:f8:6b:
be:3d:d8:30:fb:5d:b5:5f:90:96:97:f8:7a:d3:36:fc:45:2c:
1c:2c:25:63:13:4a:6c:da:57:93:6c:04:52:b1:b6:09:55:7a:
25:64:bd:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 00:14:24 2024 by rpki-client on console-fra.rpki-client.org