Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Df3w4fuL13np4Dg5PaIgPkWyMU.roa
File: 8Df3w4fuL13np4Dg5PaIgPkWyMU.roa (raw, json)
Hash identifier: Yuue6ad9b4DRiZxEqp6GJnTxMpm4OWbtoJ+IguS9eCY=
Subject key identifier: F0:37:F7:C3:87:EE:2F:5D:E7:A7:80:E0:E4:F6:88:80:F9:16:C8:C5
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018AACFD35E792C065C5D960FFC172228B2D
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Df3w4fuL13np4Dg5PaIgPkWyMU.roa
Signing time: Tue 19 Sep 2023 10:29:50 +0000
ROA not before: Tue 19 Sep 2023 10:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 185.95.228.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 11:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:fd:35:e7:92:c0:65:c5:d9:60:ff:c1:72:22:8b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Sep 19 10:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f037f7c387ee2f5de7a780e0e4f68880f916c8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d6:32:cd:10:59:eb:8d:d7:f4:3c:d2:cf:5f:
e9:9b:13:d3:53:ee:16:a0:2f:44:6e:a0:b7:d5:2d:
6f:41:0f:e9:be:79:ce:f5:07:90:04:32:6e:0c:7b:
4f:25:c4:f9:34:85:e7:41:23:51:7f:d8:6b:84:72:
9d:21:d6:bc:91:a7:90:59:ae:8f:24:a2:c9:1c:78:
1e:22:c7:74:c7:70:d2:1e:4c:7a:d3:e9:73:b9:4c:
41:ac:f7:91:6a:56:e9:3a:71:35:a5:aa:0d:92:c8:
c8:ee:02:22:f0:94:7d:00:d1:d2:5b:29:fa:fa:0e:
9d:42:59:3a:c1:cd:64:87:96:8c:d4:ad:61:21:10:
fc:4c:22:aa:af:45:90:db:cc:71:18:78:1b:31:0a:
52:34:c9:05:33:a1:df:6c:18:a1:09:d9:25:15:67:
bf:af:22:b3:38:7e:b8:bd:09:c6:d2:b1:f1:d0:19:
be:63:b1:71:2a:52:b7:1f:7f:93:9b:f2:9e:df:e9:
34:f3:29:27:fb:65:a8:d0:97:05:d4:75:b9:54:a4:
84:67:dc:e8:8d:65:93:74:6d:a2:32:a5:ff:d1:20:
98:c0:1e:78:77:58:7c:e1:44:cb:f1:f3:b1:47:02:
76:5e:1c:66:7e:05:c7:af:76:31:0e:72:0e:8f:f5:
a5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:37:F7:C3:87:EE:2F:5D:E7:A7:80:E0:E4:F6:88:80:F9:16:C8:C5
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8Df3w4fuL13np4Dg5PaIgPkWyMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.132.0/24
185.77.138.0/23
185.95.228.0/24
185.105.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:bb:77:0d:36:a6:11:26:72:5f:e4:cd:43:7e:7b:2e:3c:d7:
e1:c2:e7:37:6c:d5:41:47:f3:1d:84:a7:88:82:7c:96:14:6a:
82:af:fa:71:6a:91:98:d9:b4:11:d4:4e:59:d7:b0:e1:7f:26:
de:b1:d1:9d:e4:0c:80:54:01:c6:0b:f5:97:f5:fd:ec:67:77:
fb:92:f6:a7:da:a3:a3:21:9a:6a:af:56:51:ef:42:b0:7b:dc:
96:5c:06:2a:40:62:bf:06:32:6e:da:d1:a0:27:19:76:19:58:
46:0f:16:5a:b9:54:75:1e:d0:ea:0a:ce:ac:4c:7f:a5:97:35:
5d:af:92:9c:09:0e:42:5d:f2:72:84:fb:f9:20:af:70:29:c3:
57:be:b6:60:78:0e:c9:fb:a1:f6:b9:4f:67:3a:1c:f1:a1:25:
6b:1c:e1:d7:ff:35:1d:c3:42:45:55:41:24:f1:eb:74:d2:b5:
60:c7:ea:95:73:8d:b7:3f:47:4f:0c:e0:b7:5f:ee:74:a7:62:
78:a7:9b:4f:92:33:69:ea:34:21:7a:7a:c3:8c:18:b1:a7:51:
51:d7:1c:a7:16:14:5e:44:ec:d9:61:23:05:c0:32:38:58:0b:
71:d3:97:84:7c:ee:f7:78:2a:9a:39:78:29:29:d8:1c:31:d3:
4d:cd:ea:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org