Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Lks9uuUt-qSDveOPJn9ZMYROlSM.roa
File: Lks9uuUt-qSDveOPJn9ZMYROlSM.roa (raw, json)
Hash identifier: O4HQQISiIjJ3qgB56eVRkLSRuudR4Zq3lf4G5Mis5C8=
Subject key identifier: 2E:4B:3D:BA:E5:2D:FA:A4:83:BD:E3:8F:26:7F:59:31:84:4E:95:23
Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Certificate serial: 018D375BAE18BF7F4FEB2028372FEFE184FD
Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Lks9uuUt-qSDveOPJn9ZMYROlSM.roa
Signing time: Tue 23 Jan 2024 17:26:11 +0000
ROA not before: Tue 23 Jan 2024 17:26:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201021
IP address blocks: 185.28.60.0/24 maxlen: 24
185.28.61.0/24 maxlen: 24
185.28.62.0/24 maxlen: 24
185.28.63.0/24 maxlen: 24
185.103.196.0/24 maxlen: 24
185.103.197.0/24 maxlen: 24
185.103.198.0/24 maxlen: 24
185.106.20.0/24 maxlen: 24
185.106.21.0/24 maxlen: 24
185.106.22.0/24 maxlen: 24
185.106.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 07:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:37:5b:ae:18:bf:7f:4f:eb:20:28:37:2f:ef:e1:84:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Validity
Not Before: Jan 23 17:26:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e4b3dbae52dfaa483bde38f267f5931844e9523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:fb:f2:d2:8d:c3:4b:04:32:fe:39:fe:2e:
a1:75:e3:45:83:51:ac:60:99:ea:01:22:44:84:6e:
6d:3e:a1:56:31:74:35:9f:7b:b3:e0:75:07:ad:bb:
69:ef:57:8b:a9:fa:c9:42:c0:86:44:ce:41:a9:23:
02:e8:bf:31:fb:59:df:b5:66:03:bf:ba:ee:be:2a:
c8:49:51:0b:11:62:ea:63:ae:ba:26:d0:f6:4d:f0:
3d:a6:9d:ec:18:bf:8c:ec:ec:c1:74:f9:93:38:5c:
a1:1e:eb:24:43:34:6c:d4:a0:75:1b:3f:b3:1b:0a:
dd:e8:6d:bb:87:94:1a:19:bb:20:64:ad:11:79:95:
f3:97:7b:01:f4:e4:38:88:df:38:f3:4a:87:ac:15:
b3:b3:57:f6:ce:7b:97:5d:e2:9a:d2:ca:3b:ce:14:
d7:51:19:21:11:91:fd:dc:2a:7d:c0:bf:94:8e:7e:
2b:55:24:52:b4:7b:cc:14:4d:79:bb:55:83:a3:ea:
90:33:2e:af:bc:c6:e3:4b:7a:71:ab:c6:9b:a9:43:
b3:7b:4b:b4:06:8b:b4:47:7d:f9:64:ba:c5:ce:26:
c5:d6:06:84:34:94:62:3b:35:5f:e8:99:99:f4:35:
0c:07:71:52:17:aa:9c:15:e5:e7:c9:bd:50:63:71:
c9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4B:3D:BA:E5:2D:FA:A4:83:BD:E3:8F:26:7F:59:31:84:4E:95:23
X509v3 Authority Key Identifier:
keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Lks9uuUt-qSDveOPJn9ZMYROlSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.60.0/22
185.103.196.0-185.103.198.255
185.106.20.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:37:28:1b:ba:61:32:70:39:57:24:87:af:2e:4a:93:34:84:
70:96:9b:34:18:8f:d7:92:30:5a:4b:fe:f1:7c:dc:b8:47:11:
fe:84:e2:4b:41:ad:52:cf:d6:c0:51:d7:31:7e:a4:70:99:fb:
11:80:73:6b:e7:df:6a:0a:ce:09:06:75:d4:51:b2:eb:ff:93:
37:f1:38:9c:27:c9:c1:e0:16:03:13:be:cd:0a:6f:84:5b:59:
ca:a7:57:07:e2:bb:41:6d:37:f0:fb:0a:a3:f6:fe:74:4d:dd:
73:86:17:b9:ba:de:29:de:12:d1:21:5b:4f:83:2c:2e:64:cd:
b0:ab:10:cd:10:77:8b:77:65:b2:aa:49:b3:43:bc:3f:f8:e1:
07:01:5b:c8:ea:96:95:ff:cc:5a:c5:d6:3c:64:15:b2:32:6f:
05:ea:20:01:13:61:6a:e9:ad:0c:7a:c8:75:fb:20:2f:4d:4b:
17:03:27:e4:53:95:ba:f8:bf:b9:25:a2:07:21:19:bc:6a:d9:
4f:9f:2d:55:80:e1:b2:01:43:27:ff:5c:58:a4:85:ea:9f:90:
b1:e3:7a:d4:27:de:d7:9a:92:d3:29:0d:d5:63:ee:1d:d3:d4:
53:49:d6:77:5d:63:2a:a5:d9:6f:70:1c:8c:e4:1f:ac:ea:2a:
1a:53:4e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 09:43:32 2024 by rpki-client on console-fra.rpki-client.org