Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dFuItG3gODSbTKLS2eFCvUDfzTs.roa
File: dFuItG3gODSbTKLS2eFCvUDfzTs.roa (raw, json)
Hash identifier: j30EaI5dqiL58UjUQh9Syllx2ryv3j2m7QVclqNwvNg=
Subject key identifier: 74:5B:88:B4:6D:E0:38:34:9B:4C:A2:D2:D9:E1:42:BD:40:DF:CD:3B
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018F778EEA8CB5388DF097C00E6406861087
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dFuItG3gODSbTKLS2eFCvUDfzTs.roa
Signing time: Tue 14 May 2024 14:43:25 +0000
ROA not before: Tue 14 May 2024 14:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 17665
IP address blocks: 185.101.252.0/23 maxlen: 23
185.101.254.0/23 maxlen: 23
185.171.252.0/23 maxlen: 23
185.171.254.0/23 maxlen: 23
185.226.204.0/23 maxlen: 23
185.226.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 01 Jun 2024 13:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:8e:ea:8c:b5:38:8d:f0:97:c0:0e:64:06:86:10:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: May 14 14:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=745b88b46de038349b4ca2d2d9e142bd40dfcd3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:64:68:ad:a3:48:76:d3:2a:82:52:09:d1:
9f:bc:aa:50:5e:9c:29:ba:95:9b:d4:c0:ab:b1:10:
8d:eb:2e:10:c4:4e:63:71:5e:52:88:6a:ab:37:df:
23:36:4e:4a:2e:44:ea:a1:e2:8e:e0:98:db:e3:81:
c8:66:66:35:11:2a:a8:38:c8:aa:22:2d:f1:27:d7:
5c:f4:82:3c:37:0c:b3:5f:f9:92:75:67:49:41:fe:
2f:39:78:e8:d8:cb:77:f4:e1:ad:a3:81:94:b1:bd:
a4:b5:58:ac:5e:c1:2b:da:27:9f:35:62:9f:24:f8:
c1:d0:27:ed:4f:c2:75:cb:da:8c:91:d0:f9:da:8d:
53:9c:06:41:c2:9a:dd:62:70:19:94:ef:3c:50:9d:
8f:8f:43:fa:64:e7:cd:b6:f4:9e:a2:73:a6:5e:8a:
56:83:df:6c:23:87:82:ca:d3:52:83:67:1f:eb:41:
23:b6:52:3c:02:70:4e:da:98:c9:74:96:25:17:d1:
4f:18:2f:4a:94:01:94:cc:f2:03:31:20:94:04:d1:
16:29:e2:9b:fe:3b:fb:39:33:9b:cc:c3:dc:a1:5b:
8f:db:60:02:e0:64:43:a5:8f:e3:93:45:f7:fa:f0:
36:26:26:28:b3:78:27:64:a6:1a:6a:87:cb:b4:8e:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5B:88:B4:6D:E0:38:34:9B:4C:A2:D2:D9:E1:42:BD:40:DF:CD:3B
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dFuItG3gODSbTKLS2eFCvUDfzTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.252.0/22
185.171.252.0/22
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:7c:8a:a4:6c:0a:93:73:51:7e:08:9b:da:cc:11:4c:44:2b:
06:17:68:22:f9:56:d5:7e:86:0e:c9:be:a3:6a:6c:70:5c:f8:
10:cd:af:93:5e:e4:95:f7:28:1b:a2:9c:d4:0a:24:01:b3:25:
4c:fc:d5:c6:3a:f6:3a:92:ed:e4:e5:00:35:ae:d7:a2:92:30:
17:44:e9:da:08:fd:cf:1b:75:09:7a:a1:df:09:ef:77:94:e6:
26:ba:3a:79:7e:15:9d:b0:ed:6a:be:92:aa:92:2e:f7:c1:6d:
bc:2f:a7:23:2f:7b:51:af:7c:ee:87:45:02:6e:60:da:e9:89:
de:23:b1:64:1c:66:43:41:69:b2:a3:35:c9:dc:21:2f:74:7f:
62:e1:3c:04:a7:e0:9d:e0:0d:5b:35:be:a7:a2:f3:59:f2:3c:
89:3b:eb:1c:32:19:58:a4:0e:67:38:ef:71:0e:58:3f:c8:7e:
09:2d:35:1e:e1:03:28:f7:51:cb:b4:a9:a3:db:d9:1f:c3:8f:
75:27:50:55:93:b0:10:70:42:a3:78:51:7d:c0:f7:09:88:19:
4a:bf:62:75:b4:14:fa:fe:f6:a7:7d:13:dd:fd:d9:4f:b6:be:
4a:c5:f6:75:ec:c2:e8:81:d9:c0:b4:a0:5e:61:3f:ad:35:87:
ad:1f:55:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org