Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/0wEagnr4M1XKGPMsTg9N_bUMARk.roa
File: 0wEagnr4M1XKGPMsTg9N_bUMARk.roa (raw, json)
Hash identifier: e8n/gpGQ/4V+719lnn3PcM4DNNFj3E1KX+gClj90750=
Subject key identifier: D3:01:1A:82:7A:F8:33:55:CA:18:F3:2C:4E:0F:4D:FD:B5:0C:01:19
Certificate issuer: /CN=88e719f426793b1e9063771460abd311a3dff116
Certificate serial: 01857079A62C04D65CC2165F3FEC0B50FE75
Authority key identifier: 88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/0wEagnr4M1XKGPMsTg9N_bUMARk.roa
Signing time: Mon 02 Jan 2023 03:14:58 +0000
ROA not before: Mon 02 Jan 2023 03:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27552
IP address blocks: 185.134.180.0/22 maxlen: 22
2a06:ee01::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:a6:2c:04:d6:5c:c2:16:5f:3f:ec:0b:50:fe:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e719f426793b1e9063771460abd311a3dff116
Validity
Not Before: Jan 2 03:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3011a827af83355ca18f32c4e0f4dfdb50c0119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f0:3e:63:c6:97:0d:7e:d2:5d:64:61:b4:25:
81:0e:60:ec:59:4f:cf:19:34:80:05:97:30:24:f8:
9b:cd:f5:44:da:ca:79:83:0d:e1:21:fb:a7:f6:f5:
85:ef:4a:50:18:01:56:4d:a5:ea:29:6c:c9:da:13:
0f:e5:d9:4a:8d:6c:74:0a:01:5c:69:81:66:8b:8d:
84:3b:c4:6f:06:d3:bc:1c:7c:b4:c2:5e:47:c4:f0:
eb:e3:86:ab:6d:e6:59:7b:ea:a7:7d:dd:7f:49:dd:
89:c6:20:d8:12:92:50:58:f4:91:49:87:3d:8d:c7:
b9:84:4f:20:b8:51:fe:f9:53:ce:7a:a7:5d:0c:b4:
5d:ca:ca:90:92:6c:54:57:b4:fa:90:94:61:4d:c3:
a0:81:3c:fd:25:76:f6:38:7d:7a:d1:af:f6:ed:73:
99:fc:30:1c:3b:b8:28:7a:8b:74:32:fa:08:c3:b3:
c8:85:76:57:29:54:6c:32:46:88:e2:e2:84:31:65:
37:ac:c5:a7:06:f2:e6:f4:72:08:e2:cb:a6:62:be:
da:3e:ea:6e:c6:9e:99:84:26:d2:26:fb:de:70:ef:
39:d4:e5:7e:d4:46:cc:74:26:79:c8:8b:ab:0d:4a:
5e:a9:71:8b:a3:55:cf:c0:b8:5e:27:66:45:bf:87:
d8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:01:1A:82:7A:F8:33:55:CA:18:F3:2C:4E:0F:4D:FD:B5:0C:01:19
X509v3 Authority Key Identifier:
keyid:88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/0wEagnr4M1XKGPMsTg9N_bUMARk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.180.0/22
IPv6:
2a06:ee01::/32
Signature Algorithm: sha256WithRSAEncryption
88:01:5b:5b:ac:7e:f8:f4:42:77:7a:cc:f7:59:76:9d:16:47:
5c:0a:1e:5e:6a:21:8b:03:a4:1f:e6:fd:39:3d:dc:b8:77:b7:
bd:97:32:51:d0:e8:45:c7:ea:6c:41:29:15:94:44:44:a4:2b:
72:c1:fd:65:51:bc:38:37:9e:e8:e2:ec:d7:e0:77:1d:f9:a1:
68:98:66:51:28:1a:04:ba:47:c5:66:2d:80:23:dd:66:5a:bb:
cd:62:dd:e7:ce:87:e4:3b:8d:4c:95:fa:3f:1e:3d:93:b1:96:
6b:ce:ae:8e:9d:c9:dc:21:ac:43:55:e4:94:fa:f6:10:a0:84:
7c:d4:9c:32:9d:83:71:f2:d0:ee:a0:8a:ce:c4:e9:97:e5:f2:
53:b0:8d:f2:6d:a0:cd:54:a9:0f:35:b9:b9:46:71:91:d2:94:
a9:2f:a4:b4:f5:31:ad:6b:95:8e:3d:06:84:1c:8a:04:4f:20:
9b:a9:3e:cf:b6:c8:3a:34:c5:f9:71:9f:29:2b:ed:e2:32:8a:
ac:db:16:3d:1b:eb:56:a3:4c:d0:85:44:b4:60:9c:2b:d1:4c:
66:88:0f:dc:7f:8a:97:78:87:77:a6:76:e9:09:62:93:f8:05:
dc:c7:82:b2:ba:dc:59:27:88:d4:d5:47:8e:e9:a7:d6:b3:f7:
6e:7a:f0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:16 2024 by rpki-client on console-ams.rpki-client.org