Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/Auc6o2-0OT0Baisuvv-8FLLnkzk.roa
File: Auc6o2-0OT0Baisuvv-8FLLnkzk.roa (raw, json)
Hash identifier: KxG4R5SsSGx2Z5twwJGD8oQAi9KhXBLs0JB7lma5ZKw=
Subject key identifier: 02:E7:3A:A3:6F:B4:39:3D:01:6A:2B:2E:BE:FF:BC:14:B2:E7:93:39
Certificate issuer: /CN=cfeace714c29568ef197007b141d12758cc415d5
Certificate serial: 018A211B6FC0EE6A1DACFD6680602D915850
Authority key identifier: CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/Auc6o2-0OT0Baisuvv-8FLLnkzk.roa
Signing time: Wed 23 Aug 2023 06:36:00 +0000
ROA not before: Wed 23 Aug 2023 06:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57829
IP address blocks: 185.57.168.0/22 maxlen: 24
185.56.212.0/22 maxlen: 24
193.138.74.0/24 maxlen: 24
195.78.37.0/24 maxlen: 24
185.114.104.0/22 maxlen: 24
188.65.152.0/21 maxlen: 24
193.254.192.0/23 maxlen: 24
81.201.208.0/20 maxlen: 24
45.137.208.0/22 maxlen: 24
2a0b:fd80::/32 maxlen: 48
2a02:5120::/32 maxlen: 48
2a00:e900::/29 maxlen: 48
2a01:4400::/32 maxlen: 48
2a0b:fd82::/32 maxlen: 48
2a0b:fd81::/32 maxlen: 48
2a0b:fd87::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 24 Aug 2023 07:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:1b:6f:c0:ee:6a:1d:ac:fd:66:80:60:2d:91:58:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfeace714c29568ef197007b141d12758cc415d5
Validity
Not Before: Aug 23 06:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02e73aa36fb4393d016a2b2ebeffbc14b2e79339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:d9:b7:11:6b:3e:68:69:3a:00:ce:c4:db:
41:02:de:d9:7f:71:ac:5e:66:01:3a:db:61:b3:52:
09:d6:b2:bd:d3:25:4c:e9:3b:8d:9f:32:69:3f:c3:
9e:ed:3c:f5:2e:ee:cf:3a:75:2b:9e:b1:df:a8:a9:
16:2d:e9:58:d8:b8:7b:9a:87:fd:0a:0f:5d:83:5f:
34:f6:a1:9f:b1:eb:be:94:fc:c7:f6:e7:93:36:51:
fa:d4:0e:2f:43:7e:7b:34:97:d7:a3:9c:e6:dc:fc:
5e:81:42:c0:43:01:9d:9c:eb:d1:7c:e4:95:b1:8b:
49:b7:c7:7e:52:0c:08:92:e5:2e:18:84:2e:a4:52:
8b:4d:c5:1e:90:7e:8c:d2:c2:db:ff:ce:0c:0e:92:
53:ac:e2:ea:ee:1c:e4:b5:35:d1:60:31:b8:90:a9:
b6:b8:fa:63:2f:ab:65:42:8c:da:ba:90:4e:06:d6:
cf:09:18:24:34:2b:f6:86:70:ef:c8:55:1c:14:c0:
e7:5d:5d:e9:42:ba:4c:32:5d:c2:aa:67:b7:40:73:
6c:c0:77:05:9e:59:3e:1d:96:11:41:0c:b8:e1:de:
f4:ee:07:f5:f1:a3:06:67:16:b8:f9:9e:6a:6a:d6:
96:c3:fa:7a:e7:67:74:25:a4:12:43:c8:e8:e0:e6:
c3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E7:3A:A3:6F:B4:39:3D:01:6A:2B:2E:BE:FF:BC:14:B2:E7:93:39
X509v3 Authority Key Identifier:
keyid:CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/Auc6o2-0OT0Baisuvv-8FLLnkzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.208.0/22
81.201.208.0/20
185.56.212.0/22
185.57.168.0/22
185.114.104.0/22
188.65.152.0/21
193.138.74.0/24
193.254.192.0/23
195.78.37.0/24
IPv6:
2a00:e900::/29
2a01:4400::/32
2a02:5120::/32
2a0b:fd80::-2a0b:fd82:ffff:ffff:ffff:ffff:ffff:ffff
2a0b:fd87::/32
Signature Algorithm: sha256WithRSAEncryption
4c:69:e6:9d:41:82:b8:57:a0:33:58:36:74:44:e5:b5:e6:4c:
4f:98:4b:e7:35:a8:fc:cf:1c:3c:24:dd:08:a5:79:f6:05:bf:
39:9b:04:55:e2:45:f6:8f:3d:a3:88:8b:88:f0:87:77:58:cf:
f7:24:8e:15:fd:49:4c:19:1e:87:ef:cd:d7:78:6a:d1:22:fa:
5d:58:0e:94:fa:af:ec:db:6d:e4:6e:03:4b:73:c2:33:7d:a9:
26:6a:38:f8:cb:97:54:31:07:50:7f:3c:e8:c0:0d:62:a6:1c:
6f:1e:0a:3c:3f:12:fc:ae:09:12:1e:25:6e:1c:19:74:c1:36:
8a:97:6e:56:88:03:cc:6b:dc:11:c9:b4:bd:8a:da:6e:87:ef:
c9:eb:04:54:47:ab:41:4a:61:92:97:aa:f3:ac:86:90:2b:4c:
24:e1:e2:19:ce:1a:ad:56:ee:0a:34:59:53:a4:ac:4d:03:97:
b0:60:c2:bb:07:ec:44:6a:bc:35:c0:70:80:c2:68:ad:ca:7b:
be:37:18:7f:3b:f3:7c:97:5e:8d:77:94:4a:7b:3b:9e:dd:be:
b1:c9:b1:00:3d:fe:4c:c0:00:d2:d1:01:b4:c8:a9:b1:db:f4:
7f:09:49:cd:8e:b6:de:3b:1d:fd:5a:cd:74:79:7a:7b:62:fb:
0d:2c:6f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:34 2024 by rpki-client on console-fra.rpki-client.org