Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5hr_tnSsUeY8z5hkdxlpQdcXFXU.roa
File: 5hr_tnSsUeY8z5hkdxlpQdcXFXU.roa (raw, json)
Hash identifier: I7RHmWJOqaWIQ22M2ndS27E2mwIU2l7jZDH86azr/ws=
Subject key identifier: E6:1A:FF:B6:74:AC:51:E6:3C:CF:98:64:77:19:69:41:D7:17:15:75
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018AD0AA29E10C3B5E406E0DE00747D1DEA7
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5hr_tnSsUeY8z5hkdxlpQdcXFXU.roa
Signing time: Tue 26 Sep 2023 08:45:27 +0000
ROA not before: Tue 26 Sep 2023 08:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 185.76.63.0/24 maxlen: 24
185.76.61.0/24 maxlen: 24
188.119.182.0/23 maxlen: 24
188.119.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 08:55:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:aa:29:e1:0c:3b:5e:40:6e:0d:e0:07:47:d1:de:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Sep 26 08:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e61affb674ac51e63ccf986477196941d7171575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0b:cf:64:9b:ec:82:07:9f:59:b4:fa:d6:c1:
ad:86:aa:e5:81:b3:6a:8f:da:06:18:46:92:0f:83:
f3:0d:66:c4:57:6d:d4:68:df:88:88:47:ac:43:85:
b3:b2:d7:9e:6d:2a:67:0b:fc:36:98:b9:d6:f4:1d:
11:29:f6:5a:e6:41:17:a6:72:00:39:ab:dc:24:d6:
5b:e9:b9:81:af:e8:08:e1:8d:be:10:4a:cc:ed:6c:
f3:bb:13:1c:33:c7:3f:3c:9d:85:15:6b:1d:9f:cb:
c9:72:1a:b1:fc:fd:6c:1c:b7:c3:a3:56:27:bc:f8:
82:05:c9:41:e9:77:c8:21:2f:31:9f:75:c4:49:b7:
f1:73:fa:3d:d6:51:f7:13:65:5e:bb:e6:15:b8:39:
d4:cb:f9:34:79:06:80:43:1f:81:62:38:9d:b7:08:
88:49:c8:4d:e7:2e:41:52:8a:9f:52:65:3a:09:00:
c0:21:34:59:39:1c:4e:9e:3a:08:45:56:ae:7a:ae:
40:e7:f9:12:c7:7c:af:48:a5:6b:d4:c7:08:ea:50:
6c:ae:8e:63:0e:9c:50:97:f0:cc:41:7f:10:b9:e7:
11:fb:33:a0:a3:02:b4:ad:08:e6:4b:9a:de:ee:13:
5d:75:9f:b4:1d:80:f5:5a:48:d3:30:89:6c:0a:e1:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1A:FF:B6:74:AC:51:E6:3C:CF:98:64:77:19:69:41:D7:17:15:75
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/5hr_tnSsUeY8z5hkdxlpQdcXFXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.61.0/24
185.76.63.0/24
188.119.180.0/24
188.119.182.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:e8:24:75:68:e3:cd:79:76:42:e4:a4:dc:af:4d:8b:8e:62:
81:ef:86:ec:c3:72:8a:8d:fe:e6:1b:e9:a7:50:88:5e:78:f4:
de:1b:96:d6:73:32:ad:ed:5b:3c:e8:ad:76:50:a9:a4:59:45:
dc:8f:2b:91:65:1f:74:f5:cd:c2:42:55:37:43:f9:24:eb:f4:
6b:1c:8b:38:3d:69:3d:77:a9:47:7b:6d:ff:04:8e:fd:28:db:
cf:73:54:9b:74:bf:35:3f:ec:72:6c:dd:ce:49:2f:06:56:3e:
6e:b5:00:17:70:4d:cb:5b:0b:27:ac:7a:a0:bd:a1:9e:68:c6:
1b:b1:4b:68:59:5e:a6:99:6a:42:e4:08:2f:f8:a4:ca:a9:fa:
f2:1c:fc:8b:da:c1:69:23:a4:1b:a5:b3:9e:9e:5c:6a:dd:17:
17:9d:76:f5:48:c8:07:0c:73:ee:48:d9:e9:53:52:eb:d5:b9:
f4:34:5d:ff:76:3f:a5:8d:3c:c1:8b:fc:2d:a5:8d:bb:c2:a2:
5c:9f:cc:f6:a5:a3:61:ba:ca:37:14:d7:78:68:07:85:bb:89:
5b:e9:72:ee:4d:f7:58:55:51:35:e5:76:dc:45:d0:10:ee:a7:
16:f2:05:e2:79:31:5c:c8:fc:06:c8:72:bc:c1:8c:aa:24:77:
af:68:e8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org