Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/E37qZtqfoOEXJ-hZD3lVpf6tVxc.roa
File: E37qZtqfoOEXJ-hZD3lVpf6tVxc.roa (raw, json)
Hash identifier: lAZ4ZVfY77Vei5cADobym5VSilAj3wgRz/j/NBwA0wI=
Subject key identifier: 13:7E:EA:66:DA:9F:A0:E1:17:27:E8:59:0F:79:55:A5:FE:AD:57:17
Certificate issuer: /CN=4d0d5943c2403730de818e31b9b5ff1d8c1c9c47
Certificate serial: 01856F14DB445D7AE0151907B8AAEAFAA352
Authority key identifier: 4D:0D:59:43:C2:40:37:30:DE:81:8E:31:B9:B5:FF:1D:8C:1C:9C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ1ZQ8JANzDegY4xubX_HYwcnEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/E37qZtqfoOEXJ-hZD3lVpf6tVxc.roa
Signing time: Sun 01 Jan 2023 20:45:15 +0000
ROA not before: Sun 01 Jan 2023 20:45:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209385
IP address blocks: 185.232.124.0/22 maxlen: 24
2a0c:a500::/32 maxlen: 44
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:db:44:5d:7a:e0:15:19:07:b8:aa:ea:fa:a3:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0d5943c2403730de818e31b9b5ff1d8c1c9c47
Validity
Not Before: Jan 1 20:45:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=137eea66da9fa0e11727e8590f7955a5fead5717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b5:c3:10:56:89:31:3b:77:7e:c7:3e:6a:22:
d6:99:fc:e4:5d:18:cd:f7:4c:93:5f:1b:47:81:44:
1a:9b:ab:67:42:57:87:8f:b5:17:97:31:24:9c:90:
ed:1d:a3:18:fc:f0:8b:df:e5:6a:3a:07:8e:f9:ff:
2b:1a:1d:13:d4:58:c2:c1:b2:4c:e1:a6:59:fb:b3:
22:27:0c:0d:1d:77:c5:73:6b:09:52:c4:7c:28:a7:
79:dc:3e:ea:9c:6f:a8:79:28:f8:db:59:aa:ed:33:
7e:61:14:70:ef:a8:1c:e8:58:ba:a1:ed:ba:1a:64:
02:45:b6:da:81:58:76:b6:33:13:f2:58:92:c3:26:
7f:ab:be:ba:b3:da:2f:9f:94:e3:00:36:cd:1e:f2:
87:d9:e7:99:04:52:bf:01:57:80:97:ca:03:72:4f:
db:a6:8d:a3:c5:c8:a5:cd:2b:0d:b7:e3:68:8f:2b:
a1:e2:b9:d1:d6:ce:c7:e5:a5:1e:81:37:64:23:e1:
f3:e9:7b:98:af:b8:4a:62:25:85:89:55:08:0b:09:
77:1d:90:ff:54:e1:4d:fb:b1:ca:82:53:88:05:ac:
6a:64:36:bb:85:f6:ef:91:78:fe:be:f2:30:e7:91:
0b:c9:78:ec:70:37:fd:9c:67:27:da:9d:a3:1f:97:
6d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7E:EA:66:DA:9F:A0:E1:17:27:E8:59:0F:79:55:A5:FE:AD:57:17
X509v3 Authority Key Identifier:
keyid:4D:0D:59:43:C2:40:37:30:DE:81:8E:31:B9:B5:FF:1D:8C:1C:9C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ1ZQ8JANzDegY4xubX_HYwcnEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/E37qZtqfoOEXJ-hZD3lVpf6tVxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/TQ1ZQ8JANzDegY4xubX_HYwcnEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.124.0/22
IPv6:
2a0c:a500::/32
Signature Algorithm: sha256WithRSAEncryption
cd:cc:b6:6d:7a:78:bb:22:fb:d2:b8:89:b6:44:a3:f5:3e:39:
b0:f0:4e:79:31:19:c9:31:d2:fe:92:4c:75:48:40:dd:60:f3:
ed:04:7e:82:a6:53:0e:9c:b1:3a:20:d3:7b:6a:02:31:bd:d6:
04:da:e1:39:71:ce:e2:30:18:ff:76:86:97:f9:35:b7:79:a6:
8a:6d:c6:04:3c:4d:dc:3b:77:24:e6:4e:06:f6:ed:44:fe:a3:
ec:ca:06:50:36:18:a9:06:28:00:1c:f2:00:5c:6d:f7:5b:f8:
77:f6:1b:29:e9:30:47:ad:63:a6:de:cd:ac:d1:24:10:17:4d:
56:00:3d:c1:46:53:36:56:cd:3e:c8:1a:ba:29:aa:77:4f:ed:
98:a5:82:8b:40:df:3d:fc:a2:f4:9c:0d:6b:89:c9:b6:89:a5:
4c:1c:6c:91:6d:50:48:ba:03:b0:13:7b:ff:9c:b2:30:6a:e1:
05:f4:b2:b2:b6:0f:51:43:9b:1a:fb:82:39:fc:19:3b:88:33:
16:7c:47:05:e4:a6:0e:e6:ad:55:77:db:aa:14:88:21:18:81:
ed:51:e4:2d:dc:05:21:6b:25:36:47:29:e6:ac:30:6d:40:d5:
53:9a:2b:8d:bf:f4:ad:76:69:86:42:ab:21:43:ac:0a:8a:5f:
58:b5:bb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:02 2024 by rpki-client on console-ams.rpki-client.org