Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/1-eqTtbI3J-Y3-xdpPZv3DMuUOSA.roa
File: 1-eqTtbI3J-Y3-xdpPZv3DMuUOSA.roa (raw, json)
Hash identifier: HjAGAF7lwxIgQGzPnjHesm5rYBOxKGTlb8zsF0Bvy0o=
Subject key identifier: F9:EA:93:B5:B2:37:27:E6:37:FB:17:69:3D:9B:F7:0C:CB:94:39:20
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 0186642BCDD6D1BB03303C9788AF82C8BA9C
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/1-eqTtbI3J-Y3-xdpPZv3DMuUOSA.roa
Signing time: Sat 18 Feb 2023 10:57:17 +0000
ROA not before: Sat 18 Feb 2023 10:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212369
IP address blocks: 185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 13:52:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:64:2b:cd:d6:d1:bb:03:30:3c:97:88:af:82:c8:ba:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Feb 18 10:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9ea93b5b23727e637fb17693d9bf70ccb943920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c4:bb:e3:56:5d:0e:ee:d4:0e:23:91:b2:48:
f5:e5:0d:37:38:2d:15:3b:5e:98:76:38:67:0a:8f:
71:a2:ff:50:b6:36:16:17:6a:e1:a1:56:a8:9a:66:
cd:c9:0f:37:78:b9:4d:67:a7:90:dd:fe:7d:78:78:
d4:43:51:af:d9:0e:0b:ed:03:93:83:64:d9:fd:10:
7c:f6:6d:d5:e3:c7:a5:6c:bd:8c:48:bd:ee:c0:9a:
32:df:42:55:cc:02:e8:e7:d9:6c:63:48:22:5c:7e:
88:4f:de:48:b8:0f:a1:2a:09:ff:ce:d1:c4:87:d1:
a7:07:bc:94:fb:25:c5:c3:31:5a:b7:6b:b9:32:00:
83:dd:93:28:9a:29:7c:73:4d:07:6a:be:ac:f4:ce:
21:7e:3d:e7:ca:f8:42:ca:19:8e:10:e0:68:9d:9d:
12:09:cc:71:30:63:fb:15:df:1f:d8:b7:00:65:9c:
2c:fd:c1:3f:9a:19:04:c5:03:75:21:a4:45:a1:97:
18:77:06:fd:d8:70:c0:b5:9d:73:be:b2:83:e5:7b:
98:c6:67:49:cc:c2:69:af:ca:9e:e8:0e:41:48:65:
85:13:48:7c:28:cc:53:5a:30:eb:8d:83:80:0f:51:
5b:cf:5f:f2:bc:91:1e:cb:c2:ac:93:2d:82:44:c6:
51:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EA:93:B5:B2:37:27:E6:37:FB:17:69:3D:9B:F7:0C:CB:94:39:20
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/1-eqTtbI3J-Y3-xdpPZv3DMuUOSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0-185.93.70.255
185.132.126.0/24
185.255.93.0-185.255.95.255
193.164.6.0/24
Signature Algorithm: sha256WithRSAEncryption
15:fe:19:9a:f4:aa:c0:e9:4a:2a:ae:a7:9d:90:24:8b:6e:ff:
e2:7f:f6:36:87:dc:11:ee:27:1a:d6:2f:20:38:58:cc:60:4e:
3b:7f:2d:69:32:08:8d:04:d1:a6:e2:30:2f:1b:65:c7:27:bb:
3b:3a:45:e5:61:3d:a5:fb:14:be:d7:ff:a5:b3:a6:0e:76:06:
fa:c9:5f:a5:90:97:ac:c7:91:1f:9a:eb:94:4a:81:a3:62:f6:
71:ff:12:4b:57:16:0f:ca:39:1b:57:76:75:6e:07:8f:d7:f8:
f7:56:d3:dc:ff:20:a9:59:a9:5e:1f:21:e7:40:e7:90:76:49:
ea:8d:5d:79:9d:31:c6:8a:72:d1:74:6d:d3:5b:f7:e5:66:9f:
28:4f:6f:c2:6d:fd:b8:6b:58:5a:4c:af:fb:d3:2a:4e:d0:ab:
aa:9f:fa:5f:14:90:06:13:f7:0b:7c:2f:10:ca:4b:c2:3d:16:
11:39:f2:23:f4:a8:b4:7e:19:8b:ba:de:04:f2:75:0d:a9:60:
ef:68:02:9a:b8:66:d0:ba:31:dc:40:ce:26:38:15:7b:74:2c:
70:a0:c5:c9:2c:b5:51:51:99:ee:cf:b5:89:aa:5d:ea:cf:77:
01:24:e8:62:71:a9:da:99:6a:b6:7d:93:29:db:e5:2f:3a:73:
8a:db:2c:94
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org