Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/fb7e67-5425-4c4f-b46a-8243aef6fe5a/1/iW6C0MFN39DjBI3lXrdhLOvP8ds.roa
File: iW6C0MFN39DjBI3lXrdhLOvP8ds.roa (raw, json)
Hash identifier: 2kP+mth36aMWgY7qL9ib5Pqpj7XGcird5j29oM2MqgA=
Subject key identifier: 89:6E:82:D0:C1:4D:DF:D0:E3:04:8D:E5:5E:B7:61:2C:EB:CF:F1:DB
Certificate issuer: /CN=aa70110d30d52e8a6969588b3f621416bcdf644b
Certificate serial: 018C33EBD18C2257B9B4FFCC7370BCC1B6C9
Authority key identifier: AA:70:11:0D:30:D5:2E:8A:69:69:58:8B:3F:62:14:16:BC:DF:64:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnARDTDVLoppaViLP2IUFrzfZEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/fb7e67-5425-4c4f-b46a-8243aef6fe5a/1/iW6C0MFN39DjBI3lXrdhLOvP8ds.roa
Signing time: Mon 04 Dec 2023 08:22:21 +0000
ROA not before: Mon 04 Dec 2023 08:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57227
IP address blocks: 185.110.44.0/22 maxlen: 22
81.163.63.0/24 maxlen: 24
176.120.192.0/19 maxlen: 19
81.24.85.0/24 maxlen: 24
81.24.88.0/21 maxlen: 21
81.163.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:33:eb:d1:8c:22:57:b9:b4:ff:cc:73:70:bc:c1:b6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70110d30d52e8a6969588b3f621416bcdf644b
Validity
Not Before: Dec 4 08:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=896e82d0c14ddfd0e3048de55eb7612cebcff1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:6e:aa:5c:28:d0:7c:6b:47:a5:ed:f9:45:
2d:fa:03:62:f9:25:8d:df:de:65:a4:e4:26:28:dd:
25:08:31:bf:5d:47:13:90:c7:f9:59:72:21:fc:4b:
c2:91:b3:64:e5:a3:3d:b3:95:97:45:7e:da:d8:b3:
c4:4b:3b:a5:e3:e5:f2:7d:80:00:75:af:13:a1:88:
15:16:ac:2e:c4:0c:7d:7e:28:66:5a:ab:ba:e2:63:
c6:5a:00:aa:02:e5:1a:50:bf:62:a0:f7:e1:f7:9e:
60:68:d6:23:16:7c:35:f4:06:2f:ab:bc:69:87:e8:
aa:39:0f:39:21:aa:49:fb:78:30:78:52:23:4a:dc:
de:44:ef:c3:2b:60:3f:39:08:f5:0f:4b:34:7d:ae:
02:ee:5b:ed:05:96:3d:87:37:82:be:e9:56:bd:aa:
a1:06:70:8b:48:1e:62:9a:b8:d5:eb:69:35:57:e8:
52:fc:ba:31:3c:52:47:82:f6:42:c3:3b:d6:a6:39:
fc:a4:6d:c1:90:4b:55:37:e7:27:90:b2:d9:3a:ad:
0e:a1:68:c3:86:b0:84:69:35:c2:da:7c:1e:2c:83:
c1:92:66:81:38:ad:08:b9:d4:15:21:03:dd:f8:7e:
2e:55:2a:b0:2a:1b:66:13:b6:d6:df:03:35:0b:df:
a6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6E:82:D0:C1:4D:DF:D0:E3:04:8D:E5:5E:B7:61:2C:EB:CF:F1:DB
X509v3 Authority Key Identifier:
keyid:AA:70:11:0D:30:D5:2E:8A:69:69:58:8B:3F:62:14:16:BC:DF:64:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnARDTDVLoppaViLP2IUFrzfZEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/fb7e67-5425-4c4f-b46a-8243aef6fe5a/1/iW6C0MFN39DjBI3lXrdhLOvP8ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/fb7e67-5425-4c4f-b46a-8243aef6fe5a/1/qnARDTDVLoppaViLP2IUFrzfZEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.24.85.0/24
81.24.88.0/21
81.163.32.0/19
176.120.192.0/19
185.110.44.0/22
Signature Algorithm: sha256WithRSAEncryption
32:d0:f6:52:bb:36:ea:7d:30:d2:2d:99:75:f9:08:23:d8:42:
ef:94:a5:03:a3:9d:96:61:6e:df:93:9c:c2:13:bd:68:5e:0a:
9f:7d:0f:2b:8f:e7:4f:30:3d:e9:cb:f3:a9:bb:ae:bf:a2:57:
c9:b6:ec:7b:d9:13:cf:65:a7:c1:da:7b:e4:ae:e3:fa:c6:52:
32:c6:7a:6d:47:23:02:a7:40:ca:78:b6:fc:74:de:27:48:f7:
47:51:2e:c0:ff:ce:0c:bc:9b:f1:60:b8:40:07:8e:7a:fd:83:
9f:a3:a4:d2:6e:b3:87:3e:26:72:df:2a:a6:66:d7:eb:12:04:
df:cb:e8:48:b4:26:3c:62:0f:44:61:e5:c7:75:17:47:ad:d1:
87:e4:20:68:f1:22:06:a8:8d:01:02:ed:ce:e5:71:e2:04:b5:
68:22:d6:4f:68:7a:d3:6d:01:5c:ad:62:d1:dc:78:45:33:e1:
09:21:37:c3:fe:16:dd:94:98:8f:f3:f2:b5:55:da:16:ad:ec:
00:ea:fa:bc:9d:b9:2c:d3:e5:92:b7:1b:51:be:69:4f:1b:cc:
a5:76:08:22:c9:93:6d:79:fc:57:ec:8e:23:b2:ff:b4:0b:84:
5e:4f:f4:df:b3:3d:49:bb:ce:9c:29:f6:ea:50:c5:f1:79:5b:
12:37:6a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org