Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/eCmMUppLvCL3xp4XtXMdcy3zZR0.roa
File: eCmMUppLvCL3xp4XtXMdcy3zZR0.roa (raw, json)
Hash identifier: Fo0zc/F7G/5oJZQnqBi9gkmO1zxrLK0Mg3JVEjW8LQs=
Subject key identifier: 78:29:8C:52:9A:4B:BC:22:F7:C6:9E:17:B5:73:1D:73:2D:F3:65:1D
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 0189BF1BBEAA358FC7C8088FECA6718C6588
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/eCmMUppLvCL3xp4XtXMdcy3zZR0.roa
Signing time: Fri 04 Aug 2023 05:53:33 +0000
ROA not before: Fri 04 Aug 2023 05:53:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 185.192.21.0/24 maxlen: 24
185.192.20.0/24 maxlen: 24
45.134.13.0/24 maxlen: 24
45.134.12.0/24 maxlen: 24
45.134.15.0/24 maxlen: 24
212.8.224.0/22 maxlen: 22
212.8.228.0/24 maxlen: 24
2a07:505::/32 maxlen: 32
2a0e:7c41::/32 maxlen: 32
2a0e:7c45::/32 maxlen: 32
2a07:501::/32 maxlen: 32
2a0e:7c44::/32 maxlen: 32
2a07:504::/32 maxlen: 32
2a0e:7c42::/32 maxlen: 32
2a07:502::/32 maxlen: 32
2a0e:7c43::/32 maxlen: 32
2a07:507::/32 maxlen: 32
2a0e:7c47::/32 maxlen: 32
2a07:506::/32 maxlen: 32
2a0e:7c40::/32 maxlen: 32
2a07:500::/32 maxlen: 32
2a0e:7c46::/32 maxlen: 32
2a07:503::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 03 Oct 2023 10:12:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bf:1b:be:aa:35:8f:c7:c8:08:8f:ec:a6:71:8c:65:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Aug 4 05:53:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78298c529a4bbc22f7c69e17b5731d732df3651d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:eb:20:ba:2f:a9:72:4f:1d:8f:de:84:fd:
e7:99:b0:00:ce:0b:ea:d0:c1:3b:99:cb:58:fd:da:
97:e0:9d:96:95:9d:ea:9a:93:1a:83:fc:b4:a4:85:
0d:34:4f:cc:e2:cf:56:22:64:9c:9b:e1:9d:5b:52:
5e:14:47:b5:dd:c4:6e:86:e1:12:e4:9b:aa:d3:6d:
5c:c1:fb:e8:8d:ba:f2:d5:08:92:2e:aa:d5:9b:04:
1a:99:8b:5b:61:e6:f4:82:f1:03:bb:c1:bc:e6:34:
da:61:e3:95:21:c1:84:0c:48:37:51:39:eb:2d:52:
7b:dd:40:87:46:9a:bb:d4:19:3b:6e:ab:3a:82:52:
00:a3:3f:4a:b3:a4:95:c2:95:50:b7:d1:84:0d:84:
34:ce:a9:72:ec:e4:12:e0:ba:ef:fd:d8:e1:a2:56:
60:cd:90:f3:3c:73:c3:53:02:e4:b6:be:02:61:e9:
29:bc:46:d4:ce:be:5f:72:18:61:eb:4c:c8:ea:71:
ae:a5:43:6a:39:ba:20:55:f1:bd:c1:b6:a5:53:8f:
9e:02:06:e8:09:4a:75:35:ff:23:79:f7:86:ab:0d:
df:83:e3:c8:66:88:73:02:08:68:77:93:50:8d:c4:
f6:64:b9:35:f5:df:49:27:27:d1:e7:26:73:33:36:
c2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:29:8C:52:9A:4B:BC:22:F7:C6:9E:17:B5:73:1D:73:2D:F3:65:1D
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/eCmMUppLvCL3xp4XtXMdcy3zZR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.12.0/23
45.134.15.0/24
185.192.20.0/23
212.8.224.0-212.8.228.255
IPv6:
2a07:500::/29
2a0e:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
5b:31:2e:3b:f3:e2:d8:50:2c:e6:a3:09:77:d5:42:ab:13:43:
23:ca:61:75:b0:e6:22:9f:5f:bf:ec:51:be:4f:0b:28:d1:2f:
a5:3d:e6:e7:43:7c:21:0b:d8:f9:8f:b0:37:2f:40:8d:f3:36:
bb:77:17:79:e8:08:58:c0:b4:94:bd:76:95:d7:11:57:f1:a1:
b1:51:c8:9e:c1:ab:1c:50:55:8c:56:90:35:9f:4e:5a:6c:7e:
7a:8b:ef:b7:b4:38:6c:07:ec:ce:ad:c7:ef:bd:a7:23:68:8c:
ae:1b:1b:62:1f:51:8f:f3:7d:4d:4d:9b:52:2e:8e:99:2b:14:
7c:89:b7:fb:20:d5:7b:16:fe:91:66:e7:16:47:bc:a9:c5:46:
be:e3:bc:3d:c4:37:8c:68:94:00:df:39:13:80:9b:4d:2a:f7:
1a:8e:6f:d9:80:cd:14:6b:e3:d0:38:c1:ce:ea:f8:14:ba:ef:
b1:d2:89:17:80:e0:5c:93:1c:21:41:91:ea:5f:3d:42:7f:9d:
c7:e2:be:6e:aa:22:e3:fc:40:97:1a:50:c4:26:7d:33:1a:1d:
62:c9:fd:99:ca:f3:31:68:d2:d0:3c:66:9d:38:92:93:25:c2:
4a:ce:30:f6:df:bc:df:63:b0:9b:a3:73:ca:6e:c3:d3:4d:3c:
07:40:a5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org