Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/e22192-be00-48c0-a711-7f96c9f05f54/1/wromir5SRrfbZOW3d-iUt3V5ay8.roa
File: wromir5SRrfbZOW3d-iUt3V5ay8.roa (raw, json)
Hash identifier: DvAQx8M+/ognR2lpEEMl98jdlTMVt3G5WrvNz0w8hww=
Subject key identifier: C2:BA:26:8A:BE:52:46:B7:DB:64:E5:B7:77:E8:94:B7:75:79:6B:2F
Certificate issuer: /CN=0bcbf748e9f4998685d0c965d2dfdf0f362a5052
Certificate serial: 01856E2F749B1A5410157804E014CA82D8A9
Authority key identifier: 0B:CB:F7:48:E9:F4:99:86:85:D0:C9:65:D2:DF:DF:0F:36:2A:50:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C8v3SOn0mYaF0Mll0t_fDzYqUFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/e22192-be00-48c0-a711-7f96c9f05f54/1/wromir5SRrfbZOW3d-iUt3V5ay8.roa
Signing time: Sun 01 Jan 2023 16:34:41 +0000
ROA not before: Sun 01 Jan 2023 16:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48781
IP address blocks: 185.33.246.0/24 maxlen: 24
185.33.244.0/24 maxlen: 24
91.107.0.0/18 maxlen: 19
95.128.240.0/21 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:74:9b:1a:54:10:15:78:04:e0:14:ca:82:d8:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bcbf748e9f4998685d0c965d2dfdf0f362a5052
Validity
Not Before: Jan 1 16:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2ba268abe5246b7db64e5b777e894b775796b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:5f:44:70:71:32:84:09:90:bc:dc:48:e5:
ca:27:06:14:04:57:97:ba:35:67:0c:84:01:e3:be:
2e:af:16:2d:da:2b:3c:ca:eb:da:8f:d5:85:68:d3:
ab:53:fc:c3:69:02:4d:f6:ef:15:91:58:0d:a3:e5:
0c:6d:0e:f1:87:2c:f4:25:fb:3b:06:1d:26:31:a8:
59:68:e1:33:06:03:91:c8:e8:f6:4e:5e:d5:ab:e9:
04:11:c5:7a:ca:a2:f5:90:82:b1:e8:de:7a:75:aa:
78:2e:f7:81:9e:35:5c:be:69:2d:79:d0:65:3c:ac:
f2:9e:2a:97:31:2f:00:0b:4e:0a:3e:d2:9f:85:2a:
bb:31:eb:30:df:d8:0a:91:bd:06:91:55:21:6c:9b:
ed:56:75:e3:a4:3c:37:e0:86:03:6f:be:17:bd:17:
47:01:e9:5d:25:04:74:57:b7:bf:52:7e:df:aa:c2:
c7:d6:5f:00:f1:64:e0:b7:c0:62:3d:34:62:6c:7a:
02:83:1c:01:0c:cb:03:cf:39:8d:27:f6:cf:b5:48:
32:7c:d1:75:f7:fe:99:7a:76:7b:65:de:cf:b1:15:
3f:87:82:c7:07:44:28:2f:b8:4e:eb:37:cf:ed:a0:
1e:99:0b:2f:0e:93:c2:d1:1a:cc:5c:5f:09:52:6f:
69:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BA:26:8A:BE:52:46:B7:DB:64:E5:B7:77:E8:94:B7:75:79:6B:2F
X509v3 Authority Key Identifier:
keyid:0B:CB:F7:48:E9:F4:99:86:85:D0:C9:65:D2:DF:DF:0F:36:2A:50:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C8v3SOn0mYaF0Mll0t_fDzYqUFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/e22192-be00-48c0-a711-7f96c9f05f54/1/wromir5SRrfbZOW3d-iUt3V5ay8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/e22192-be00-48c0-a711-7f96c9f05f54/1/C8v3SOn0mYaF0Mll0t_fDzYqUFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.107.0.0/18
95.128.240.0/21
185.33.244.0/24
185.33.246.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:d4:88:56:92:69:3a:ea:a6:38:be:20:6d:fe:87:ef:8b:7d:
5b:60:93:ec:e4:e8:ab:a1:6e:21:91:28:01:bc:92:2d:11:8a:
9e:1e:e1:8a:d0:a7:95:63:67:53:71:c7:8e:7f:cf:5e:56:80:
d8:bf:4e:6a:e1:1f:8b:11:ff:4b:b4:24:d2:4f:ae:9c:2b:a6:
9d:d7:f5:c5:c1:54:e3:88:08:0c:da:3d:fc:90:3a:bb:31:01:
1c:8a:a4:94:9b:00:5a:b3:98:0b:fb:35:0f:e0:b1:bb:04:a7:
24:11:bd:fa:68:ef:2e:d4:f3:c1:7a:65:d1:d7:0d:38:18:94:
28:59:9b:0b:93:f6:5d:bd:44:43:61:88:ca:e7:9b:6c:af:22:
fb:94:28:d1:2a:46:e5:45:77:2d:72:ed:6c:d0:c8:ee:1f:14:
e5:d3:e3:ef:24:2c:d5:fb:31:5a:4b:51:a1:39:26:f5:fa:10:
d9:23:83:0f:2c:23:cf:34:4c:81:f5:88:54:54:ef:c6:26:1b:
e1:43:56:bb:6f:99:1e:30:4c:3a:0c:65:19:bb:a3:bf:7a:f2:
72:a3:0a:fc:33:f3:00:b1:9d:f3:0e:ef:ae:09:f6:aa:5b:ee:
67:30:ed:0e:fa:14:e7:9f:ac:3d:e4:0f:ca:27:8b:88:ed:b7:
d6:37:60:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:37 2024 by rpki-client on console-fra.rpki-client.org