Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mQE6Mvw-PI4C8aKmYwTsZTM2Bzc.roa
File: mQE6Mvw-PI4C8aKmYwTsZTM2Bzc.roa (raw, json)
Hash identifier: +u9t4XBh7QFNSUaEpBzsjQZtQwEoxNpXs/ddRJvQQZQ=
Subject key identifier: 99:01:3A:32:FC:3E:3C:8E:02:F1:A2:A6:63:04:EC:65:33:36:07:37
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 0186E4D32135A72293CC361C3E828B0CF353
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mQE6Mvw-PI4C8aKmYwTsZTM2Bzc.roa
Signing time: Wed 15 Mar 2023 10:31:27 +0000
ROA not before: Wed 15 Mar 2023 10:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203000
IP address blocks: 185.79.96.0/24 maxlen: 32
185.79.96.0/22 maxlen: 32
185.79.98.0/24 maxlen: 32
185.79.97.0/24 maxlen: 32
185.79.99.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 02 Jul 2023 04:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:d3:21:35:a7:22:93:cc:36:1c:3e:82:8b:0c:f3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Mar 15 10:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99013a32fc3e3c8e02f1a2a66304ec6533360737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7d:f2:bc:40:29:f6:63:9b:ef:a0:55:ec:50:
aa:77:cc:a3:04:ec:fa:77:a8:40:f6:59:ae:e2:5a:
d4:7f:e3:0e:ca:c7:6a:4e:85:f9:0a:d5:b4:31:2e:
17:ad:30:2c:44:09:13:82:c0:0e:df:3a:b9:97:bd:
a3:cc:ce:01:ca:5d:3c:74:b5:23:f3:28:ac:63:35:
a6:7b:46:6d:e1:0f:8a:bd:ab:e8:bd:ea:ad:49:cf:
74:da:ef:e4:a5:77:0e:05:c8:aa:49:46:4a:50:5e:
cc:36:06:64:d9:e5:fc:16:21:db:86:da:a4:94:b0:
cb:01:74:4d:fc:2f:02:d4:af:84:25:06:65:9e:fd:
2a:67:1a:ff:f7:fc:af:92:2a:24:55:4d:7d:47:f8:
52:63:58:ab:c5:d7:6a:70:fc:0d:a2:46:ec:6a:df:
bc:cb:a9:cb:a0:bf:7a:a8:ef:f6:37:af:a0:d3:c4:
3c:03:56:a6:c1:80:6a:08:1c:6e:95:62:38:fe:25:
88:be:10:a2:5a:85:64:2d:ce:59:61:72:68:f0:14:
91:e6:da:af:dc:5e:81:c4:a5:c9:11:f5:d1:48:e1:
94:31:32:b0:5d:8c:3a:e7:36:6f:19:d1:a8:44:86:
c3:c6:97:e3:69:28:5e:5f:95:d9:7d:4d:94:48:ee:
03:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:01:3A:32:FC:3E:3C:8E:02:F1:A2:A6:63:04:EC:65:33:36:07:37
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mQE6Mvw-PI4C8aKmYwTsZTM2Bzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.96.0/22
Signature Algorithm: sha256WithRSAEncryption
60:68:ad:04:33:dd:1c:2f:bf:98:a9:f0:48:41:f5:b6:43:24:
9c:b2:55:fe:8d:66:6f:69:d7:5d:33:63:2f:0b:9c:b1:f6:59:
43:0d:c9:cd:52:2c:1a:bb:85:e7:e7:3a:d2:60:23:2b:8a:e6:
90:43:99:b8:ed:93:d8:c7:73:15:c0:46:2d:df:67:1f:88:15:
89:77:fa:00:a1:9f:66:dc:9d:3e:b1:11:40:5a:70:59:31:bf:
52:53:12:4d:58:36:89:26:c5:3a:c2:38:75:5f:90:b3:49:53:
7c:d5:2e:52:22:9d:f2:18:0c:80:d9:88:9c:bb:7a:2e:e8:6d:
46:d0:91:61:f3:85:be:17:46:3c:0f:1f:e6:fa:e8:4a:f5:4d:
69:b7:8d:3f:76:d2:9d:41:61:0e:ec:77:8b:2c:ab:c4:2b:46:
28:14:30:23:0b:be:3e:ab:9e:39:e9:83:5e:a7:97:69:4d:10:
c5:93:47:5a:65:41:36:ac:79:ce:09:57:8f:13:c8:b9:74:79:
f4:a3:1b:65:7d:4c:7f:f9:a2:fc:a7:f1:ec:6c:4c:08:75:00:
5e:e7:ca:df:e8:95:34:88:86:6d:de:ba:cf:0d:6d:bf:f7:74:
37:d4:f4:80:d1:33:01:9d:0d:7c:4a:66:a2:15:26:73:a3:a1:
4b:55:ad:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:57 2024 by rpki-client on console-ams.rpki-client.org