Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/c4bd95-c670-490d-8cc0-b7dc83706a2a/1/q3opBvhZnE_1HccD8flvrNp7edc.roa
File: q3opBvhZnE_1HccD8flvrNp7edc.roa (raw, json)
Hash identifier: WWokJGS5zZmHBPzA6OdDm9y+AmYx8PP5nvP9nnvYjrA=
Subject key identifier: AB:7A:29:06:F8:59:9C:4F:F5:1D:C7:03:F1:F9:6F:AC:DA:7B:79:D7
Certificate issuer: /CN=e5cf78f5f339ee777da749210a96eced96b7f2e7
Certificate serial: 01866E71319F9AB431151339D9741416A29C
Authority key identifier: E5:CF:78:F5:F3:39:EE:77:7D:A7:49:21:0A:96:EC:ED:96:B7:F2:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5c949fM57nd9p0khCpbs7Za38uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/c4bd95-c670-490d-8cc0-b7dc83706a2a/1/q3opBvhZnE_1HccD8flvrNp7edc.roa
Signing time: Mon 20 Feb 2023 10:49:17 +0000
ROA not before: Mon 20 Feb 2023 10:49:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1921
IP address blocks: 185.80.190.0/24 maxlen: 24
185.80.191.0/24 maxlen: 24
185.80.188.0/24 maxlen: 24
2a05:7f00:188::/48 maxlen: 48
2a05:7f00:190::/48 maxlen: 48
2a05:7f00:191::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Feb 2023 13:35:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:71:31:9f:9a:b4:31:15:13:39:d9:74:14:16:a2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5cf78f5f339ee777da749210a96eced96b7f2e7
Validity
Not Before: Feb 20 10:49:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab7a2906f8599c4ff51dc703f1f96facda7b79d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2e:d5:f4:12:2d:27:02:3e:d4:65:ae:a1:d3:
f5:d7:1b:5c:97:b1:80:32:50:a3:a6:7a:24:86:48:
c1:9f:95:ea:e3:28:6d:5f:59:b5:29:90:6c:42:01:
54:9c:90:e2:18:92:54:cc:33:0d:7a:3c:21:92:d9:
5f:22:ea:47:ac:10:bd:b1:a6:0e:8a:36:97:fe:20:
fd:ff:78:80:b6:8b:ef:c3:98:77:03:ff:5f:b4:4e:
a7:6f:4c:03:39:d0:15:a5:65:af:55:af:02:7c:4d:
d6:47:9b:a7:8d:eb:7c:56:75:64:53:1d:47:fc:46:
b8:81:fe:2f:97:c3:3d:b4:aa:ed:cd:f5:f8:bf:38:
84:f5:7a:59:4e:eb:de:b4:cb:e3:17:85:6c:35:89:
1d:7a:19:45:d5:df:57:81:86:b3:0d:8a:2d:c4:69:
23:0a:e8:34:12:a7:c1:59:fb:15:27:cf:e7:b2:dd:
1e:76:43:b6:be:48:b2:f2:6f:21:aa:9f:1f:eb:7a:
c2:f2:dd:79:bb:ba:49:3c:c0:ec:5c:63:98:c7:40:
2c:2a:9f:cf:a3:1f:e1:f6:1e:07:36:0d:66:e9:2b:
cb:74:43:4f:54:53:20:43:fe:57:59:47:7b:02:11:
97:3f:b1:b0:cf:b9:2b:b7:89:58:cc:28:3e:30:bd:
26:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7A:29:06:F8:59:9C:4F:F5:1D:C7:03:F1:F9:6F:AC:DA:7B:79:D7
X509v3 Authority Key Identifier:
keyid:E5:CF:78:F5:F3:39:EE:77:7D:A7:49:21:0A:96:EC:ED:96:B7:F2:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c949fM57nd9p0khCpbs7Za38uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c4bd95-c670-490d-8cc0-b7dc83706a2a/1/q3opBvhZnE_1HccD8flvrNp7edc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c4bd95-c670-490d-8cc0-b7dc83706a2a/1/5c949fM57nd9p0khCpbs7Za38uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.188.0/24
185.80.190.0/23
IPv6:
2a05:7f00:188::/48
2a05:7f00:190::/47
Signature Algorithm: sha256WithRSAEncryption
6f:96:d8:f5:ba:ac:93:e4:a7:69:b3:28:c3:56:e3:e2:4c:7a:
71:2d:f3:7e:5e:c1:f5:6c:5b:9d:b0:62:06:31:33:6a:87:ee:
f4:6d:62:72:54:5a:89:e6:8f:73:8e:a7:87:ca:70:30:52:85:
c2:16:bf:65:7a:1a:8f:32:d1:c4:bf:1a:7d:fd:20:e2:2e:e5:
7a:53:0b:9b:ad:b2:09:8b:74:f4:29:07:32:78:c4:94:11:4f:
f2:4c:ae:13:85:24:6f:55:33:fe:f6:be:25:3a:85:3a:eb:87:
14:69:35:3e:cb:d2:e6:23:84:59:29:19:58:ce:69:42:b9:49:
d7:1e:55:9d:14:e1:c8:cc:46:6f:cd:5d:c6:2b:b5:52:c7:85:
37:af:d4:31:39:e3:cf:c1:04:6c:b2:e5:55:6b:cb:65:89:aa:
0a:8f:82:32:ad:94:d7:d4:5e:32:95:f1:1f:07:6a:c7:9c:4c:
50:3e:ea:e5:20:aa:74:9f:72:ed:f4:01:b1:6c:51:dd:72:50:
c6:32:c4:a4:dc:92:04:37:7a:59:5c:90:a0:a0:c1:c9:a5:2a:
90:a8:e9:5f:d7:ef:a1:bd:c6:74:ac:12:a7:0a:9e:f1:ce:e9:
89:b2:ae:75:a0:b5:8b:c0:d3:af:20:04:76:15:a3:cc:ba:29:
3c:ac:34:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org