Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/S4daZrNFNxrp26nFPammUuusTnM.roa
File: S4daZrNFNxrp26nFPammUuusTnM.roa (raw, json)
Hash identifier: VeW4ARQx66rIB8uiyzsqs2owkwmyVjbVQE4G8JJeCus=
Subject key identifier: 4B:87:5A:66:B3:45:37:1A:E9:DB:A9:C5:3D:A9:A6:52:EB:AC:4E:73
Certificate issuer: /CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Certificate serial: 018915A628158491CF17D2087298CF1FD08C
Authority key identifier: C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/S4daZrNFNxrp26nFPammUuusTnM.roa
Signing time: Sun 02 Jul 2023 08:09:18 +0000
ROA not before: Sun 02 Jul 2023 08:09:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206561
IP address blocks: 185.173.191.0/24 maxlen: 24
185.173.188.0/24 maxlen: 24
185.173.189.0/24 maxlen: 24
185.173.190.0/24 maxlen: 24
2a0f:46c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:15:a6:28:15:84:91:cf:17:d2:08:72:98:cf:1f:d0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Validity
Not Before: Jul 2 08:09:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b875a66b345371ae9dba9c53da9a652ebac4e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7c:dd:31:e4:39:59:07:91:ce:10:33:93:38:
58:3c:fd:ca:1d:de:a5:e8:3d:0e:84:71:47:fe:46:
36:7e:52:66:55:15:96:20:a2:83:82:3a:c9:b0:87:
05:8b:0a:46:a5:9c:0f:33:8b:3b:9a:7e:f5:8c:6c:
ce:a9:f0:80:79:d1:a1:d3:be:97:19:0b:9d:47:69:
90:6a:d2:d8:40:fc:e7:f7:67:6e:c1:c5:7c:1b:3f:
97:9e:01:02:b9:f0:ef:9f:87:a2:fc:98:ec:cb:cd:
34:9e:d9:8a:41:6d:79:62:09:ad:0d:f7:3b:98:03:
1e:53:0b:b7:e2:26:bb:28:58:36:d2:fe:0a:6a:e2:
e5:94:3e:c4:60:4c:57:c9:70:26:65:e5:0b:80:40:
67:56:3c:1a:0c:96:1a:41:44:c2:64:58:cd:a7:65:
c5:95:bf:e1:69:7a:a6:8f:55:cd:a6:c1:43:fa:57:
7d:7e:2a:e5:de:a1:94:18:30:43:8a:ff:98:57:24:
58:36:36:bd:a1:5d:10:f2:32:e4:dc:1e:4a:f9:38:
32:de:ca:34:1f:5c:13:fa:14:09:21:9c:99:22:7d:
7b:50:2e:52:9c:7f:dc:83:3b:3f:c3:24:be:a9:a1:
b6:90:8a:cd:28:a2:ae:23:74:71:cb:11:e9:2b:5e:
34:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:87:5A:66:B3:45:37:1A:E9:DB:A9:C5:3D:A9:A6:52:EB:AC:4E:73
X509v3 Authority Key Identifier:
keyid:C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/S4daZrNFNxrp26nFPammUuusTnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/wT40HB4U01p0ls54KOMFX4Y5Nc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.188.0/22
IPv6:
2a0f:46c0::/29
Signature Algorithm: sha256WithRSAEncryption
65:ac:7e:b6:30:a5:35:82:dd:d5:5c:24:56:09:13:fe:a5:56:
94:06:ac:e2:8b:f4:48:96:07:e3:73:02:94:8e:3c:ba:25:53:
36:0c:9e:b2:cf:7c:58:20:3f:f0:e8:dc:df:f3:1a:7e:1a:c3:
ce:0b:d9:c9:2c:21:77:52:9d:76:47:45:a4:0e:20:7c:9c:9c:
8a:84:58:44:5d:5d:a8:b8:ad:6c:d5:a2:4e:ba:cb:bc:d8:19:
d2:fd:3a:7e:6c:bb:a8:01:24:7a:ce:32:c9:69:cf:1e:c5:a7:
c6:11:d4:fb:ec:64:b3:04:fe:44:ed:a0:93:f5:e3:5b:02:d1:
d5:c7:f3:c6:06:a1:48:dc:b7:9f:9e:98:5b:af:4b:6b:48:46:
45:4c:8a:db:b8:d6:1a:65:32:ca:50:5e:d4:12:4f:74:fd:df:
d9:0c:b2:e2:67:a3:18:3b:f0:b1:0f:87:01:e4:d8:7b:72:f3:
27:d7:b9:cc:94:0a:ed:3f:14:27:bd:02:7c:54:de:0b:2f:55:
34:1e:20:f9:d7:97:00:92:a1:47:eb:88:82:fe:94:44:4c:f7:
98:3a:68:42:f7:26:1d:86:b5:8d:20:fa:2d:d3:fe:7b:75:25:
a7:cc:f2:76:d5:46:2b:66:68:0a:2e:f3:72:85:b8:d4:0a:06:
ea:7c:52:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:04 2024 by rpki-client on console-fra.rpki-client.org