Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ED5XVe16J1SSZlQMsa-rHyj5Hv0.roa
File: ED5XVe16J1SSZlQMsa-rHyj5Hv0.roa (raw, json)
Hash identifier: NGtVRmv48LVu2bh7AfLs8it/iRlPQjv3ikaT0vnAfiA=
Subject key identifier: 10:3E:57:55:ED:7A:27:54:92:66:54:0C:B1:AF:AB:1F:28:F9:1E:FD
Certificate issuer: /CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Certificate serial: 018571F1166E5ED8E6AA2F02F9E96163E8FD
Authority key identifier: B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ED5XVe16J1SSZlQMsa-rHyj5Hv0.roa
Signing time: Mon 02 Jan 2023 10:05:03 +0000
ROA not before: Mon 02 Jan 2023 10:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.114.192.0/24 maxlen: 24
185.114.195.0/24 maxlen: 24
185.114.193.0/24 maxlen: 24
185.114.194.0/24 maxlen: 24
185.19.92.0/24 maxlen: 24
185.19.93.0/24 maxlen: 24
185.19.95.0/24 maxlen: 24
185.19.94.0/24 maxlen: 24
185.59.29.0/24 maxlen: 24
185.59.30.0/24 maxlen: 24
185.59.28.0/24 maxlen: 24
185.59.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:16:6e:5e:d8:e6:aa:2f:02:f9:e9:61:63:e8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b869ee66164d3cb41dbd2df5417817c32f4cea05
Validity
Not Before: Jan 2 10:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=103e5755ed7a27549266540cb1afab1f28f91efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:75:c3:67:2d:82:3d:22:a6:0f:f9:7a:01:8c:
57:80:f7:9e:57:5a:7d:41:a3:b8:c6:28:14:63:14:
77:82:04:61:a2:50:2a:dc:d4:cd:ab:3e:63:b9:e5:
9a:6d:d3:ef:f5:65:f8:19:13:04:ed:16:91:73:16:
90:4a:dc:4e:88:ac:3b:32:df:e2:81:75:85:2e:1d:
80:9a:2d:8e:f8:24:4d:89:c7:ca:16:9f:88:b5:6a:
4a:db:0d:51:5d:ed:7a:0d:e3:48:7d:b4:31:7e:e0:
fb:9b:e7:99:e2:d6:04:25:57:02:50:d1:d9:c2:bd:
a2:05:9f:82:24:a7:5d:53:8d:27:52:68:81:a3:06:
c0:7d:91:a0:a6:48:97:78:cc:f4:19:d5:53:c0:d1:
e7:44:8c:db:e3:d1:04:b4:95:c8:b4:21:5f:c1:b9:
ba:77:bf:4a:fb:9b:83:32:6c:a4:85:15:56:67:dc:
e1:ae:ad:9a:f4:cc:72:e3:98:ed:09:5d:e2:de:ee:
01:77:1d:e3:8e:fe:1b:bd:43:e0:ed:91:1f:c8:63:
19:24:d9:2b:22:c4:71:18:aa:f4:87:a1:c3:43:a2:
a9:4c:04:7d:cb:a2:d0:31:dd:32:3b:40:19:3a:d0:
c8:6e:e8:4b:45:81:40:39:3c:cb:bf:f8:60:c5:ad:
0d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3E:57:55:ED:7A:27:54:92:66:54:0C:B1:AF:AB:1F:28:F9:1E:FD
X509v3 Authority Key Identifier:
keyid:B8:69:EE:66:16:4D:3C:B4:1D:BD:2D:F5:41:78:17:C3:2F:4C:EA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uGnuZhZNPLQdvS31QXgXwy9M6gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/ED5XVe16J1SSZlQMsa-rHyj5Hv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d5ee1-accf-474f-a589-cd1fa484411b/1/uGnuZhZNPLQdvS31QXgXwy9M6gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.92.0/22
185.59.28.0/22
185.114.192.0/22
Signature Algorithm: sha256WithRSAEncryption
55:76:a8:53:a6:fb:53:81:06:06:9d:f1:21:b7:d4:36:be:fd:
d7:2e:8e:8b:dc:3e:d1:73:98:9b:46:a5:97:f3:7f:ca:0c:b9:
62:03:a4:a4:bc:36:13:e1:12:26:fc:78:30:27:9d:6e:3c:6e:
d3:a1:dd:4c:ac:bb:b1:cf:a1:f4:38:cf:4c:c2:1a:57:d6:fd:
cb:c5:7c:a1:01:43:a4:2f:39:e7:b6:7b:38:7b:96:6f:41:f0:
f5:bf:35:68:dd:54:52:f2:50:5b:d6:6c:78:b0:09:8f:51:bc:
85:c7:8f:61:48:1c:46:4f:5f:db:28:57:42:4b:4c:aa:80:52:
b8:28:57:0b:ef:40:34:ba:a6:37:81:6e:c2:7e:af:d5:60:e7:
7a:d9:74:eb:42:fa:7b:4d:8a:c8:5d:0e:f4:db:98:d7:57:30:
5a:25:b3:33:63:49:fc:58:2a:2e:ec:dc:83:6a:6e:ff:8a:1d:
18:ab:5d:82:45:0d:e3:c7:66:cc:72:d7:e6:db:19:ac:5c:66:
e9:5d:d8:cf:21:8f:a1:5a:ff:53:60:20:47:d5:37:33:89:a2:
38:46:d5:92:65:59:27:84:52:fa:b0:9d:0d:09:7b:af:e7:f4:
79:da:60:4e:20:55:c2:c0:16:ca:ce:c4:9e:c2:ce:78:6e:5b:
d6:e8:22:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org