Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/EOJf-pNdRYVMstRSgqlSDNU_VDc.roa
File: EOJf-pNdRYVMstRSgqlSDNU_VDc.roa (raw, json)
Hash identifier: tiTJRzmeXZcb/U2xQuNBLRlVfqK2Pg4CWKL+/MoOSos=
Subject key identifier: 10:E2:5F:FA:93:5D:45:85:4C:B2:D4:52:82:A9:52:0C:D5:3F:54:37
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 018CC794E2218041D94533AA9C93A68E6EC9
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/EOJf-pNdRYVMstRSgqlSDNU_VDc.roa
Signing time: Tue 02 Jan 2024 00:31:12 +0000
ROA not before: Tue 02 Jan 2024 00:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59741
IP address blocks: 185.73.240.0/24 maxlen: 24
185.73.242.0/24 maxlen: 24
185.73.241.0/24 maxlen: 24
45.141.54.0/24 maxlen: 24
45.141.52.0/22 maxlen: 24
2a05:4740::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Apr 2024 09:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:e2:21:80:41:d9:45:33:aa:9c:93:a6:8e:6e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 00:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10e25ffa935d45854cb2d45282a9520cd53f5437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ac:e9:96:24:a1:ff:2c:82:c1:cb:f0:ae:79:
5b:09:bb:49:bd:8e:cb:fa:a4:41:4e:90:50:86:6e:
f1:1c:6c:2d:00:4d:97:f6:f1:46:b1:e5:5f:09:21:
4c:d2:94:2d:bf:3c:93:a9:3f:f7:2a:08:92:83:a6:
f4:65:7d:ff:e5:b2:9f:d2:89:ba:7a:09:32:e2:b0:
b3:e1:a3:68:c4:0c:8d:f6:d1:7d:c2:3d:cf:6f:1a:
6f:11:29:b4:f1:ef:f0:e5:21:1d:85:6b:d7:a8:1e:
f8:7f:25:63:7c:03:66:04:3f:ab:42:90:c0:1c:84:
c8:8f:4b:1c:e5:a3:f9:d1:4f:13:0a:24:9b:6c:bb:
b3:bb:28:fe:4f:02:46:47:a1:ae:79:99:dd:c3:4c:
0f:68:ea:fc:fb:02:4e:0a:dc:68:94:95:21:02:04:
5c:0a:a0:ef:46:e3:14:09:96:2c:4e:af:4e:13:4a:
71:24:d8:27:0b:23:f2:07:f7:bc:5d:e6:dd:ad:d5:
ef:01:9b:45:00:ff:8e:37:e7:a7:cc:42:f2:c0:25:
a0:f7:86:16:f1:55:27:93:71:e8:b2:3b:ba:be:a0:
5a:f2:65:f3:99:9e:f9:5b:f2:32:21:22:f7:ce:48:
eb:2a:81:70:e0:ee:0e:b2:1f:4e:81:39:e7:38:5e:
58:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E2:5F:FA:93:5D:45:85:4C:B2:D4:52:82:A9:52:0C:D5:3F:54:37
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/EOJf-pNdRYVMstRSgqlSDNU_VDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.52.0/22
185.73.240.0-185.73.242.255
IPv6:
2a05:4740::/32
Signature Algorithm: sha256WithRSAEncryption
1b:f2:a0:45:b0:c8:85:51:cc:e1:55:d6:2c:df:39:34:ff:73:
ff:95:ab:de:ba:d4:ac:19:d8:65:9d:bf:dd:42:84:61:71:53:
84:7b:a5:23:5e:3a:d7:9f:b9:05:a2:7f:e5:d4:8e:70:a2:61:
7b:59:0d:c5:82:de:96:ae:d0:06:a4:ce:d6:62:b1:a9:42:ec:
c9:05:f7:b8:cb:26:be:f7:19:68:60:f2:55:db:e9:ce:99:f4:
4d:c4:b0:25:fd:d6:b7:21:0c:02:98:97:f1:d8:e3:cf:21:c5:
73:7f:12:b4:ff:72:75:53:cb:6a:1c:47:2f:ea:f4:3c:fb:6e:
b6:4e:8a:e7:88:ff:e1:72:78:1c:9e:15:d6:48:d4:27:ff:0f:
33:c5:ee:01:82:1b:b0:62:c6:0a:c6:cb:8d:3c:7e:71:5b:89:
b8:c7:a4:14:1b:b9:90:c0:f8:ad:4c:f9:fe:70:e2:e8:6b:5a:
0b:ab:99:92:da:18:e9:9c:f3:b6:ee:19:cd:98:89:f1:38:9e:
00:d4:30:92:f5:b2:05:cc:e7:a7:56:a4:dd:f3:bd:31:9c:82:
97:ec:a8:19:d2:6b:f1:51:78:4e:45:14:10:32:a8:2f:05:d7:
55:46:33:a1:4f:4a:79:46:ba:35:72:d6:9a:4b:41:24:61:cf:
6e:a8:f8:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:53 2024 by rpki-client on console-fra.rpki-client.org