Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/e0SA5seHDmIX-QLC5cncc31qJDE.roa
File: e0SA5seHDmIX-QLC5cncc31qJDE.roa (raw, json)
Hash identifier: RMe1Ovf18l33RrkTLOYp6vhKcStlaCWchhfNIK+v6YA=
Subject key identifier: 7B:44:80:E6:C7:87:0E:62:17:F9:02:C2:E5:C9:DC:73:7D:6A:24:31
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 018B2D55BE2C7C4C8774485E7030F15D13E7
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/e0SA5seHDmIX-QLC5cncc31qJDE.roa
Signing time: Sat 14 Oct 2023 08:37:55 +0000
ROA not before: Sat 14 Oct 2023 08:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.38.0/24 maxlen: 24
185.199.37.0/24 maxlen: 24
194.145.63.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/22 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.206.0/24 maxlen: 24
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Nov 2023 13:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:55:be:2c:7c:4c:87:74:48:5e:70:30:f1:5d:13:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Oct 14 08:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b4480e6c7870e6217f902c2e5c9dc737d6a2431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3f:1c:32:78:22:b1:fd:52:1f:cc:56:5b:79:
ef:fe:c2:db:b4:b2:21:b0:45:83:5c:fc:7d:55:2d:
84:04:63:75:02:5c:c3:3f:b0:13:f9:e6:de:16:65:
54:8b:44:5e:6c:17:c5:79:39:4a:cf:28:0b:50:03:
06:55:43:92:87:b5:41:16:09:a6:6f:78:1b:0a:88:
42:4d:0a:ac:5a:2a:57:76:a2:3c:af:50:21:a8:04:
68:62:bb:29:0f:fc:3c:87:66:ad:c2:46:1b:af:6e:
37:99:50:64:dd:ec:13:f9:92:3a:72:7e:ad:a9:f0:
6a:f4:5d:6c:7e:2d:2d:cc:b9:64:4c:1c:b7:fc:09:
fe:8f:3b:33:9a:d7:18:51:b0:e5:88:e1:f5:6f:45:
4d:67:b2:c2:6e:66:c4:de:04:1b:a2:78:bf:e0:f4:
2e:94:c7:c7:ff:6a:10:44:8b:08:2b:8f:ec:1e:1a:
32:8d:c7:c9:e6:e6:52:fa:e9:1d:7d:36:31:31:27:
e6:97:3c:f9:51:56:3d:c1:51:a4:11:18:71:77:80:
e6:b4:64:e9:35:2e:ab:96:00:43:e6:20:3d:7e:f7:
71:5f:b8:1c:81:c2:59:e9:b3:ef:5f:3e:7f:c5:18:
0e:81:d0:9a:22:50:65:00:51:46:f5:4c:e4:26:07:
f4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:44:80:E6:C7:87:0E:62:17:F9:02:C2:E5:C9:DC:73:7D:6A:24:31
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/e0SA5seHDmIX-QLC5cncc31qJDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
194.145.63.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
7f:3d:09:2c:54:46:e9:3e:b9:87:ce:26:3a:e3:e8:5b:97:e1:
6f:9b:6b:9c:98:1f:c2:4a:be:a6:93:a4:ed:3c:95:2c:01:4d:
28:fe:f0:bd:6e:b1:35:ad:9c:48:c7:08:88:38:28:cf:ec:0a:
59:87:8b:94:a4:47:3c:2a:74:fc:26:28:e9:61:f1:88:90:20:
6e:e7:a3:69:91:65:34:b2:43:2a:f1:44:2b:15:d6:fc:fc:8d:
ed:fc:d5:09:03:a0:23:08:44:27:7a:fc:7b:12:8f:bf:b3:4e:
97:38:31:30:f5:4f:e4:23:2f:b1:3e:ff:ba:93:80:e8:42:90:
91:d0:d9:d5:10:f1:a6:25:20:0f:fc:46:28:c8:1c:46:55:da:
61:e2:6f:93:fb:8f:bb:de:ba:4c:85:87:3b:21:9b:40:6d:62:
db:fe:60:54:bd:cb:54:69:85:7f:f5:42:0e:8b:dd:56:cd:b1:
2c:14:9f:37:d0:ab:fe:18:19:b1:a9:2f:9c:4f:2e:47:ee:27:
32:25:82:b9:8f:2e:e0:0c:d4:98:55:d8:ce:6e:c3:33:47:06:
27:2c:db:06:40:0e:28:98:55:56:76:11:8b:07:b8:8e:19:04:
64:ec:cb:e2:97:47:ff:94:6c:20:26:c6:61:2d:86:3c:6f:6f:
82:e1:92:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org