Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/19g_WZGWVwX8T9cfLhfBxYu9RzE.roa
File: 19g_WZGWVwX8T9cfLhfBxYu9RzE.roa (raw, json)
Hash identifier: nifiChV8F+2xDZafXZxG1mLFBfczlWrFuOk4NYzhgf0=
Subject key identifier: D7:D8:3F:59:91:96:57:05:FC:4F:D7:1F:2E:17:C1:C5:8B:BD:47:31
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 01857082D392E9FAE76D92FB19FA35055526
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/19g_WZGWVwX8T9cfLhfBxYu9RzE.roa
Signing time: Mon 02 Jan 2023 03:24:59 +0000
ROA not before: Mon 02 Jan 2023 03:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35600
IP address blocks: 45.84.112.0/22 maxlen: 24
185.56.176.0/22 maxlen: 22
91.221.92.0/23 maxlen: 24
91.221.106.0/23 maxlen: 24
194.117.246.0/23 maxlen: 23
185.48.132.0/22 maxlen: 24
2001:67c:184c::/48 maxlen: 48
2a02:5520::/32 maxlen: 32
2a00:4780::/32 maxlen: 32
2a0e:ac80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 26 Apr 2023 16:38:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:d3:92:e9:fa:e7:6d:92:fb:19:fa:35:05:55:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jan 2 03:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7d83f5991965705fc4fd71f2e17c1c58bbd4731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2b:64:91:85:0a:35:94:0b:4c:8d:76:c5:e5:
7e:f9:76:cc:80:2e:77:28:04:e4:c6:8a:65:b1:e7:
fe:47:dc:8f:0d:fc:60:04:61:e5:39:3f:05:7a:0d:
1b:e8:5e:ca:8c:01:35:9e:e4:3f:c9:2b:0a:fc:1d:
8e:5e:bb:ee:b2:79:f0:43:22:a7:aa:44:2b:b2:87:
da:e0:8b:6e:4a:d4:1b:f2:d3:17:7c:80:24:f0:fe:
7c:a6:38:c8:4d:3e:cb:6a:6d:89:06:ad:d6:e2:7f:
cf:db:29:d0:6e:db:aa:8b:a1:80:e7:11:8a:71:db:
be:95:37:45:46:96:9c:c7:4e:1d:b9:fc:fa:fc:9b:
6b:9a:ff:9f:88:4f:b1:8d:f2:ab:0d:24:b5:0f:cf:
66:b2:6a:fe:28:08:6f:48:6e:93:1b:96:4a:e6:22:
4d:ed:dc:ea:d5:d2:19:76:e6:cd:bc:7e:22:f1:27:
b3:46:1a:c9:21:0e:33:0c:27:11:c4:a3:30:d3:fd:
34:95:40:22:15:e0:f8:d4:90:c9:a7:11:3d:ef:11:
b4:de:11:cf:e3:bf:cb:d8:91:ad:e3:c0:58:26:25:
09:3f:88:a2:f3:5a:3d:95:10:d2:7d:20:af:69:85:
7b:e5:22:ce:e2:b9:11:41:de:44:20:2b:ac:bb:0d:
81:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D8:3F:59:91:96:57:05:FC:4F:D7:1F:2E:17:C1:C5:8B:BD:47:31
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/19g_WZGWVwX8T9cfLhfBxYu9RzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.112.0/22
91.221.92.0/23
91.221.106.0/23
185.48.132.0/22
185.56.176.0/22
194.117.246.0/23
IPv6:
2001:67c:184c::/48
2a00:4780::/32
2a02:5520::/32
2a0e:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
4d:bd:3a:b8:3b:cc:4b:59:f7:64:72:ed:d5:86:21:c6:e1:22:
13:61:4a:6b:ea:ba:a1:68:75:d1:31:09:ab:e2:c0:ac:d1:2c:
0c:9f:02:16:4b:9f:c1:3a:97:87:0b:71:8f:ac:90:0a:21:6d:
33:38:1f:d3:9c:bf:97:04:6b:e0:03:2f:cf:96:ea:92:cc:9f:
b9:d8:19:a7:89:7c:64:78:b4:c5:06:f7:d5:58:c7:4d:e0:02:
af:8a:0f:17:7e:2b:4a:4d:bd:14:51:fd:00:f3:31:8f:11:69:
0b:93:f0:b3:fb:56:bc:3b:ae:53:8a:72:14:50:85:1c:90:75:
9d:4b:6d:5a:07:0e:e4:9f:3a:43:6b:7d:90:3f:42:a1:9d:c1:
61:fa:9e:72:90:1c:51:9c:10:fb:ac:8d:58:f9:69:61:9d:07:
df:e6:3b:e8:9b:cf:4f:bc:a2:7b:b4:57:41:03:17:60:41:aa:
09:1d:e4:fb:2a:6d:46:93:14:23:03:6f:b2:59:62:60:d9:f0:
83:66:a8:66:f8:78:49:31:96:0a:16:de:8d:58:45:6b:12:c7:
fe:17:d5:b1:54:86:56:e0:79:77:65:87:96:1e:5e:6b:fb:e0:
77:4b:d7:5f:39:87:3d:14:f1:23:20:f9:45:14:06:c2:cc:b8:
02:68:36:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:26 2024 by rpki-client on console-ams.rpki-client.org