Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/OfrFZN7C8f76-RomEidVGUAPkMI.roa
File: OfrFZN7C8f76-RomEidVGUAPkMI.roa (raw, json)
Hash identifier: 1SJIUmvXH5bHxZRE2+xGlEqVfBGeEmgHCBlCS/hXCLs=
Subject key identifier: 39:FA:C5:64:DE:C2:F1:FE:FA:F9:1A:26:12:27:55:19:40:0F:90:C2
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 018CC94CDEC40CA80D90063B44C152953FA6
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/OfrFZN7C8f76-RomEidVGUAPkMI.roa
Signing time: Tue 02 Jan 2024 08:31:47 +0000
ROA not before: Tue 02 Jan 2024 08:31:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206136
IP address blocks: 185.195.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 15 May 2024 23:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:de:c4:0c:a8:0d:90:06:3b:44:c1:52:95:3f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 2 08:31:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39fac564dec2f1fefaf91a2612275519400f90c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:be:12:c0:e7:0b:34:e4:d7:d7:30:05:cf:
8d:8a:c8:c8:60:57:43:9b:da:f3:f3:3c:60:8a:d3:
d5:2d:8f:00:6d:d1:0b:42:0b:41:e1:da:63:dd:50:
7b:3b:bc:08:84:a2:ec:b1:25:e1:63:ab:f6:1a:cf:
4e:a1:02:ea:4e:18:31:d9:d9:ad:77:65:e7:90:ec:
50:3c:f8:aa:71:fd:3d:ff:a0:68:4c:20:e7:67:3b:
11:2f:2e:ee:5e:87:43:0b:2a:e1:10:6d:80:e8:0d:
dd:61:b1:0c:99:c4:53:8e:d8:08:96:c8:cc:c9:d6:
9f:a7:4e:ba:6a:12:a3:0c:43:48:72:cf:3b:fc:7a:
3b:ce:9d:9f:b3:5a:10:d0:c6:65:e1:59:23:42:73:
4d:71:de:9d:ca:4d:8c:c9:db:d8:60:89:64:38:58:
f7:93:90:ca:22:33:90:c7:da:21:53:f3:9d:02:99:
67:48:16:4a:33:24:1d:ad:6f:82:78:f1:a3:24:dc:
46:75:ba:a9:a9:7d:70:80:74:92:fb:51:01:af:95:
d8:f1:66:40:96:cb:54:63:b5:c4:3a:2e:60:69:10:
d4:4d:fc:d2:a1:90:19:0c:a2:dd:53:92:43:59:85:
60:a6:d0:c6:19:bc:8f:02:43:e8:f3:e4:af:42:36:
2e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FA:C5:64:DE:C2:F1:FE:FA:F9:1A:26:12:27:55:19:40:0F:90:C2
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/OfrFZN7C8f76-RomEidVGUAPkMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.104.0/22
Signature Algorithm: sha256WithRSAEncryption
55:4d:d8:1c:0f:2a:37:3f:f8:90:fa:78:18:09:bf:7d:8f:92:
a6:bc:c6:9c:6b:1d:28:bf:b7:4c:24:5e:81:0f:22:01:ac:15:
e6:dc:04:0a:31:44:47:4d:16:70:ef:b3:93:40:ad:d4:f2:ff:
f0:66:bd:15:51:1b:ad:29:3d:23:ca:4b:56:b4:74:8a:4e:d1:
32:f5:16:36:f0:14:f6:1c:5e:e3:05:a6:f2:7b:85:54:c0:d3:
5f:c7:18:96:fe:ec:fc:05:2a:b4:6f:ce:1c:3b:b8:3d:fe:a8:
e9:fa:a2:11:73:7c:78:c6:f4:c0:eb:7a:0a:ca:72:2e:a9:0c:
5e:ec:b1:09:3a:bc:36:74:9a:a5:e5:f4:3a:b5:aa:e1:b5:da:
6f:17:51:05:0d:e6:1b:8c:1f:7f:fa:85:26:01:b5:33:90:15:
6a:e4:19:4b:cb:9b:1d:40:9c:17:79:b9:e9:b9:eb:76:c9:45:
1d:07:56:b2:ba:45:6e:a4:ae:1d:4e:fc:d5:43:84:43:b0:d0:
e0:92:03:e2:8a:c3:25:2f:c5:5c:c9:65:fc:0f:a4:b5:bc:d4:
bf:94:43:7d:68:ab:9e:e2:f6:97:98:41:53:49:6b:cc:e0:08:
39:e2:14:83:ce:0b:77:de:e1:52:88:ca:3f:a2:55:86:2c:13:
c8:82:f7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:56 2024 by rpki-client on console-fra.rpki-client.org