Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/EO9anv97OlYF0uv1sJ0OGDPh0gs.roa
File: EO9anv97OlYF0uv1sJ0OGDPh0gs.roa (raw, json)
Hash identifier: dBcYXrKTvQMLh2k8HRHm5mfPoWcueYFcuyxvAofC42M=
Subject key identifier: 10:EF:5A:9E:FF:7B:3A:56:05:D2:EB:F5:B0:9D:0E:18:33:E1:D2:0B
Certificate issuer: /CN=fadce637efb28194715ac2a72129e20571b983af
Certificate serial: 0185737AAF6FF75023687B9A3F7360923750
Authority key identifier: FA:DC:E6:37:EF:B2:81:94:71:5A:C2:A7:21:29:E2:05:71:B9:83:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tzmN--ygZRxWsKnISniBXG5g68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/EO9anv97OlYF0uv1sJ0OGDPh0gs.roa
Signing time: Mon 02 Jan 2023 17:14:58 +0000
ROA not before: Mon 02 Jan 2023 17:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56722
IP address blocks: 185.134.208.0/22 maxlen: 22
2a06:eec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:af:6f:f7:50:23:68:7b:9a:3f:73:60:92:37:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fadce637efb28194715ac2a72129e20571b983af
Validity
Not Before: Jan 2 17:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10ef5a9eff7b3a5605d2ebf5b09d0e1833e1d20b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:fc:dc:f1:d5:61:f5:3a:57:70:52:b3:44:
f4:63:51:6c:82:a9:46:4d:45:43:59:44:f9:1a:8d:
6a:a5:ad:62:15:13:e2:ae:f2:8f:21:f0:cd:87:2d:
ad:a6:55:88:a2:d3:ca:55:4d:8e:8e:82:2a:af:8f:
31:03:a8:95:3f:76:5c:b7:cc:a4:dc:9b:23:68:b2:
d6:77:5f:73:4e:c9:75:be:a1:c0:5c:35:4d:cd:73:
de:9b:3a:ce:9d:95:65:d6:22:d8:1b:6e:c8:31:82:
bc:9b:85:f2:63:b7:2c:92:53:ef:cd:c3:20:e1:e9:
ef:03:48:38:c3:99:bf:5d:99:dc:a7:4f:21:20:53:
cd:c8:d0:6f:3a:9f:f3:af:c5:ca:64:53:3b:c4:95:
11:ef:72:c5:64:6b:f9:e3:a0:da:db:85:91:94:50:
68:f4:5f:61:3a:5f:f8:38:bc:c9:bf:81:a4:32:89:
2e:30:11:b9:41:93:2b:bb:55:5a:71:69:89:73:0a:
f2:01:e0:68:aa:a3:2e:00:a9:88:81:30:fd:34:35:
6e:b2:ff:a6:54:20:2c:6e:1d:41:2a:27:93:e6:07:
83:0d:96:ef:b6:ed:62:a7:be:12:7f:8e:4c:c0:ce:
77:de:a1:cd:3a:04:ed:79:d3:1e:f4:34:76:21:11:
26:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EF:5A:9E:FF:7B:3A:56:05:D2:EB:F5:B0:9D:0E:18:33:E1:D2:0B
X509v3 Authority Key Identifier:
keyid:FA:DC:E6:37:EF:B2:81:94:71:5A:C2:A7:21:29:E2:05:71:B9:83:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tzmN--ygZRxWsKnISniBXG5g68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/EO9anv97OlYF0uv1sJ0OGDPh0gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/1-tzmN--ygZRxWsKnISniBXG5g68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.208.0/22
IPv6:
2a06:eec0::/29
Signature Algorithm: sha256WithRSAEncryption
5c:47:a8:45:5b:06:ba:aa:79:10:a0:80:cf:01:a4:5c:12:c1:
23:12:c9:29:c0:85:96:51:50:7b:70:0f:ed:1d:6f:58:1e:7d:
b5:3b:c5:93:7a:a0:88:05:b9:49:e4:91:11:1b:60:9e:74:9f:
58:b3:50:41:ae:ec:e6:d5:d1:1a:68:ac:c8:15:5e:c3:43:1a:
2f:a4:1a:62:a2:c3:2b:fa:e3:a5:88:58:b2:6a:ca:6f:65:b2:
06:91:c4:1b:b6:39:d9:99:1a:9d:54:76:85:57:b4:05:96:73:
64:97:a9:f7:1f:20:6d:d9:14:93:24:9e:55:40:fa:6d:73:2a:
a4:9a:02:67:d5:38:f9:aa:0c:a6:c3:8d:33:8b:c6:6c:c9:fd:
0a:32:04:e5:ca:cc:62:96:4d:d2:b5:09:67:8e:59:93:b9:bc:
ee:ab:92:2c:44:ee:a3:17:ad:e2:ca:5d:2c:6b:26:eb:77:0b:
07:60:fc:4e:65:c4:0e:65:2f:7f:b2:80:18:71:d9:3a:d9:f5:
88:23:ad:e1:16:e9:70:c0:82:ae:80:7e:2c:88:08:9d:79:57:
56:1b:07:af:cc:88:35:32:1b:07:9a:03:92:79:97:d9:f9:67:
9c:fe:f2:43:fd:84:2e:3d:47:06:ca:0c:f3:55:b6:29:cf:f9:
3e:02:92:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org