Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/pETpqg7ldE0KmKPZrt9tf9dTv9o.roa
File: pETpqg7ldE0KmKPZrt9tf9dTv9o.roa (raw, json)
Hash identifier: jfsneDq3X9VZhQuXgNmXP7Xe278qip+k7NhmDV/5QTY=
Subject key identifier: A4:44:E9:AA:0E:E5:74:4D:0A:98:A3:D9:AE:DF:6D:7F:D7:53:BF:DA
Certificate issuer: /CN=3e332dd2994c6ee89436158a2eac1f482922cd2a
Certificate serial: 018B292B2717CBA07EF66183A8074BBC0676
Authority key identifier: 3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/pETpqg7ldE0KmKPZrt9tf9dTv9o.roa
Signing time: Fri 13 Oct 2023 13:12:55 +0000
ROA not before: Fri 13 Oct 2023 13:12:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205049
IP address blocks: 185.230.43.0/24 maxlen: 24
185.230.40.0/24 maxlen: 24
185.230.40.0/22 maxlen: 22
185.230.41.0/24 maxlen: 24
185.230.42.0/24 maxlen: 24
2a13:3680:4000::/35 maxlen: 35
2a13:3680:2000::/35 maxlen: 35
Validation: Failed, certificate revoked on Sun 15 Oct 2023 19:22:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:2b:27:17:cb:a0:7e:f6:61:83:a8:07:4b:bc:06:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e332dd2994c6ee89436158a2eac1f482922cd2a
Validity
Not Before: Oct 13 13:12:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a444e9aa0ee5744d0a98a3d9aedf6d7fd753bfda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1a:db:0a:e6:50:62:75:41:bd:16:be:a0:a1:
5d:3b:c3:12:97:fe:5a:6b:ce:71:9c:41:4a:bb:ad:
30:42:8c:1f:a2:22:06:1c:02:1d:74:d9:b0:bb:fb:
a1:d6:6c:b6:b9:c8:33:a6:1c:fa:a2:05:60:19:50:
f9:1e:7f:8d:80:f7:8d:1e:ef:f7:10:b6:a5:d3:6e:
c2:8a:21:07:0a:df:db:b3:16:d1:b9:e9:cd:34:6f:
cb:6e:39:2a:45:64:2e:5f:24:bc:be:63:a0:88:4c:
24:17:64:0b:7e:bd:cb:eb:18:f7:45:36:69:15:04:
f1:93:30:88:e4:bd:bb:7d:45:c8:3e:db:b8:17:12:
95:e3:80:6c:e4:b9:56:03:14:b8:60:98:50:ba:1f:
a3:1a:9a:af:ab:63:a7:0e:4b:c0:96:83:5d:6c:54:
be:5f:05:67:9c:07:0a:3a:dc:6a:25:66:03:52:31:
b2:81:25:64:2e:bb:b0:92:87:3a:ce:70:bf:d6:cb:
96:16:4e:2a:0d:e1:c5:4d:7d:ba:5e:e0:a2:de:b2:
82:1f:3f:6a:52:cb:14:44:cd:a2:c1:81:c4:e8:02:
99:c2:f5:46:9c:fc:8f:3c:00:aa:31:0c:1d:0c:9d:
1e:27:d9:cf:67:68:5f:15:2d:e2:26:ff:34:87:c6:
2a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:44:E9:AA:0E:E5:74:4D:0A:98:A3:D9:AE:DF:6D:7F:D7:53:BF:DA
X509v3 Authority Key Identifier:
keyid:3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/pETpqg7ldE0KmKPZrt9tf9dTv9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.40.0/22
IPv6:
2a13:3680:2000::-2a13:3680:5fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0b:29:09:f7:0b:c5:7d:92:82:95:12:01:e5:a5:2f:e7:85:ca:
7e:a5:41:2c:5b:0c:30:db:18:bd:93:a3:59:a1:91:e0:04:b0:
49:54:d0:d7:69:87:dd:a8:84:b1:45:e4:f0:34:75:0b:ee:be:
79:8e:87:e3:f1:b0:df:7e:21:a9:be:6f:b1:c4:63:cd:1c:b3:
eb:2e:3a:9f:32:be:26:45:7c:4c:f2:13:22:6e:19:10:0e:05:
64:19:e1:9a:ff:16:c3:4a:86:3e:c6:c8:82:db:99:cb:27:c5:
3f:15:f6:7f:42:55:b4:31:4c:6e:a3:43:26:a3:c8:33:ea:dc:
6f:2b:b9:76:d8:1b:e6:0d:df:d6:ff:f3:f4:32:c8:b6:b8:9a:
46:b2:b0:a4:d4:d6:a8:7d:79:6b:2f:f2:92:bb:da:4c:2d:b2:
b5:40:11:f0:59:cf:2c:a5:2f:64:94:67:79:b7:80:80:dd:25:
30:ba:80:34:6a:be:7f:64:aa:20:b5:9e:d5:0c:77:6b:46:2c:
5e:20:f0:53:2e:84:1c:7b:fc:9b:45:7a:bc:70:0c:70:49:15:
f5:cd:22:c3:4d:27:03:f0:05:40:3a:bb:65:4a:d7:9a:12:af:
02:fe:0f:19:6b:d6:1b:be:a2:d2:48:d9:5f:6f:91:89:dc:7a:
8c:20:a4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:55 2024 by rpki-client on console-ams.rpki-client.org