Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EfG37iErdiQbwgXNvauKgEkzGzk.roa
File: EfG37iErdiQbwgXNvauKgEkzGzk.roa (raw, json)
Hash identifier: Wap7eFgEu/hd7Ny+XyzZolqyZulHyBJwstQJVZ9MlIQ=
Subject key identifier: 11:F1:B7:EE:21:2B:76:24:1B:C2:05:CD:BD:AB:8A:80:49:33:1B:39
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018D6B7528704F4531BDBC29D54DEEC6EE4F
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EfG37iErdiQbwgXNvauKgEkzGzk.roa
Signing time: Fri 02 Feb 2024 20:14:16 +0000
ROA not before: Fri 02 Feb 2024 20:14:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202973
IP address blocks: 185.106.92.0/24 maxlen: 24
194.36.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 20:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:75:28:70:4f:45:31:bd:bc:29:d5:4d:ee:c6:ee:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Feb 2 20:14:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11f1b7ee212b76241bc205cdbdab8a8049331b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:62:5e:76:93:66:80:d5:5a:99:13:51:7f:74:
f4:71:67:d6:d3:d5:5f:85:c8:a7:72:b4:70:3d:00:
aa:c9:76:69:4a:98:e9:ac:38:bf:32:e4:2f:d6:18:
9d:bf:3c:59:a9:46:cd:8e:ae:91:1e:93:a6:43:53:
37:b4:bf:f3:f4:b5:1b:ee:b8:19:f4:3a:c7:35:d1:
cd:c4:97:3d:d8:db:16:82:e6:f6:0b:1c:54:48:75:
dc:4c:ab:4e:84:9e:68:20:12:5b:8b:7f:4b:fa:58:
3d:3b:b6:e6:68:ab:68:62:bc:d9:a9:9f:dc:b0:e7:
09:c1:89:c4:ef:82:0c:5b:4b:ec:23:2a:8e:60:b0:
dd:c6:d5:4f:48:5d:d5:d8:69:28:07:19:2a:37:08:
0f:24:c7:4b:7e:d2:47:94:e2:59:17:05:f4:df:82:
b3:a4:50:e1:ea:3f:06:40:10:fd:50:00:81:39:ff:
c3:04:76:16:95:2a:a5:29:fd:e5:b6:c5:bd:69:03:
04:f1:21:f9:53:42:40:da:6f:d5:09:33:7f:12:b9:
9a:ce:d0:32:29:d3:54:f8:78:7b:a7:20:d8:25:a3:
62:40:d3:16:e6:13:33:66:4b:6b:81:bd:dc:59:c7:
42:c7:13:db:38:a0:7e:b2:a6:e6:46:8b:3a:87:30:
08:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F1:B7:EE:21:2B:76:24:1B:C2:05:CD:BD:AB:8A:80:49:33:1B:39
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EfG37iErdiQbwgXNvauKgEkzGzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.92.0/24
194.36.177.0/24
Signature Algorithm: sha256WithRSAEncryption
97:c4:ba:ae:7c:93:60:3d:0f:48:16:4e:dc:c6:eb:53:fc:80:
9f:4b:2c:9d:26:cb:af:df:b9:fe:1d:ac:91:f8:32:3b:a9:3b:
68:b6:27:e4:4a:06:ba:dd:78:9a:f5:e3:ac:b1:c8:7e:4d:9e:
da:45:b6:f4:2a:0d:02:52:33:b7:26:36:08:b3:c5:3f:f4:96:
2c:9a:c1:07:e9:fa:44:63:81:04:45:57:cb:aa:41:2c:42:cb:
9d:6b:00:02:81:89:7f:9d:68:ec:43:41:25:2e:21:38:2f:95:
7c:81:f7:a3:b1:96:7b:f1:c2:96:ee:e5:05:91:c6:15:9f:67:
97:1e:d3:bc:89:99:20:22:2d:d1:f0:dd:38:94:7d:e4:2c:f8:
91:c1:ae:ea:55:e3:5f:b3:76:ad:94:fa:63:33:a3:b7:0e:a0:
72:05:a1:a5:b1:b7:27:d2:2e:38:27:31:55:10:35:06:a2:b8:
b0:af:55:31:fb:54:06:ba:70:52:6a:d1:b8:5d:49:6a:e5:27:
9c:be:f8:fd:e4:a1:48:1b:48:45:2d:89:52:cf:16:6b:5b:b3:
96:5f:35:1e:56:cb:ac:f6:a5:26:21:98:85:e6:0c:61:d6:5e:
0e:11:17:fb:c5:f3:fc:a3:bf:35:fe:5e:a6:01:48:11:0f:40:
a9:09:18:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org