Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/EPdVd7R712uBCarhnnH8X6DO5lY.roa
File: EPdVd7R712uBCarhnnH8X6DO5lY.roa (raw, json)
Hash identifier: n8MhLb9On2JoOsR1ojaG1cCq/5RHvpSvUIKv/H3OYZQ=
Subject key identifier: 10:F7:55:77:B4:7B:D7:6B:81:09:AA:E1:9E:71:FC:5F:A0:CE:E6:56
Certificate issuer: /CN=8d66032e08894118d7998c5c060ca46eb3871338
Certificate serial: 01856CAF2E4B44BC59F921161AD97DE94778
Authority key identifier: 8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/EPdVd7R712uBCarhnnH8X6DO5lY.roa
Signing time: Sun 01 Jan 2023 09:34:58 +0000
ROA not before: Sun 01 Jan 2023 09:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49425
IP address blocks: 185.169.144.0/23 maxlen: 24
45.75.128.0/17 maxlen: 24
2a0a:4900::/29 maxlen: 29
2a0a:4900::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:2e:4b:44:bc:59:f9:21:16:1a:d9:7d:e9:47:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d66032e08894118d7998c5c060ca46eb3871338
Validity
Not Before: Jan 1 09:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10f75577b47bd76b8109aae19e71fc5fa0cee656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:23:4c:eb:cf:c5:72:59:0a:da:ab:e8:e6:13:
6c:e7:a0:a4:78:c6:3c:19:90:8d:37:2a:b9:56:4d:
29:57:46:30:07:eb:1e:76:2d:0e:31:21:f6:b7:48:
35:63:ab:b5:ca:f3:70:aa:dc:c7:5f:72:47:74:25:
c2:d8:5c:8d:a4:42:66:ff:ce:fe:23:f9:5d:ea:bf:
6b:85:f0:0a:37:1b:1a:a3:e5:b5:d5:89:59:d3:e8:
99:d2:f0:e3:4e:1c:01:f6:c7:c9:95:71:31:c6:1e:
bd:da:81:f0:43:3d:1d:bf:3a:d7:47:79:35:48:d9:
19:fd:e3:ed:da:71:ef:33:21:01:7f:2b:6d:d5:83:
d2:17:3d:c2:fd:55:48:05:53:96:6d:2a:b1:16:45:
8a:48:97:f5:77:7d:6d:60:90:05:a2:d7:62:51:61:
ce:dc:e7:c4:ad:77:3a:6f:1a:d7:17:6e:6b:a3:5b:
70:22:b7:3a:f9:b7:f0:15:19:46:11:c2:c6:48:61:
86:71:97:99:22:55:c8:ce:59:d6:b8:89:07:a8:5f:
b3:e9:e0:22:4b:14:d4:a4:ee:e4:37:b3:23:08:c6:
91:f4:83:a7:ad:5e:e5:05:8e:6a:66:ac:ae:ac:b7:
4e:26:38:7d:4d:d9:57:43:d7:f1:9a:76:db:5f:89:
62:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F7:55:77:B4:7B:D7:6B:81:09:AA:E1:9E:71:FC:5F:A0:CE:E6:56
X509v3 Authority Key Identifier:
keyid:8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/EPdVd7R712uBCarhnnH8X6DO5lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/jWYDLgiJQRjXmYxcBgykbrOHEzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.75.128.0/17
185.169.144.0/23
IPv6:
2a0a:4900::/29
Signature Algorithm: sha256WithRSAEncryption
1f:fc:f8:e2:d4:a1:67:5f:05:bc:4a:54:f2:46:9a:c5:b3:ae:
4d:17:35:55:24:fd:3e:97:0b:db:87:1a:37:a5:b0:92:60:3c:
0a:45:5d:1c:5e:31:82:59:28:35:f1:5f:ad:5e:d8:15:d3:77:
af:49:78:c1:36:6f:3c:05:5e:71:8b:fb:51:ec:12:38:29:32:
81:a9:35:41:b3:cf:a7:22:30:a1:a4:d5:60:1a:64:08:a3:2d:
d5:6c:42:59:c8:3c:99:be:56:75:9e:0d:c3:28:37:55:36:d6:
c0:19:2d:11:21:c0:74:00:d1:8b:88:5c:39:1b:c1:a2:61:8d:
5c:b8:b4:22:15:d5:89:e5:8a:b5:51:9c:27:06:b0:ec:9a:2c:
b9:be:25:4a:7f:0d:21:40:80:2c:b9:b5:72:4e:11:77:58:c0:
a7:fa:55:09:a5:a8:10:d1:2c:07:12:67:fe:75:11:db:82:b4:
27:6a:e5:c8:4e:ec:c3:c6:af:84:d4:54:87:cc:44:cb:87:3a:
a3:99:1f:ef:8a:ee:cd:9f:b9:3d:b2:e4:52:8c:e4:95:44:ab:
bd:aa:f4:45:3f:6b:b5:76:55:57:78:c5:e9:85:19:47:e5:9f:
52:f5:f2:6b:66:ac:b3:ef:14:32:b5:a5:e7:e9:ee:ec:b2:13:
c9:b2:ec:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:33 2024 by rpki-client on console-fra.rpki-client.org