Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/sZyEJXOYa5mCF-EbTbLyLKY2tf8.roa
File: sZyEJXOYa5mCF-EbTbLyLKY2tf8.roa (raw, json)
Hash identifier: zhw/tFglZwvPY2Ws6R/amBtIVRuXZhe+dqBvW9K0Dfk=
Subject key identifier: B1:9C:84:25:73:98:6B:99:82:17:E1:1B:4D:B2:F2:2C:A6:36:B5:FF
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018992963D9919FFF12AAA66E9F3693E6928
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/sZyEJXOYa5mCF-EbTbLyLKY2tf8.roa
Signing time: Wed 26 Jul 2023 14:24:26 +0000
ROA not before: Wed 26 Jul 2023 14:24:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197077
IP address blocks: 185.137.140.0/22 maxlen: 24
45.13.200.0/23 maxlen: 23
45.13.202.0/23 maxlen: 23
45.13.200.0/22 maxlen: 24
217.198.192.0/20 maxlen: 24
91.220.70.0/24 maxlen: 24
2a04:a450::/31 maxlen: 31
Validation: Failed, certificate revoked on Mon 11 Sep 2023 16:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:92:96:3d:99:19:ff:f1:2a:aa:66:e9:f3:69:3e:69:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jul 26 14:24:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b19c842573986b998217e11b4db2f22ca636b5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1a:64:fc:37:4a:78:86:c0:ac:b1:4b:d0:c5:
74:db:7f:3f:58:50:2d:22:25:1a:f0:51:a3:66:ef:
b1:4d:4b:aa:76:c2:78:a1:de:b9:90:ec:63:27:53:
17:49:25:be:9b:ae:10:61:b3:34:6f:d3:4a:88:26:
89:85:83:d9:98:fb:62:67:96:2f:cb:3f:be:2e:74:
dc:b1:51:a8:96:4d:2a:1b:12:3e:0f:91:a9:e4:90:
80:f1:6b:04:eb:b6:48:2f:91:bd:58:e2:fa:96:9f:
a6:fb:42:36:30:cb:26:36:f1:af:24:80:ea:82:a8:
7d:25:d6:7b:77:9c:e1:2f:1b:fc:f3:a3:83:ab:24:
2f:bb:40:c0:57:d4:b3:4e:56:f6:74:26:f8:f5:71:
75:25:c2:81:3d:c8:46:5a:c3:53:b7:07:63:50:1e:
e0:b5:a8:9a:6e:43:c0:a1:30:f1:0a:3c:7f:17:ad:
19:dc:ab:c3:1a:0f:b0:95:42:6c:b5:82:34:9a:3c:
a3:63:35:40:e2:72:bf:75:75:99:24:0d:60:66:d0:
59:21:8f:1d:c4:20:58:72:61:29:7f:b8:ba:3a:37:
d1:20:ee:62:a7:a5:10:af:3e:9a:c2:c4:cd:9e:be:
f4:22:5f:de:f1:e5:ee:33:73:34:62:24:49:e6:1f:
0a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9C:84:25:73:98:6B:99:82:17:E1:1B:4D:B2:F2:2C:A6:36:B5:FF
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/sZyEJXOYa5mCF-EbTbLyLKY2tf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.200.0/22
91.220.70.0/24
185.137.140.0/22
217.198.192.0/20
IPv6:
2a04:a450::/31
Signature Algorithm: sha256WithRSAEncryption
99:f1:c6:4d:10:ca:06:9b:b0:ee:fe:2d:7b:92:dd:0f:f3:ef:
cd:d0:a3:37:1b:f7:73:cb:ce:fe:c1:94:d6:87:92:1a:71:16:
b2:87:cd:e3:37:27:58:c3:59:e8:a9:35:2a:56:6a:b3:08:97:
5c:ae:69:e6:1c:f2:45:cd:b9:4c:60:5e:bb:d5:8b:70:6b:85:
50:3e:cc:00:49:fb:be:51:c3:47:4e:e3:a5:70:4e:ab:b1:de:
b9:e8:3b:6d:26:4b:db:7c:c6:73:d5:7e:49:c9:c6:ea:a6:1e:
ab:6f:72:cc:d4:eb:5f:57:7f:34:2c:69:4a:ce:df:a0:77:96:
a3:43:79:5e:31:8f:17:8d:b1:07:b6:b1:f3:f1:b6:35:d2:5e:
79:40:d0:f4:30:bd:4c:ef:bc:87:d8:16:19:be:94:03:1f:a8:
9e:c6:c9:bf:c0:c3:fd:ef:77:dc:07:0d:f0:fe:b3:56:69:6c:
6f:9f:d3:b7:cc:85:09:3a:23:7d:66:e3:3f:5b:32:44:56:c5:
22:d2:47:b2:91:60:87:ce:73:57:3e:f9:29:e6:e5:7f:39:f5:
5c:f0:18:8d:d6:fc:f0:3f:1f:3e:47:7c:9b:a7:87:43:52:e4:
25:05:a9:8f:a0:03:f2:d3:37:d4:91:68:b5:7b:c9:d2:0c:25:
b4:15:6a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org