Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EedjKtyRMSjvaCuhHWy1Cn9gsZQ.roa
File: EedjKtyRMSjvaCuhHWy1Cn9gsZQ.roa (raw, json)
Hash identifier: +qUzd0sSu2zf9MUXheBFgHsfI4+6XxNf4GmH8jub8g8=
Subject key identifier: 11:E7:63:2A:DC:91:31:28:EF:68:2B:A1:1D:6C:B5:0A:7F:60:B1:94
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187CE29D865B8FA8B5831827EF6B9AB3F24
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EedjKtyRMSjvaCuhHWy1Cn9gsZQ.roa
Signing time: Sat 29 Apr 2023 17:57:41 +0000
ROA not before: Sat 29 Apr 2023 17:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 03 May 2023 11:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ce:29:d8:65:b8:fa:8b:58:31:82:7e:f6:b9:ab:3f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 29 17:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11e7632adc913128ef682ba11d6cb50a7f60b194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:12:f7:a6:43:dd:0f:87:d6:89:1e:47:8a:
c5:f8:7e:09:a8:99:cc:73:05:de:c3:5f:57:64:30:
a4:54:9d:7e:21:4f:be:74:92:6e:48:77:ee:82:32:
4d:8b:f4:1c:a9:9f:4c:aa:56:59:fa:a4:b8:11:cc:
6a:68:d7:56:a2:db:3a:ff:b0:f4:d7:2d:3b:7d:b4:
5e:a9:ef:a6:d3:bc:e3:c9:d6:33:ba:5c:c0:26:8a:
ae:fc:1d:bf:ee:97:9f:af:13:f1:c6:b9:6d:d9:74:
87:c4:b5:aa:d8:6b:0a:95:88:d7:c5:8e:09:23:52:
50:f4:b0:a7:fc:0f:13:89:77:27:33:4d:ca:d1:43:
11:9d:92:6c:e8:3d:6d:d0:89:3b:f7:6d:32:0f:d9:
c3:c3:2d:1c:85:04:23:37:f5:eb:8c:35:e1:06:65:
99:32:d7:a5:e2:ef:37:24:fe:03:f5:54:4f:97:24:
89:51:e4:6b:7d:44:ee:50:f5:96:b6:ad:8d:33:7f:
c6:32:fb:70:17:ee:d6:94:80:47:52:28:eb:33:f9:
39:27:09:61:1b:1f:a2:6c:cf:ae:5e:53:3e:ce:f8:
e7:b0:9b:f0:a0:ff:19:5d:3d:82:8f:e4:c7:aa:5d:
2d:c5:ef:b7:a2:78:f8:0d:32:6b:14:29:47:c9:df:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E7:63:2A:DC:91:31:28:EF:68:2B:A1:1D:6C:B5:0A:7F:60:B1:94
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EedjKtyRMSjvaCuhHWy1Cn9gsZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.225.0.0/23
185.225.22.0/24
Signature Algorithm: sha256WithRSAEncryption
68:53:d4:e6:be:e3:fe:5a:ca:b8:a4:cb:74:ba:21:6d:c2:5d:
2b:84:b5:7e:1b:02:52:9c:1c:ca:d6:47:7a:34:d6:ad:88:67:
75:4e:e6:85:15:0c:3b:19:57:56:5f:66:bd:98:e5:12:1c:d2:
a2:55:02:a0:d2:6d:2e:fa:e7:5b:6f:cc:f6:6d:41:a9:51:a4:
06:a5:31:67:ff:02:99:81:e9:c6:32:7e:55:56:9b:ae:b9:ea:
5c:d3:6b:31:b6:28:87:56:39:a2:1d:c7:74:77:cb:73:47:8d:
c6:97:cc:be:1c:85:3c:15:90:8d:31:84:97:e1:55:ea:b7:f5:
a2:e2:dd:66:f9:76:1a:05:47:8e:f0:fb:0e:48:0b:5d:d9:a2:
cb:5b:26:43:b6:a3:f9:5f:a9:56:2c:c7:9e:ba:9e:27:38:09:
73:cf:a4:99:78:e6:25:77:01:e1:7e:71:55:83:75:88:ec:a9:
0a:4b:73:3f:10:5c:84:21:b7:98:76:08:83:08:d4:0d:1a:05:
ce:4e:4f:76:6f:4c:18:20:ea:b9:25:74:3b:90:6d:a7:33:c2:
01:04:94:7e:89:1c:67:01:d7:39:de:b0:69:7f:8f:2a:fb:0f:
dc:2f:d7:27:da:94:d4:b4:7b:15:83:07:42:14:3a:6f:eb:04:
0b:f1:fe:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org