Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/3V86czSbZ5uu1FyRFDTNQ3M1SEI.roa
File: 3V86czSbZ5uu1FyRFDTNQ3M1SEI.roa (raw, json)
Hash identifier: BzWOjB+gRhjcmORkimzhaV/wvo4wBcEPPZpAGtLY4IM=
Subject key identifier: DD:5F:3A:73:34:9B:67:9B:AE:D4:5C:91:14:34:CD:43:73:35:48:42
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0191083F318870BC40E385276976F278AD91
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/3V86czSbZ5uu1FyRFDTNQ3M1SEI.roa
Signing time: Wed 31 Jul 2024 10:04:04 +0000
ROA not before: Wed 31 Jul 2024 10:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
2a0a:fa40::/29 maxlen: 29
2a0c:580::/29 maxlen: 29
2a0c:4a40::/29 maxlen: 29
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/29 maxlen: 29
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a10:4b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 Aug 2024 15:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:3f:31:88:70:bc:40:e3:85:27:69:76:f2:78:ad:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jul 31 10:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd5f3a73349b679baed45c911434cd4373354842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:bc:9e:a6:27:bf:7e:8a:a2:dd:14:e0:de:
27:60:6b:2e:c5:ce:c8:c2:e4:e3:57:3f:0c:7f:c1:
7e:ff:42:89:c7:fd:9e:59:03:2d:72:4c:87:e2:9a:
cf:ab:2d:e9:cb:bd:ce:8a:57:9f:f4:01:d2:1b:8b:
77:f6:f5:cf:a1:4a:c9:a3:1d:ff:87:73:cd:af:aa:
db:c9:d2:b4:34:bd:c5:7d:b2:99:1d:6c:fa:63:f2:
39:49:93:ce:38:e6:f4:87:ab:3e:c9:e4:e2:e6:af:
79:04:0e:07:ad:7f:35:aa:9e:36:90:46:38:ae:ff:
24:97:61:f3:d1:45:8a:48:43:2a:ac:2e:63:92:44:
eb:63:4d:1a:23:d7:72:20:f4:55:a5:d5:57:c0:8e:
cc:d7:7f:b0:9c:ae:f2:f3:1a:30:b4:03:2c:8d:22:
92:e6:35:55:fa:d6:5f:b8:f8:46:92:63:24:b0:70:
be:32:0a:24:45:55:e0:dd:be:5c:4d:50:a5:b5:a2:
00:88:7f:38:33:b2:be:22:08:60:bf:0b:0d:cc:0e:
f6:39:42:e7:15:e9:72:82:2b:53:e6:57:fa:ea:0b:
19:12:94:05:c4:a4:cb:9b:db:6f:db:18:1e:10:96:
52:09:53:7a:c4:51:33:6e:98:5e:8e:dc:b1:2d:a9:
dc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5F:3A:73:34:9B:67:9B:AE:D4:5C:91:14:34:CD:43:73:35:48:42
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/3V86czSbZ5uu1FyRFDTNQ3M1SEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
2a10:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
06:67:90:5a:1f:2e:ff:d7:01:03:bb:07:74:1b:4a:37:83:ae:
f0:4d:e9:ff:0b:f1:c1:81:a0:d4:da:e0:4b:93:26:c8:76:3c:
66:99:ae:75:59:fb:af:3f:e1:8d:5a:18:11:0a:09:15:a6:75:
a5:ea:04:c8:af:45:3b:ef:5f:2e:dd:7c:15:be:8b:43:7d:8d:
00:95:4b:e0:2f:69:93:42:69:bc:42:ce:cd:6b:10:e1:db:de:
9b:22:61:a0:d8:2c:f2:b1:a9:0e:ec:08:a5:cb:41:e8:f0:76:
a5:09:85:2d:e3:27:62:34:07:27:89:9c:41:47:67:d7:9d:d0:
95:92:10:c4:96:2c:0b:33:8c:18:e3:ac:01:45:29:c1:2a:c3:
c0:1e:57:7d:df:e0:02:0f:37:8c:cf:1b:d8:ec:90:d8:b8:cc:
02:42:9b:b9:da:af:e8:c6:7d:fd:38:ca:5b:f0:8b:91:78:6e:
67:34:f9:cf:e5:3f:f3:48:06:cb:48:90:09:56:58:37:bd:2f:
56:5a:52:7b:87:b5:3d:36:e1:dc:6c:8d:c1:a6:2f:2d:6f:2c:
b2:53:0c:53:cb:0b:9e:89:fe:b5:2b:22:e4:7d:b1:fc:d1:ca:
d4:f3:03:ea:5f:34:72:02:a1:5f:64:59:2d:2b:a1:e7:c5:c3:
a2:a8:0a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 18:55:03 2024 by rpki-client on console-fra.rpki-client.org