Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/Jdgvg1atGZzPbLTndfM9YuWUQRE.roa
File: Jdgvg1atGZzPbLTndfM9YuWUQRE.roa (raw, json)
Hash identifier: Z8BodZcdaQmkIFuK6E06+ksBY6uKLyKFyiSudgYrQ1I=
Subject key identifier: 25:D8:2F:83:56:AD:19:9C:CF:6C:B4:E7:75:F3:3D:62:E5:94:41:11
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01917AA0C6C41571F68B6106E7DA6DFE48E2
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/Jdgvg1atGZzPbLTndfM9YuWUQRE.roa
Signing time: Thu 22 Aug 2024 15:07:22 +0000
ROA not before: Thu 22 Aug 2024 15:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.205.16.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
2a0a:fa40::/29 maxlen: 29
2a0c:580::/29 maxlen: 29
2a0c:4a40::/29 maxlen: 29
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/29 maxlen: 29
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a10:4b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 Aug 2024 18:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:a0:c6:c4:15:71:f6:8b:61:06:e7:da:6d:fe:48:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Aug 22 15:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25d82f8356ad199ccf6cb4e775f33d62e5944111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7d:18:61:a9:01:b2:98:77:b7:27:47:9d:a2:
9d:83:9f:28:d7:b6:ed:80:70:64:59:a7:1b:21:1d:
07:b2:9c:52:6b:d5:73:f1:80:81:45:be:b4:9b:b6:
ba:b5:b8:22:e6:6f:89:c8:f8:0e:e6:c9:75:94:99:
69:9e:54:b1:3b:9d:88:bc:47:15:7b:47:d2:03:05:
3f:19:2f:54:36:06:5e:9c:b9:db:5c:32:03:be:a1:
60:2d:44:45:93:92:ac:0b:d9:f0:5a:44:0a:71:79:
5b:fc:ec:b1:e5:d8:91:43:9f:fa:ef:33:ff:a9:27:
bc:25:b4:52:bd:54:26:41:1d:35:a6:7b:d2:5b:b2:
68:b2:49:0c:3a:9e:01:8d:b1:7b:f4:8c:f0:ca:0f:
f8:ba:bc:c2:3a:eb:84:85:2f:4c:5a:1d:38:b7:48:
49:ae:3d:49:0b:ec:f6:a8:a7:fa:72:74:22:60:87:
9e:b4:74:c1:21:6d:10:b1:19:01:d4:f2:5c:3f:b5:
71:77:7f:13:1c:ef:39:33:34:30:9e:47:35:9c:fb:
ce:e7:07:f4:29:ed:93:6a:35:7e:7d:22:d7:e2:0a:
34:ae:97:05:49:d2:e8:b6:77:00:ce:3d:84:a8:5a:
42:78:4b:eb:56:c4:08:61:93:ad:23:79:4e:df:0f:
aa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D8:2F:83:56:AD:19:9C:CF:6C:B4:E7:75:F3:3D:62:E5:94:41:11
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/Jdgvg1atGZzPbLTndfM9YuWUQRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.16.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
2a10:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
69:3d:86:f9:50:11:4d:01:9f:c8:d2:65:b4:d9:be:d6:b5:eb:
11:b9:a5:23:bd:5c:eb:f0:39:00:67:11:25:6d:f0:fd:83:be:
d8:cd:50:c8:fd:3a:55:e7:fb:b6:fa:63:e5:0e:b4:70:13:c3:
43:25:80:cb:3c:fb:e0:60:10:17:a5:93:ae:77:06:88:ec:22:
3a:f4:94:86:f6:43:b6:33:0b:81:bb:a4:28:83:b5:b4:ea:f3:
2e:3d:ee:81:55:61:31:58:5f:b9:23:ad:86:82:eb:9f:08:3b:
a4:5f:cf:ab:72:45:02:10:7a:01:c0:38:5d:7f:a8:15:d3:12:
b9:e3:69:82:84:a6:57:95:7c:3c:86:28:8c:e8:6b:ea:27:20:
ce:ad:6b:17:ff:01:4e:40:93:4d:bd:5c:f5:d1:dd:0a:b6:d7:
94:10:e4:0c:58:1a:c7:3b:a8:a4:96:ba:8b:c0:3d:cb:0c:a8:
79:35:2a:e3:29:05:55:bf:65:3f:80:4d:6c:b9:19:ad:ca:d0:
c3:c8:de:40:73:ee:5c:4e:30:b1:4e:a9:49:62:2a:45:c7:81:
f0:07:89:9a:3a:10:ef:3f:44:1a:a0:41:4a:2d:d9:36:01:2a:
e9:e7:f7:bf:b7:79:69:a1:8d:ff:f1:78:3c:fa:8e:ba:5e:49:
6b:60:29:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 22:43:21 2024 by rpki-client on console-ams.rpki-client.org