Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/lWBlj9daT5fHkw0apUcUnE8M8tA.roa
File: lWBlj9daT5fHkw0apUcUnE8M8tA.roa (raw, json)
Hash identifier: YKGRMqQGR2Zs3lREJCzvQcmqm51EaAbfkawRDDPoTuk=
Subject key identifier: 95:60:65:8F:D7:5A:4F:97:C7:93:0D:1A:A5:47:14:9C:4F:0C:F2:D0
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0186DA4E5A576D43746207E1896FCDB0BFC1
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/lWBlj9daT5fHkw0apUcUnE8M8tA.roa
Signing time: Mon 13 Mar 2023 09:30:13 +0000
ROA not before: Mon 13 Mar 2023 09:30:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 185.237.81.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.86.82.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 10:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:4e:5a:57:6d:43:74:62:07:e1:89:6f:cd:b0:bf:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Mar 13 09:30:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9560658fd75a4f97c7930d1aa547149c4f0cf2d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:53:34:c3:71:c4:91:3a:74:35:ad:ad:3f:47:
ed:d0:c7:69:a6:b4:25:23:30:13:f4:f4:d7:23:e9:
21:f9:58:62:d2:96:99:48:aa:5a:b7:7c:d2:e3:85:
f7:85:c7:77:61:c8:28:2f:bb:2f:f2:b3:c3:4e:94:
e8:bc:92:96:85:a4:b3:bc:a0:cd:37:13:53:74:6e:
18:27:4c:28:14:ec:01:38:da:f1:82:a0:87:83:85:
cc:96:47:a9:70:58:04:dc:30:14:20:aa:d6:4c:94:
a2:23:c1:a1:11:6f:96:3a:70:fc:d4:f3:ca:70:f2:
b9:8c:42:69:82:6d:5b:d0:61:7e:ff:92:8b:60:e9:
dc:b7:cd:60:2d:67:30:f4:5b:f1:0a:95:3e:28:a9:
98:09:30:3d:61:9f:e5:bb:9c:a6:a5:dd:94:32:b1:
86:fc:88:a6:63:83:1d:cd:88:0b:74:43:1f:c9:26:
96:d7:10:44:b4:58:a7:0e:07:6b:11:81:f6:5b:0e:
d3:5f:47:cd:d1:92:eb:d8:1a:c6:16:c5:a2:79:70:
8f:45:d3:2a:0f:c9:8d:b9:2e:19:dd:70:75:f7:79:
ad:08:bc:b1:90:d6:3e:d1:aa:c3:8c:90:a9:17:ca:
01:f4:f4:ec:3f:60:14:38:c1:c0:dc:fc:b0:42:52:
66:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:60:65:8F:D7:5A:4F:97:C7:93:0D:1A:A5:47:14:9C:4F:0C:F2:D0
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/lWBlj9daT5fHkw0apUcUnE8M8tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:f4:bc:d3:92:aa:a4:5e:c1:72:53:f5:5a:96:2f:53:fb:be:
e5:ac:4e:fd:73:a7:67:bc:cb:53:28:17:70:a7:87:20:40:66:
dc:bb:fe:c8:80:f7:52:21:72:3f:f4:9e:d9:a9:2f:29:21:94:
d6:19:a8:6a:5e:dc:e6:56:5b:50:67:56:97:9e:fc:5e:84:f4:
10:78:62:fe:a2:28:11:9b:95:86:6b:69:ca:ec:5a:1d:45:37:
51:cb:a4:45:15:47:3d:38:33:8f:ad:42:6d:cd:86:06:74:ea:
05:e9:b1:40:2a:bb:47:2e:d9:7d:31:76:ec:20:eb:06:85:17:
e6:48:cd:3d:c3:56:ba:0c:6e:51:4a:78:26:9c:94:8a:03:61:
37:97:b4:5b:2a:99:ca:b5:8e:31:b7:dd:04:19:61:d1:07:8e:
8a:79:6f:9b:bb:4e:d6:46:1c:08:21:ae:80:d5:b2:4b:11:d8:
3c:49:fc:6b:82:d0:14:08:13:fe:6f:26:3a:4b:2d:bf:be:f1:
8e:c6:ef:1e:89:2b:58:84:02:73:77:83:f5:64:53:09:b7:6b:
49:a7:6e:31:41:65:5d:ba:a4:16:73:da:e5:53:3f:c7:9e:5b:
99:20:8e:7a:3a:a4:fd:d0:fc:4a:22:05:42:a0:17:91:04:87:
dc:15:5a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org