Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r_t0CFMl8ve1J0Hg50y9De3PPew.roa
File: r_t0CFMl8ve1J0Hg50y9De3PPew.roa (raw, json)
Hash identifier: iTUI2r/c3K8cepoW5Zwpp8jCDmoKS2Rc/pAYDKYewwE=
Subject key identifier: AF:FB:74:08:53:25:F2:F7:B5:27:41:E0:E7:4C:BD:0D:ED:CF:3D:EC
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 019096EC6B0268964D06445A83B71D3A8BBD
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r_t0CFMl8ve1J0Hg50y9De3PPew.roa
Signing time: Tue 09 Jul 2024 09:56:34 +0000
ROA not before: Tue 09 Jul 2024 09:56:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.86.82.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
2a0a:fa40::/29 maxlen: 29
2a0c:580::/29 maxlen: 29
2a0c:4a40::/29 maxlen: 29
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/29 maxlen: 29
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a10:4b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 31 Jul 2024 10:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:ec:6b:02:68:96:4d:06:44:5a:83:b7:1d:3a:8b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jul 9 09:56:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=affb74085325f2f7b52741e0e74cbd0dedcf3dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:00:ae:e3:f7:e8:31:4a:be:b9:2c:6b:d8:3c:
b9:eb:77:cf:02:36:54:80:d1:1d:da:3a:bb:59:e3:
1c:7d:01:d9:f0:a8:fe:fc:f7:b0:53:f9:c9:7d:4b:
fe:18:0c:41:f8:45:56:cf:74:47:67:6f:9e:b9:6d:
d5:bf:3a:d5:52:75:3c:7b:d2:f3:37:d9:70:d6:36:
68:97:65:6b:39:4d:e5:b4:a7:4c:e3:fa:fc:05:8c:
8e:2b:58:d8:60:90:12:89:b8:82:29:10:86:57:5e:
a8:e9:03:9b:10:fa:ec:80:31:23:a1:6e:f2:b4:1e:
6a:5a:e9:92:ac:ec:22:f7:7f:3a:b8:15:38:66:36:
72:31:6b:dd:06:f5:fb:4b:bc:7f:27:4a:49:40:c7:
c6:40:ef:93:b8:c4:cd:01:a1:a3:e0:f5:37:62:c3:
95:0f:76:3f:d2:9d:0d:16:84:bd:83:ca:87:b7:65:
fd:90:88:45:f6:d8:75:d6:3f:f6:87:d7:58:a5:34:
0d:7c:df:20:3f:dd:11:37:55:91:bf:ad:82:13:9d:
d4:29:6f:20:d0:15:cc:fe:12:ca:bb:6e:4c:b8:e2:
a8:93:f3:6b:9a:c6:15:88:7d:09:bb:c8:02:9c:a0:
8a:37:45:ef:03:14:cd:b2:bd:c2:3d:f5:a2:d3:55:
f5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FB:74:08:53:25:F2:F7:B5:27:41:E0:E7:4C:BD:0D:ED:CF:3D:EC
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r_t0CFMl8ve1J0Hg50y9De3PPew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
2a10:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
ab:81:54:03:4e:e3:12:bd:23:7a:77:b8:d4:f5:8c:d3:c1:9c:
f7:1d:61:6e:30:cb:3c:bd:60:70:df:d2:1c:80:5e:f3:2f:d2:
37:f0:e2:f6:e6:f2:68:09:27:8e:a4:dc:40:4d:c0:95:a8:b2:
ed:94:11:21:c3:00:59:43:36:db:60:1f:96:e3:1d:ef:04:25:
ad:d4:ee:f1:1e:c6:a6:a1:85:e7:1f:44:d8:cb:c4:44:ac:41:
79:98:dd:d9:6d:eb:09:d1:c1:18:c3:a9:82:56:84:6b:56:24:
dd:8a:8d:e0:3e:d3:4a:e7:f6:57:8f:1b:01:bb:ec:af:62:e8:
e8:84:9d:e7:6f:41:5d:ef:9e:c4:0f:e8:01:77:24:5b:83:db:
4b:6a:a4:11:dc:28:93:7a:67:e3:b7:22:95:48:59:a9:ad:e6:
bb:53:60:af:28:d3:3f:f0:ef:ff:2f:a5:b2:de:69:bb:4a:ba:
e1:a4:04:35:7f:20:fb:3c:60:64:d7:96:24:84:57:11:80:8d:
2c:23:28:c5:80:95:31:e0:e9:4d:50:e3:d4:4d:24:59:6d:4d:
4c:42:de:e4:2b:aa:7e:92:f2:08:fe:f7:c1:54:2e:8c:06:31:
66:56:30:f4:64:45:b4:14:fa:5f:ac:4c:fe:d3:ac:51:8b:b8:
af:ee:76:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 12:12:33 2024 by rpki-client on console-ams.rpki-client.org