Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/9VsUGCM7yhJmAZUoEI8T80-OIm4.roa
File: 9VsUGCM7yhJmAZUoEI8T80-OIm4.roa (raw, json)
Hash identifier: V0cpWRI4QEEmnvZit9s88ggHAehXHEvf9X1LNVSx0wk=
Subject key identifier: F5:5B:14:18:23:3B:CA:12:66:01:95:28:10:8F:13:F3:4F:8E:22:6E
Certificate issuer: /CN=7dbacb1fc2c2063042781631b517ce475233a2bd
Certificate serial: 018C820BD7BC98A7F99945A83400D2A10F24
Authority key identifier: 7D:BA:CB:1F:C2:C2:06:30:42:78:16:31:B5:17:CE:47:52:33:A2:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbrLH8LCBjBCeBYxtRfOR1Izor0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/9VsUGCM7yhJmAZUoEI8T80-OIm4.roa
Signing time: Tue 19 Dec 2023 12:27:43 +0000
ROA not before: Tue 19 Dec 2023 12:27:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207903
IP address blocks: 185.88.64.0/24 maxlen: 24
185.88.64.0/22 maxlen: 22
185.88.65.0/24 maxlen: 24
185.88.67.0/24 maxlen: 24
185.88.66.0/24 maxlen: 24
45.81.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:0b:d7:bc:98:a7:f9:99:45:a8:34:00:d2:a1:0f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbacb1fc2c2063042781631b517ce475233a2bd
Validity
Not Before: Dec 19 12:27:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f55b1418233bca1266019528108f13f34f8e226e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:0a:da:77:fa:49:4c:36:8d:33:2c:d2:2c:
6a:4d:a2:fa:c3:05:7c:e5:21:68:00:ba:58:fc:c2:
67:dd:0f:93:d6:c7:58:09:44:19:0f:2d:3a:98:c7:
d4:60:4f:7f:b1:ca:d5:aa:94:62:55:4f:1f:96:11:
6e:f0:5b:da:b2:3c:1b:e0:a9:ec:5d:c1:5d:8d:e5:
9d:d9:e6:6a:3f:e0:12:1d:77:28:6b:52:90:02:de:
a4:bf:ef:c3:06:33:26:69:86:24:02:bf:8e:94:ae:
0f:04:64:9f:07:9c:fd:12:34:e4:ff:0b:a8:45:2f:
32:c9:85:5f:b0:14:41:1e:b4:cc:08:6b:d0:31:52:
04:b0:ec:ad:a7:b0:12:78:60:07:6d:2b:86:ff:ba:
c6:f9:3a:f8:99:b2:ea:3e:e7:d0:df:7b:2c:8a:ae:
db:77:7b:b9:5e:5d:4a:9b:d6:74:52:3e:47:4c:36:
f9:78:91:6e:0f:21:c4:e0:32:6c:ab:55:77:ef:bc:
b1:55:ae:1a:2e:39:6b:80:b6:8a:9e:5c:82:9f:bf:
34:52:5a:6f:56:d0:57:30:57:7e:76:fc:d2:78:98:
0b:c3:ec:d6:ae:b1:5f:ec:80:5f:f3:d5:8f:75:20:
29:f8:11:08:22:a4:39:61:cf:84:19:3e:0b:a4:39:
9b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5B:14:18:23:3B:CA:12:66:01:95:28:10:8F:13:F3:4F:8E:22:6E
X509v3 Authority Key Identifier:
keyid:7D:BA:CB:1F:C2:C2:06:30:42:78:16:31:B5:17:CE:47:52:33:A2:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbrLH8LCBjBCeBYxtRfOR1Izor0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/9VsUGCM7yhJmAZUoEI8T80-OIm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/fbrLH8LCBjBCeBYxtRfOR1Izor0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.168.0/24
185.88.64.0/22
Signature Algorithm: sha256WithRSAEncryption
72:c9:6e:5d:cf:4d:fe:74:96:f8:ea:1f:50:d7:2a:56:99:26:
f9:56:f4:3f:1c:12:c5:7e:31:c4:b1:d1:89:f7:4d:a4:5a:03:
f7:34:04:22:46:06:63:cf:52:17:c9:67:3a:9b:8e:6c:a2:48:
dc:af:df:1d:0e:18:d7:a1:40:68:b2:52:21:ee:9b:5b:cf:35:
e5:86:b7:83:d3:67:a7:c3:3c:ef:fc:d3:cc:c9:a6:5a:2e:ab:
1f:fe:ad:f1:cc:8e:2c:cc:e3:7c:7b:0a:f0:87:69:9b:07:ab:
5d:34:10:6a:22:89:20:02:24:4f:c2:b8:90:47:09:21:85:50:
e2:9f:d5:da:d0:90:e1:73:51:3e:44:23:ec:0b:0d:2e:c5:48:
70:47:90:16:e5:2b:ba:8d:9a:ef:a2:59:b6:ab:95:c3:d0:29:
63:26:41:16:35:06:7e:14:41:20:96:b2:5c:e5:01:90:de:b8:
2b:eb:5e:2f:22:c8:f7:34:22:bd:31:19:cd:45:89:df:72:1d:
9e:2f:f0:7c:cf:42:f1:c3:2f:40:dc:5a:df:86:e8:dc:2b:ee:
a9:02:f9:f8:b4:9c:c6:35:80:d4:77:f4:a5:91:ec:d6:84:1b:
d6:47:36:e0:f1:3e:5c:5d:2c:33:52:9d:ed:cd:a6:ec:aa:7c:
1d:c8:65:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org