Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/Ti5hd_Ep1XGf_6aN_8Af6YHxY8o.roa
File: Ti5hd_Ep1XGf_6aN_8Af6YHxY8o.roa (raw, json)
Hash identifier: iub2iocngNOWKrrH8o836dzbP73fA5ic+pFeKG9hWCI=
Subject key identifier: 4E:2E:61:77:F1:29:D5:71:9F:FF:A6:8D:FF:C0:1F:E9:81:F1:63:CA
Certificate issuer: /CN=7c3b8877e1a130fe50386c610d6ead5641b97ba6
Certificate serial: 018570DE6579BB6AB79991B9466DCFD42E73
Authority key identifier: 7C:3B:88:77:E1:A1:30:FE:50:38:6C:61:0D:6E:AD:56:41:B9:7B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDuId-GhMP5QOGxhDW6tVkG5e6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/Ti5hd_Ep1XGf_6aN_8Af6YHxY8o.roa
Signing time: Mon 02 Jan 2023 05:05:01 +0000
ROA not before: Mon 02 Jan 2023 05:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31293
IP address blocks: 185.118.242.0/24 maxlen: 24
185.118.241.0/24 maxlen: 24
185.118.243.0/24 maxlen: 24
194.150.117.0/24 maxlen: 24
194.150.116.0/24 maxlen: 24
194.150.118.0/24 maxlen: 24
194.150.119.0/24 maxlen: 24
2a06:9680::/29 maxlen: 29
2a06:9682::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 27 Mar 2023 22:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:65:79:bb:6a:b7:99:91:b9:46:6d:cf:d4:2e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3b8877e1a130fe50386c610d6ead5641b97ba6
Validity
Not Before: Jan 2 05:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e2e6177f129d5719fffa68dffc01fe981f163ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:6a:78:77:1b:cc:09:7f:2e:51:b8:f9:54:
92:99:18:d4:c6:b3:87:44:e3:54:dd:fd:ce:b4:6f:
28:e6:cd:b0:b7:73:f9:27:e3:4f:1f:47:ef:eb:fe:
e3:5a:63:8e:b2:e2:11:1b:f2:5b:70:57:5f:b9:4f:
64:66:a6:c4:c5:cf:1c:36:39:ac:87:2f:de:09:c7:
e5:c4:df:ec:65:ec:05:2a:19:69:b8:8d:ca:1e:0f:
0a:c0:50:53:89:32:54:55:f0:50:f6:24:2d:ae:92:
19:81:13:2b:33:ae:e9:f4:ea:7c:b7:5d:77:56:bf:
fa:71:7a:1d:eb:d2:40:63:8a:83:2d:71:ff:25:90:
d9:00:95:2b:91:a7:a4:2f:c3:8e:df:3b:92:44:56:
d5:a3:b2:cf:48:99:d1:ef:be:8d:52:f4:e5:a7:66:
d0:81:b6:bb:72:97:4e:be:e5:4a:89:85:ad:a2:38:
43:dc:cb:36:4d:d5:72:a8:39:6c:2b:50:b9:f8:bd:
36:24:4d:07:71:21:94:68:3a:34:f5:cb:06:28:0d:
e9:78:b8:de:0d:a3:b2:18:1a:81:f9:43:80:c7:70:
c8:c1:86:d2:b3:90:b9:8e:44:9f:d3:31:c4:f6:4c:
fe:9c:e0:91:7e:1f:40:38:03:c1:05:af:cd:c3:cc:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2E:61:77:F1:29:D5:71:9F:FF:A6:8D:FF:C0:1F:E9:81:F1:63:CA
X509v3 Authority Key Identifier:
keyid:7C:3B:88:77:E1:A1:30:FE:50:38:6C:61:0D:6E:AD:56:41:B9:7B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDuId-GhMP5QOGxhDW6tVkG5e6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/Ti5hd_Ep1XGf_6aN_8Af6YHxY8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/fDuId-GhMP5QOGxhDW6tVkG5e6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.241.0-185.118.243.255
194.150.116.0/22
IPv6:
2a06:9680::/29
Signature Algorithm: sha256WithRSAEncryption
22:16:dc:53:6e:22:6e:ae:8f:85:2f:1e:d7:db:05:4c:f2:e0:
52:e1:88:36:12:8b:f6:2b:89:5f:88:7a:2d:c7:1b:50:b3:7f:
69:09:80:98:d9:1e:19:e5:57:7f:9b:46:a5:04:b9:ac:f7:5d:
64:50:90:0d:41:6e:5c:8a:6c:89:31:fa:dc:1f:45:73:57:92:
a2:3b:ed:83:8a:3b:07:5a:8c:af:5c:68:1c:36:db:57:18:94:
d4:95:88:48:af:3f:e4:43:c6:e3:10:a8:7e:61:9e:cc:37:66:
61:99:3e:df:06:e9:13:3f:82:ab:b1:3a:c0:df:ff:d4:12:8d:
78:e7:54:b0:cb:1b:c6:fa:54:c1:ba:71:17:ba:06:92:6e:4d:
13:21:02:b7:b5:90:80:c1:2c:9d:1c:6d:09:72:f0:f2:bb:69:
8c:7f:71:a0:bb:f1:69:ec:b8:06:eb:95:a5:56:3b:61:37:15:
04:4a:e5:c2:b1:b0:9a:89:ec:ce:c5:2b:3c:ad:0b:07:2e:6c:
31:bb:e1:b9:9f:06:3e:61:66:a9:85:b1:55:7d:6a:f5:d4:5c:
49:52:94:fe:c7:ae:85:f5:69:7c:48:5f:3e:2c:95:29:1b:94:
45:a2:f5:2a:a4:fe:0d:b2:fe:a4:af:8f:a1:80:7d:c6:10:da:
03:bb:4b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:12 2024 by rpki-client on console-ams.rpki-client.org