Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/387f21-101b-487e-8a0f-0b838a599662/1/E2us8icPofZP_oBSfVal--ZAbZ0.roa
File: E2us8icPofZP_oBSfVal--ZAbZ0.roa (raw, json)
Hash identifier: I7zq5FN7d+q1Nx9VVwKanM3srb4bix4CHc5VRW82f5c=
Subject key identifier: 13:6B:AC:F2:27:0F:A1:F6:4F:FE:80:52:7D:56:A5:FB:E6:40:6D:9D
Certificate issuer: /CN=c1a190504b6d9ed9c18096840425b11d7b22dff4
Certificate serial: 01856FA70164A76B7C41D1D04A995E955D2C
Authority key identifier: C1:A1:90:50:4B:6D:9E:D9:C1:80:96:84:04:25:B1:1D:7B:22:DF:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/waGQUEttntnBgJaEBCWxHXsi3_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/387f21-101b-487e-8a0f-0b838a599662/1/E2us8icPofZP_oBSfVal--ZAbZ0.roa
Signing time: Sun 01 Jan 2023 23:24:53 +0000
ROA not before: Sun 01 Jan 2023 23:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42707
IP address blocks: 185.236.4.0/22 maxlen: 22
185.245.88.0/22 maxlen: 22
185.231.24.0/22 maxlen: 22
91.189.224.0/21 maxlen: 21
83.143.76.0/22 maxlen: 22
109.207.72.0/22 maxlen: 22
193.33.134.0/23 maxlen: 23
185.252.124.0/22 maxlen: 22
5.57.248.0/21 maxlen: 21
185.254.48.0/22 maxlen: 22
185.148.28.0/22 maxlen: 22
195.42.224.0/22 maxlen: 22
195.42.228.0/23 maxlen: 23
185.250.136.0/22 maxlen: 22
185.247.48.0/22 maxlen: 22
185.248.228.0/22 maxlen: 22
5.45.32.0/22 maxlen: 22
5.206.208.0/20 maxlen: 20
185.233.212.0/22 maxlen: 22
2a00:5140::/32 maxlen: 32
2a00:5141::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 08 Mar 2023 06:58:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:01:64:a7:6b:7c:41:d1:d0:4a:99:5e:95:5d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1a190504b6d9ed9c18096840425b11d7b22dff4
Validity
Not Before: Jan 1 23:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=136bacf2270fa1f64ffe80527d56a5fbe6406d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e8:30:83:f4:bd:d1:9d:0d:ba:6a:46:bc:b2:
f5:e8:21:4e:48:08:20:6c:2f:99:f3:1a:cd:39:51:
12:05:c9:b7:e3:3a:0c:ba:37:89:b0:fc:48:0b:85:
c1:73:85:d4:8e:b3:ff:d5:8d:1f:96:30:24:c0:64:
4b:f4:94:52:12:5f:ef:ee:53:01:9a:67:6e:1f:26:
85:8f:e5:ac:1d:86:75:8e:be:c4:6f:0c:5e:d2:9d:
3f:d6:e9:19:bf:bf:28:17:43:16:0f:1b:35:87:8f:
ad:8e:8b:1f:1b:20:e5:4c:c8:55:81:13:2c:3c:41:
27:3c:16:73:27:50:3d:00:6c:37:72:ac:92:a4:16:
27:a0:cd:9b:2d:0c:ad:8b:7e:49:20:6e:1d:c4:3e:
8d:18:cf:38:99:2a:62:34:c7:bd:1b:dc:67:f7:b7:
f0:99:47:a6:82:55:78:35:4f:ee:ac:d4:2b:b2:c9:
f4:af:b2:56:de:36:9c:78:22:d4:50:61:b5:30:3f:
73:61:fb:ec:5a:6c:f3:ed:9b:9d:57:7a:dd:60:35:
91:bf:bd:b9:ae:6a:7a:48:de:47:70:16:d2:bb:6b:
3c:d0:b6:4b:bf:c7:4f:25:69:25:17:ec:ed:7c:fa:
73:15:21:79:71:ac:6c:a2:cb:e0:ff:82:9d:00:1b:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6B:AC:F2:27:0F:A1:F6:4F:FE:80:52:7D:56:A5:FB:E6:40:6D:9D
X509v3 Authority Key Identifier:
keyid:C1:A1:90:50:4B:6D:9E:D9:C1:80:96:84:04:25:B1:1D:7B:22:DF:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/waGQUEttntnBgJaEBCWxHXsi3_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/387f21-101b-487e-8a0f-0b838a599662/1/E2us8icPofZP_oBSfVal--ZAbZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/387f21-101b-487e-8a0f-0b838a599662/1/waGQUEttntnBgJaEBCWxHXsi3_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.32.0/22
5.57.248.0/21
5.206.208.0/20
83.143.76.0/22
91.189.224.0/21
109.207.72.0/22
185.148.28.0/22
185.231.24.0/22
185.233.212.0/22
185.236.4.0/22
185.245.88.0/22
185.247.48.0/22
185.248.228.0/22
185.250.136.0/22
185.252.124.0/22
185.254.48.0/22
193.33.134.0/23
195.42.224.0-195.42.229.255
IPv6:
2a00:5140::/31
Signature Algorithm: sha256WithRSAEncryption
2f:ba:9e:6d:51:ad:36:47:2f:c8:9f:c5:a5:28:7b:b9:e3:eb:
fd:92:8e:d9:4f:f5:3a:73:de:ef:4a:04:b2:94:6d:1a:15:01:
5b:ae:b1:da:51:e7:2c:92:b5:eb:21:99:af:68:66:65:ae:c1:
f0:17:c1:68:93:a5:87:e3:96:12:c8:be:5d:56:42:10:0b:8f:
2a:d2:03:7e:10:30:e5:dc:fb:58:c0:35:eb:ee:d8:84:ed:ef:
1d:ee:86:b2:f0:a5:60:79:07:43:21:0e:e3:eb:3d:c2:08:9e:
12:f1:d7:47:0f:01:d0:aa:12:9b:74:56:ed:81:cb:c3:74:3d:
0e:26:75:cd:86:6f:4d:e4:8f:2e:af:49:47:7c:61:33:bf:2f:
e9:04:38:62:6d:b4:d8:bd:d4:3b:ab:c8:80:5a:9e:95:49:3a:
c0:35:84:3e:90:78:b7:ab:e3:66:83:c2:43:bd:21:e5:ee:45:
6e:f0:e1:4f:88:0b:38:b5:3a:da:ec:c6:44:96:d8:b7:2a:58:
0a:14:4c:f6:c3:ea:c1:a4:12:8b:ed:2d:04:66:6f:fc:9f:94:
12:71:0f:65:7a:dd:57:32:1b:87:39:d7:9f:ae:04:f4:9f:e5:
c6:93:51:fc:d0:f9:0a:55:03:15:a8:39:d8:4a:2f:a5:d0:39:
1d:21:87:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:13 2024 by rpki-client on console-ams.rpki-client.org