Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/rRMOIW03v-n9v2QGSMvz1W9w9A8.roa
File: rRMOIW03v-n9v2QGSMvz1W9w9A8.roa (raw, json)
Hash identifier: ajZSVjRfvNCjl9+mlKU5E/BaOFHTF5tNOMxofuI0UUU=
Subject key identifier: AD:13:0E:21:6D:37:BF:E9:FD:BF:64:06:48:CB:F3:D5:6F:70:F4:0F
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 01856BAEE500163C66DD54E47A69798D9164
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/rRMOIW03v-n9v2QGSMvz1W9w9A8.roa
Signing time: Sun 01 Jan 2023 04:55:02 +0000
ROA not before: Sun 01 Jan 2023 04:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60095
IP address blocks: 185.44.8.0/22 maxlen: 22
185.44.11.0/24 maxlen: 24
185.44.8.0/23 maxlen: 23
185.44.8.0/24 maxlen: 24
185.44.10.0/23 maxlen: 23
185.44.10.0/24 maxlen: 24
185.44.9.0/24 maxlen: 24
93.157.253.0/24 maxlen: 24
93.157.252.0/24 maxlen: 24
93.157.252.0/22 maxlen: 22
93.157.252.0/23 maxlen: 23
93.157.254.0/24 maxlen: 24
93.157.254.0/23 maxlen: 23
93.157.255.0/24 maxlen: 24
136.169.212.0/22 maxlen: 22
136.169.212.0/23 maxlen: 23
136.169.212.0/24 maxlen: 24
136.169.213.0/24 maxlen: 24
136.169.215.0/24 maxlen: 24
136.169.214.0/23 maxlen: 23
136.169.214.0/24 maxlen: 24
2a02:1c8:a::/48 maxlen: 48
2a02:1c8:40::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:e5:00:16:3c:66:dd:54:e4:7a:69:79:8d:91:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 1 04:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad130e216d37bfe9fdbf640648cbf3d56f70f40f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:3f:b7:28:89:65:60:5c:b6:7a:be:0d:67:
d3:11:41:a8:61:ad:be:31:31:f1:57:5d:1b:d8:c4:
99:7f:99:62:b9:37:36:4b:6f:cd:18:f6:4e:2f:97:
5a:bc:6d:b7:7a:7a:17:4f:87:40:0d:eb:8d:f1:2e:
b1:e2:71:59:3a:0c:c7:9b:3f:06:31:82:9d:14:7b:
63:26:89:d6:ac:9d:ae:75:a3:ab:6d:e1:66:f1:e8:
f3:59:70:5d:22:09:59:55:bd:5e:ca:9c:14:fc:a6:
c8:4e:f5:7a:f2:da:a4:9a:d2:bf:01:33:b7:d8:18:
a0:ab:5d:e3:2a:fd:0c:0a:8b:d3:e7:72:b5:ce:33:
aa:03:51:ac:05:04:0d:67:76:17:f5:7a:76:cb:36:
f6:19:c6:28:5e:42:a7:39:80:a7:ac:9d:07:44:08:
f1:f9:7a:6e:8b:09:8c:42:9f:3a:d5:2c:f2:dc:48:
1b:42:86:03:09:02:ee:56:38:c2:65:04:2d:8b:f1:
72:b9:1c:f3:a2:1b:96:bb:40:dc:28:ac:ac:02:7f:
8f:da:bf:7a:db:90:21:a8:bc:6c:02:35:c9:92:27:
4c:36:38:f9:38:29:ad:46:d3:20:7f:6c:c5:d1:c0:
e8:d6:b9:01:35:7d:a4:d8:d5:42:63:08:03:d9:c5:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:13:0E:21:6D:37:BF:E9:FD:BF:64:06:48:CB:F3:D5:6F:70:F4:0F
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/rRMOIW03v-n9v2QGSMvz1W9w9A8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.252.0/22
136.169.212.0/22
185.44.8.0/22
IPv6:
2a02:1c8:a::/48
2a02:1c8:40::/44
Signature Algorithm: sha256WithRSAEncryption
13:a7:26:04:a2:7d:99:9e:ff:64:8a:7e:8b:d5:9c:04:34:2e:
1c:0c:0b:0e:f4:14:31:99:e6:76:16:38:2f:ef:25:52:ee:26:
a7:37:93:20:35:c7:4b:43:83:68:02:1b:79:fa:14:5a:37:49:
f9:00:ca:c9:6d:a2:95:c7:1f:41:c4:90:fc:a1:ff:9f:84:dd:
b0:08:af:93:92:00:92:ec:0c:4e:4e:e6:96:ca:68:43:67:47:
63:7b:6c:36:3b:81:3e:5d:f1:83:d7:96:32:c3:01:00:ab:f3:
d2:b2:8b:cf:5b:44:4e:ea:2b:38:51:ba:ae:40:7b:81:c1:21:
2c:6a:ab:03:34:2e:53:be:da:cf:48:21:d5:17:62:29:fb:ab:
f3:a6:e1:80:bb:c9:8a:e5:e4:25:e1:2a:70:e3:50:9f:7c:39:
c9:54:0f:9b:05:8c:2e:4e:27:85:8e:68:b3:d3:d5:4f:fb:7f:
b7:47:19:3a:94:f3:dd:f6:d7:e4:e6:16:d9:14:bf:f5:58:a8:
87:d7:9b:74:c0:12:98:b6:ee:7c:74:0d:16:35:7b:9e:c8:9e:
66:97:bd:c8:cf:52:7d:04:5d:a2:d8:4e:14:20:93:c4:28:b6:
89:78:ac:d6:d1:51:75:5e:7a:cd:aa:bb:f4:dc:b2:af:cb:6d:
56:8e:0a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org