Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/4Vf8du75wqgmJ7G2-ow2sllT7bo.roa
File: 4Vf8du75wqgmJ7G2-ow2sllT7bo.roa (raw, json)
Hash identifier: SQ9xEFIc6pqOcRb7T9nlOekL9RzJ1+7I5U8M/dTL2FM=
Subject key identifier: E1:57:FC:76:EE:F9:C2:A8:26:27:B1:B6:FA:8C:36:B2:59:53:ED:BA
Certificate issuer: /CN=4eeb6b2c3e09ca1c45fd7547e458946cc8a468b4
Certificate serial: 01856D4AB5C34197AFF695E908039D8F3BC1
Authority key identifier: 4E:EB:6B:2C:3E:09:CA:1C:45:FD:75:47:E4:58:94:6C:C8:A4:68:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TutrLD4JyhxF_XVH5FiUbMikaLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/4Vf8du75wqgmJ7G2-ow2sllT7bo.roa
Signing time: Sun 01 Jan 2023 12:24:50 +0000
ROA not before: Sun 01 Jan 2023 12:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6453
IP address blocks: 185.109.120.0/22 maxlen: 24
193.188.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:b5:c3:41:97:af:f6:95:e9:08:03:9d:8f:3b:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eeb6b2c3e09ca1c45fd7547e458946cc8a468b4
Validity
Not Before: Jan 1 12:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e157fc76eef9c2a82627b1b6fa8c36b25953edba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a5:49:ec:ef:15:a2:a2:b9:6d:ed:87:27:77:
e4:aa:ca:f5:7f:8d:56:e8:a8:a9:12:e7:77:dc:12:
7d:d2:8f:3b:b0:1e:49:ce:b7:f9:12:a6:8b:63:47:
0a:fc:69:a8:c4:d0:9d:91:3a:df:1d:ee:40:ed:0b:
1c:fb:5c:7e:cf:9b:8a:96:fd:24:6b:d3:36:bf:f6:
55:e1:8c:32:49:67:cc:88:15:a5:24:46:1f:a6:03:
ca:54:f6:63:a3:da:55:00:54:4b:a8:37:a7:7e:0c:
14:4b:56:fe:d8:76:04:d1:06:8a:86:81:e1:c6:b6:
4b:62:80:91:f7:f1:c9:12:79:fa:5c:01:93:6a:5b:
f2:77:ab:69:7e:30:6a:5e:83:32:1c:dd:0f:f4:3b:
64:ce:bf:9d:8c:b0:6b:bd:c3:ba:77:f8:8b:e0:1a:
41:f6:09:46:a7:a0:54:16:ed:5b:2c:fe:37:a4:c7:
b2:6d:85:b1:66:7a:f6:e4:ab:50:b8:43:8e:07:27:
7b:4e:3a:91:7b:69:3a:74:4b:b3:91:e2:81:11:e5:
b0:d2:1c:85:14:f1:08:4a:8f:42:54:58:56:4e:2a:
1d:b1:07:e7:df:53:c0:24:61:9c:e5:59:8b:6a:d7:
6a:ad:e6:a8:52:08:ee:9f:16:91:3b:16:11:7b:6c:
82:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:57:FC:76:EE:F9:C2:A8:26:27:B1:B6:FA:8C:36:B2:59:53:ED:BA
X509v3 Authority Key Identifier:
keyid:4E:EB:6B:2C:3E:09:CA:1C:45:FD:75:47:E4:58:94:6C:C8:A4:68:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TutrLD4JyhxF_XVH5FiUbMikaLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/4Vf8du75wqgmJ7G2-ow2sllT7bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/TutrLD4JyhxF_XVH5FiUbMikaLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.120.0/22
193.188.64.0/19
Signature Algorithm: sha256WithRSAEncryption
91:c0:18:9d:e8:cd:69:98:4a:32:26:9b:5b:60:f8:f4:56:cc:
91:68:31:e9:b4:82:1f:07:cc:01:11:23:d5:41:6e:de:cb:46:
22:8b:e9:01:1d:2d:7c:9c:33:c0:bb:1e:34:70:9d:95:5b:1f:
fc:2f:8a:2b:3d:a1:78:6f:83:1b:6f:17:fe:9d:fa:bd:2e:08:
11:ee:10:28:57:3d:f4:de:7d:c2:92:d2:a8:66:6a:db:97:52:
d4:a7:de:95:02:ce:bb:66:f3:54:f1:48:d6:a3:aa:8d:d2:0f:
14:3e:da:1a:6b:48:29:14:4d:23:00:3b:24:ca:43:ba:04:aa:
02:02:37:f2:7f:ac:f4:00:30:07:64:b4:90:fa:8f:35:29:64:
04:d8:46:54:42:8c:53:11:41:f3:b3:7d:7e:a9:2f:1c:ae:33:
8f:d8:89:da:96:be:95:96:94:ae:82:03:80:6e:42:ba:f7:f5:
e8:a6:41:eb:c4:42:7e:f6:ca:77:f8:1c:39:4c:4f:f5:1d:a5:
ee:e6:bf:39:40:b7:40:60:63:32:c0:f5:b1:ab:25:20:b4:c2:
09:0f:4b:46:26:d7:bd:1e:f5:06:e5:e9:cf:d4:c2:0d:ab:1d:
91:01:5e:44:ba:e3:8b:11:f5:52:5b:2a:82:d7:2a:20:6b:c8:
32:d1:4a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:11 2024 by rpki-client on console-fra.rpki-client.org