Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/BeU3iHnOz__y2EwSt3cw5v_pfXc.roa
File: BeU3iHnOz__y2EwSt3cw5v_pfXc.roa (raw, json)
Hash identifier: ABqwtFJUKbwYVjNigOrKfYjLnHaa4uwdV1lfpMVWZ0c=
Subject key identifier: 05:E5:37:88:79:CE:CF:FF:F2:D8:4C:12:B7:77:30:E6:FF:E9:7D:77
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB084B7E6D3DA07EF11EC4C3425E05
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/BeU3iHnOz__y2EwSt3cw5v_pfXc.roa
Signing time: Tue 02 Jan 2024 10:32:06 +0000
ROA not before: Tue 02 Jan 2024 10:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 194.37.82.0/24 maxlen: 24
185.247.116.0/24 maxlen: 24
185.247.119.0/24 maxlen: 24
185.181.9.0/24 maxlen: 24
185.181.11.0/24 maxlen: 24
185.227.109.0/24 maxlen: 24
2a07:3b80:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Apr 2024 10:44:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:08:4b:7e:6d:3d:a0:7e:f1:1e:c4:c3:42:5e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05e5378879cecffff2d84c12b77730e6ffe97d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:d6:36:bb:6c:ef:a7:54:19:6e:ba:08:24:
b0:c1:59:d2:5c:59:2f:12:1b:b6:87:84:ac:39:d4:
80:72:11:cf:a5:c3:3c:86:8e:85:91:21:35:85:ca:
81:db:d5:c1:1e:db:3a:86:47:40:f1:40:2d:72:f4:
8d:eb:47:0f:62:1d:d0:82:10:12:79:44:d8:d3:6a:
88:ac:09:fb:70:e6:ec:f6:29:a2:9b:76:2d:e7:18:
48:81:b3:f3:fb:9c:72:48:05:0c:01:e3:65:25:9e:
61:33:7d:52:79:d9:86:e8:d0:ea:2f:00:d1:51:0f:
0a:4d:97:dd:df:06:71:45:4d:06:4f:c1:3f:45:23:
8c:bd:c9:86:60:09:3e:eb:9b:e6:c2:71:20:05:cc:
8d:b8:fe:db:ab:9b:a0:f8:bb:14:7d:e9:67:d9:b9:
5e:8d:16:5f:13:76:c4:cf:d1:58:ef:e8:b7:04:50:
64:b3:9c:f5:e1:3d:76:c4:58:9c:a8:36:6c:fb:7a:
31:78:9d:e5:dd:18:bb:5c:87:50:44:ca:e5:26:03:
2c:4e:20:f5:1d:f9:88:a6:bc:6f:f9:1a:e8:6f:90:
a1:8f:d0:b4:e6:99:b1:23:f7:73:02:38:90:f9:30:
13:b5:33:9a:5f:71:a1:ac:24:03:9e:5c:51:9a:33:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E5:37:88:79:CE:CF:FF:F2:D8:4C:12:B7:77:30:E6:FF:E9:7D:77
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/BeU3iHnOz__y2EwSt3cw5v_pfXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.9.0/24
185.181.11.0/24
185.227.109.0/24
185.247.116.0/24
185.247.119.0/24
194.37.82.0/24
IPv6:
2a07:3b80:2::/48
Signature Algorithm: sha256WithRSAEncryption
5d:a7:1b:db:d6:25:c8:74:aa:69:9e:b9:b7:74:2f:c3:6a:9d:
9e:36:d8:e3:9c:22:45:b0:5c:a5:46:27:2d:b2:93:8e:da:fc:
4c:bd:ef:29:b6:42:73:3f:ba:76:92:c6:b2:cf:e4:f3:df:63:
fe:b8:f7:5a:fb:3f:b7:c2:04:0f:91:6f:3a:61:a8:9f:ca:0f:
dc:b8:e6:3b:df:25:3e:f6:f3:6d:51:8e:d1:5e:dc:43:b2:38:
1d:eb:67:74:74:70:d9:71:86:9d:ef:5d:87:5a:97:27:e4:8c:
c9:80:65:0c:a9:84:0c:28:30:da:8a:11:4b:9f:37:6e:1a:7e:
81:3d:cb:11:37:39:8c:6e:55:aa:e7:f3:ef:25:0c:ad:87:95:
70:a5:89:43:8a:5f:32:2f:d4:7b:4d:f9:92:de:6c:5f:f1:fb:
b6:82:bb:df:91:80:8d:db:c3:7d:f5:6f:2d:91:43:0e:9a:e0:
e2:ae:f3:c7:72:82:65:81:37:ed:75:2c:32:6c:0c:fd:53:c6:
a4:f1:0d:9f:4c:d1:d1:04:d5:73:40:4d:ae:e1:51:41:2b:8a:
30:8b:a3:7c:2e:6e:af:97:76:6e:07:25:58:51:1f:a5:53:47:
bc:10:50:05:5c:8a:3c:00:ef:0a:61:f2:5f:d5:ba:a3:8a:7e:
a6:85:be:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 14:03:10 2024 by rpki-client on console-ams.rpki-client.org