Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/E4Tau7JMWYu_1lunJt3Ny4RSIvA.roa
File: E4Tau7JMWYu_1lunJt3Ny4RSIvA.roa (raw, json)
Hash identifier: CEJA8oz4crSz007J2BKlpOeFoTpMpym1InfRwV/1z6k=
Subject key identifier: 13:84:DA:BB:B2:4C:59:8B:BF:D6:5B:A7:26:DD:CD:CB:84:52:22:F0
Certificate issuer: /CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Certificate serial: 018596868E5E419687C3BA691BC2EA2784F3
Authority key identifier: 4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/E4Tau7JMWYu_1lunJt3Ny4RSIvA.roa
Signing time: Mon 09 Jan 2023 12:34:38 +0000
ROA not before: Mon 09 Jan 2023 12:34:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58010
IP address blocks: 195.74.88.0/23 maxlen: 24
193.243.164.0/23 maxlen: 24
37.208.104.0/21 maxlen: 24
37.208.108.0/24 maxlen: 24
185.219.100.0/22 maxlen: 24
185.219.100.0/24 maxlen: 24
185.26.156.0/22 maxlen: 24
2a00:d0c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:86:8e:5e:41:96:87:c3:ba:69:1b:c2:ea:27:84:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Validity
Not Before: Jan 9 12:34:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1384dabbb24c598bbfd65ba726ddcdcb845222f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:75:7d:c3:df:d6:7e:48:b9:55:76:9d:2d:50:
50:0c:c6:a3:36:10:b6:b9:8e:dd:cd:ea:88:1e:37:
e1:6c:5a:72:e6:30:09:75:df:46:62:5d:47:b2:a6:
ce:e9:b0:eb:5d:48:94:77:21:95:b0:55:38:3d:eb:
11:4c:e0:23:93:29:bf:1d:92:6b:f2:57:b3:34:aa:
50:40:14:97:16:af:fc:50:9b:0c:3e:09:ad:ea:82:
43:50:ff:ca:15:49:a6:6b:d7:a8:26:0a:93:f7:b3:
41:cc:65:f8:5c:b6:a6:59:ba:83:bb:df:69:47:36:
1c:3c:1c:6f:36:29:ce:fc:67:a8:06:7b:2d:a7:f5:
77:03:76:ad:19:4f:23:02:44:ac:76:49:97:b2:e8:
98:db:87:f5:53:6f:aa:7f:f1:d6:40:ed:8d:af:65:
e1:a5:53:c0:16:2f:60:65:18:63:96:7a:f3:fd:dd:
66:66:97:aa:92:98:60:da:58:54:6a:ce:82:06:4b:
28:7c:40:7f:fc:88:2f:77:64:ca:fe:2d:e0:a1:6b:
96:71:4c:a8:35:ee:e3:07:43:d5:6c:2d:5b:67:39:
72:7f:a7:75:d2:c3:01:81:52:c7:5b:1f:e7:05:87:
5a:a7:74:51:46:78:b8:53:48:41:22:64:e6:3e:70:
f0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:84:DA:BB:B2:4C:59:8B:BF:D6:5B:A7:26:DD:CD:CB:84:52:22:F0
X509v3 Authority Key Identifier:
keyid:4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/E4Tau7JMWYu_1lunJt3Ny4RSIvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/T4lf8Omad8AX6KODKSy1xvgmESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.104.0/21
185.26.156.0/22
185.219.100.0/22
193.243.164.0/23
195.74.88.0/23
IPv6:
2a00:d0c0::/32
Signature Algorithm: sha256WithRSAEncryption
59:1e:f8:e3:15:07:7c:16:8c:cf:55:9a:29:ce:b5:8a:9f:04:
49:a8:b0:6a:f6:6e:3c:65:bf:14:08:26:89:aa:f9:82:e2:47:
bc:c1:22:1a:ce:42:66:b7:aa:a9:bc:1c:e9:e6:e4:92:b2:52:
07:0e:74:cd:0c:7d:9a:48:ba:b0:46:16:26:ee:41:36:10:4e:
bb:43:bb:3e:6d:66:94:9d:f0:7a:1e:05:c3:ae:64:3a:0b:39:
95:c3:de:13:e7:19:72:f4:3f:63:e6:0e:45:46:2e:1f:67:b8:
1a:56:b6:96:05:a2:e9:78:2e:ae:4c:c2:86:2f:6e:60:8e:1e:
93:e4:ec:17:8c:cf:84:0a:a7:4e:0d:a5:79:8a:8c:f5:d9:d7:
7d:f8:fd:15:22:1a:b3:a4:67:38:89:04:f9:1f:ec:a1:96:57:
2f:8b:e4:c3:bd:8c:16:5c:26:bb:af:ab:a4:16:8c:4d:47:5b:
77:a8:a8:42:ba:9c:60:2d:b3:1b:c2:8d:af:48:c1:b1:df:f9:
70:1e:11:58:c0:4f:e3:9d:05:75:c1:b1:53:85:2a:2d:13:b0:
de:7d:62:2c:c7:82:87:32:50:65:10:b8:4e:44:39:4b:5f:91:
27:55:91:2e:de:21:f4:a0:18:7c:66:2d:0f:bb:d2:2c:40:24:
d5:06:53:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org