Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/3BMmXpx4326XTvlhCG0UccH_FIg.roa
File: 3BMmXpx4326XTvlhCG0UccH_FIg.roa (raw, json)
Hash identifier: 4YaGsUYxr8fz5cw4IHAklvWLq1TuTGPbZpbtQTjq/f8=
Subject key identifier: DC:13:26:5E:9C:78:DF:6E:97:4E:F9:61:08:6D:14:71:C1:FF:14:88
Certificate issuer: /CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Certificate serial: 018B661DE132AAFD0898B2788188DBC3B859
Authority key identifier: 7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/3BMmXpx4326XTvlhCG0UccH_FIg.roa
Signing time: Wed 25 Oct 2023 09:15:16 +0000
ROA not before: Wed 25 Oct 2023 09:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3177
IP address blocks: 185.129.230.0/24 maxlen: 24
185.129.184.0/22 maxlen: 22
185.129.190.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:1d:e1:32:aa:fd:08:98:b2:78:81:88:db:c3:b8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Validity
Not Before: Oct 25 09:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc13265e9c78df6e974ef961086d1471c1ff1488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c4:91:4e:8b:95:31:ad:92:15:2e:a3:c3:23:
e6:c7:d8:e7:78:9c:d6:33:5f:d0:f7:81:e6:2c:96:
f9:fd:38:ab:39:23:34:60:b2:12:81:06:1d:8d:31:
ed:28:d4:a1:63:3e:4e:ba:df:2e:7a:97:4a:d5:51:
70:16:fa:9e:ab:34:e5:40:01:fb:24:9e:56:0e:de:
30:2f:85:25:37:4a:57:fc:a9:75:94:a7:f6:52:7a:
24:c8:5e:63:98:cb:a7:03:c5:3c:5b:19:a8:45:c4:
03:d0:20:e7:57:28:33:ca:f0:0c:bb:ae:9e:c0:60:
10:eb:66:1c:42:cb:95:e3:6f:30:dd:44:70:23:e2:
f8:35:d9:a3:42:f4:8a:98:1c:77:d8:b4:ca:73:db:
ff:25:9d:8e:ce:64:c4:18:7a:a4:22:35:78:78:e8:
5f:21:55:ad:95:42:f4:b8:13:3e:17:8a:e1:cc:37:
d9:63:ed:64:b0:30:aa:01:01:99:83:6b:2c:ff:65:
61:60:53:85:eb:ef:32:7c:96:5c:cd:02:06:57:09:
b7:9c:19:d8:de:fa:24:85:74:a2:f1:a2:8a:a2:24:
d2:5c:42:9a:90:f2:6b:a7:8c:8d:53:2e:95:c9:8d:
a4:85:17:51:47:a4:5f:f9:46:2e:93:1d:f3:b0:04:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:13:26:5E:9C:78:DF:6E:97:4E:F9:61:08:6D:14:71:C1:FF:14:88
X509v3 Authority Key Identifier:
keyid:7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/3BMmXpx4326XTvlhCG0UccH_FIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/e71RJyBktjssZjwClroR216iOMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.184.0/22
185.129.190.0/23
185.129.230.0/24
Signature Algorithm: sha256WithRSAEncryption
08:95:35:c3:eb:33:ad:e9:ac:f5:6e:0c:34:e1:01:61:a4:bc:
b4:37:0f:93:37:fe:3d:89:2e:e6:ac:36:13:d9:78:97:b4:da:
66:de:01:6e:64:4a:18:15:fa:4a:65:58:33:d2:cc:2f:89:ff:
2c:71:df:e5:3d:8a:ba:ee:c7:5c:ec:6a:90:bb:02:2e:b9:90:
c9:b3:97:d7:5c:35:5b:b6:87:9e:50:cd:52:fc:4c:71:89:c4:
22:0e:86:a3:b6:1b:1d:d2:ed:14:b9:8d:25:f8:f8:5d:1c:96:
b6:07:a8:8b:4d:21:4e:46:4e:69:2a:a9:97:d7:f8:44:0f:1a:
89:32:8e:b1:2c:6a:53:3f:be:63:78:ac:0e:a8:87:58:8c:1b:
52:32:46:46:09:7b:5c:1b:e5:32:82:ae:29:a4:1d:a5:b5:73:
47:13:7f:b2:d6:67:58:43:bd:69:13:0e:44:2e:73:ff:0c:cc:
b9:25:1c:5a:35:ce:8b:65:bb:7b:90:87:1a:e6:c9:dd:35:ca:
3b:27:b3:f5:cb:28:e5:15:b9:81:df:d3:0f:28:81:af:af:e5:
aa:81:19:54:18:75:00:c6:ba:26:2e:91:d4:46:e1:87:5e:b7:
bc:1f:2a:6a:47:67:fe:22:f2:fe:9c:8a:66:11:e3:2c:ef:f6:
90:cd:ec:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:10 2024 by rpki-client on console-fra.rpki-client.org