Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/a2787e-c4bb-4dfd-83cd-bdfa7c4f8b0a/1/RLQZzTpgB4kO9B15V8NHh2WmfFw.roa
File: RLQZzTpgB4kO9B15V8NHh2WmfFw.roa (raw, json)
Hash identifier: FkUOVX9cpOHoWIowKnGICvdSMlwIvTvUJHl2SgKUmwc=
Subject key identifier: 44:B4:19:CD:3A:60:07:89:0E:F4:1D:79:57:C3:47:87:65:A6:7C:5C
Certificate issuer: /CN=3a76fc5c9010b41119ca68dc6b9950ba5ff7327e
Certificate serial: 01864F1D5FCD77383FA450A32203D9A3C902
Authority key identifier: 3A:76:FC:5C:90:10:B4:11:19:CA:68:DC:6B:99:50:BA:5F:F7:32:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Onb8XJAQtBEZymjca5lQul_3Mn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/a2787e-c4bb-4dfd-83cd-bdfa7c4f8b0a/1/RLQZzTpgB4kO9B15V8NHh2WmfFw.roa
Signing time: Tue 14 Feb 2023 08:49:30 +0000
ROA not before: Tue 14 Feb 2023 08:49:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212140
IP address blocks: 185.226.96.0/24 maxlen: 24
193.56.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:1d:5f:cd:77:38:3f:a4:50:a3:22:03:d9:a3:c9:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a76fc5c9010b41119ca68dc6b9950ba5ff7327e
Validity
Not Before: Feb 14 08:49:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44b419cd3a6007890ef41d7957c3478765a67c5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:27:63:e9:70:7e:8f:fe:a9:ba:df:93:1e:
d7:83:a2:dd:c1:92:d8:37:c1:db:25:57:35:7f:46:
a7:36:59:02:4b:e8:93:d9:9c:1f:66:70:c1:ad:72:
ea:55:ac:15:f2:d7:16:9b:dd:0e:62:10:c9:59:e6:
d3:7a:b4:09:e7:e7:79:41:ab:0e:8f:94:03:95:22:
aa:0c:ff:59:0e:09:2f:42:90:98:38:c4:c1:44:9f:
95:3c:7e:51:bd:e9:62:d6:bd:15:74:7d:cf:a7:7c:
94:ef:5d:87:2f:de:43:22:96:f4:e4:5d:f6:26:7c:
21:37:28:85:e7:65:03:f9:f6:bb:69:65:cf:c4:61:
c8:3c:93:0c:b1:42:73:21:b6:7b:c9:7a:b9:9a:b4:
b8:e8:44:ac:bb:c7:64:b6:05:09:58:10:ab:05:3f:
68:53:e6:ee:44:66:f0:bc:39:03:59:67:20:a3:b2:
51:d7:e5:35:ef:a4:bb:fd:a7:0d:61:5a:db:a6:57:
00:34:76:16:f5:aa:5b:ac:6a:7a:ea:c5:4b:09:0c:
a0:57:94:61:15:ec:7a:3b:7d:7a:25:3c:ab:8f:ec:
5d:3d:70:7c:40:af:5b:f5:9f:64:25:20:c4:03:07:
ca:cc:c5:25:1f:82:60:d7:07:f7:ad:c5:3b:cd:f3:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B4:19:CD:3A:60:07:89:0E:F4:1D:79:57:C3:47:87:65:A6:7C:5C
X509v3 Authority Key Identifier:
keyid:3A:76:FC:5C:90:10:B4:11:19:CA:68:DC:6B:99:50:BA:5F:F7:32:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Onb8XJAQtBEZymjca5lQul_3Mn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a2787e-c4bb-4dfd-83cd-bdfa7c4f8b0a/1/RLQZzTpgB4kO9B15V8NHh2WmfFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a2787e-c4bb-4dfd-83cd-bdfa7c4f8b0a/1/Onb8XJAQtBEZymjca5lQul_3Mn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.96.0/24
193.56.103.0/24
Signature Algorithm: sha256WithRSAEncryption
44:2f:e3:90:1e:77:27:92:78:79:37:71:4b:99:cd:ba:59:c7:
ff:dd:4e:93:6f:a0:24:b7:09:63:a8:6f:08:c2:e8:f0:d6:e9:
1f:55:7c:67:13:1c:dc:9f:f1:bf:14:4b:2d:94:1e:df:af:d1:
90:27:e6:d5:31:80:34:e2:59:97:97:d4:c3:b5:12:55:07:67:
e5:16:b6:4c:9d:d1:66:ac:ed:88:76:f8:4d:7c:f5:53:ce:cc:
d2:1d:13:40:98:11:02:56:bf:e4:32:59:ba:76:30:fc:a8:cf:
f3:d0:6e:11:c7:32:d7:ea:9a:7e:92:9f:d0:cd:e3:27:9d:15:
09:2a:c3:3f:f5:b6:2d:52:69:ce:76:08:93:c3:7d:86:af:34:
2f:9e:d7:6f:5f:e1:28:f0:c7:c9:dc:a1:68:2b:c7:8d:a8:85:
ba:6d:04:23:01:2d:61:69:e8:c2:30:7b:ac:d1:cc:20:b6:53:
c5:90:d4:5d:8b:27:02:de:75:2f:84:43:28:f1:cf:b3:c0:2b:
2b:74:ce:dc:6c:c5:48:57:a5:39:98:71:58:e2:ab:0a:f3:a6:
da:52:5b:eb:de:85:56:94:cf:88:db:1f:52:d0:d9:45:f0:b3:
0b:8f:58:d5:84:39:cc:5f:49:1d:98:d4:75:a2:7a:58:36:a5:
0e:dd:89:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:30 2024 by rpki-client on console-fra.rpki-client.org