Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/2eLj2Xn0B6hUHcKsT5aHp93yfxE.roa
File: 2eLj2Xn0B6hUHcKsT5aHp93yfxE.roa (raw, json)
Hash identifier: bE3cLBtKVKicWg5R8E+Hkx8gFS7pPKV088fJ3QpvdFE=
Subject key identifier: D9:E2:E3:D9:79:F4:07:A8:54:1D:C2:AC:4F:96:87:A7:DD:F2:7F:11
Certificate issuer: /CN=9e933f2ce57c74cbf9ffa509685d6acbd8c53998
Certificate serial: 0189454B79DFB7D635A02526EB25CBBA2368
Authority key identifier: 9E:93:3F:2C:E5:7C:74:CB:F9:FF:A5:09:68:5D:6A:CB:D8:C5:39:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npM_LOV8dMv5_6UJaF1qy9jFOZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/2eLj2Xn0B6hUHcKsT5aHp93yfxE.roa
Signing time: Tue 11 Jul 2023 14:12:01 +0000
ROA not before: Tue 11 Jul 2023 14:12:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212374
IP address blocks: 185.209.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:4b:79:df:b7:d6:35:a0:25:26:eb:25:cb:ba:23:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e933f2ce57c74cbf9ffa509685d6acbd8c53998
Validity
Not Before: Jul 11 14:12:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9e2e3d979f407a8541dc2ac4f9687a7ddf27f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a8:38:e5:27:94:9a:ba:a4:4e:72:32:6d:76:
23:04:05:dd:ab:ef:6e:fb:f4:40:b8:af:1f:c1:87:
6f:c9:a7:1a:4b:42:fd:61:9b:73:ed:56:2f:be:0c:
4f:00:ec:b8:c4:54:7b:bf:e3:52:71:9b:b8:d7:1b:
6a:c3:54:60:83:33:87:7c:50:dc:15:7e:0e:94:01:
44:db:a0:ef:55:9f:21:4c:1f:78:5b:2a:a6:32:0e:
20:96:e8:55:c4:c3:e3:b6:1a:0c:25:bb:b0:37:a3:
18:2f:cb:f6:6a:9e:17:b9:85:11:82:97:35:75:07:
73:58:89:cc:27:7b:64:db:c0:b3:20:93:12:3d:18:
0e:1f:c5:01:ae:d6:20:4b:c0:98:c7:9b:51:ab:05:
5e:dc:af:b1:3f:2b:ad:67:82:75:c7:bb:72:7f:06:
2a:29:e0:f0:63:68:d4:99:d3:84:0d:78:27:c9:f6:
56:75:6b:d8:fd:2e:6f:86:45:d7:25:42:14:13:24:
be:a9:88:2d:89:14:2b:e5:d6:b3:aa:8f:c1:22:46:
5e:0b:a1:f6:0d:f4:3b:c1:b3:5a:38:b0:52:bd:64:
51:36:3e:79:d1:7e:78:61:04:5a:29:fd:b6:cc:3c:
88:b1:9d:ed:f7:07:8f:c3:b0:b5:c1:86:2f:e3:2e:
34:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E2:E3:D9:79:F4:07:A8:54:1D:C2:AC:4F:96:87:A7:DD:F2:7F:11
X509v3 Authority Key Identifier:
keyid:9E:93:3F:2C:E5:7C:74:CB:F9:FF:A5:09:68:5D:6A:CB:D8:C5:39:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npM_LOV8dMv5_6UJaF1qy9jFOZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/2eLj2Xn0B6hUHcKsT5aHp93yfxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/npM_LOV8dMv5_6UJaF1qy9jFOZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.82.0/24
Signature Algorithm: sha256WithRSAEncryption
98:6f:44:70:ee:4f:21:3b:54:02:56:17:d4:6f:cc:1f:87:b6:
26:59:70:94:2a:46:21:0c:68:d2:48:39:48:e9:d8:86:fe:b0:
cc:c6:f0:51:b9:d0:d8:df:21:df:10:7b:09:f3:3b:ea:db:bc:
9f:43:4b:ed:c2:ad:0d:e1:8a:66:37:17:f6:71:6c:9d:44:ed:
38:38:fb:10:50:4c:9d:c8:cf:64:2f:b2:62:d5:93:6c:79:cf:
84:96:12:92:0d:b3:ef:a9:b9:b8:f5:2a:11:a9:8f:58:15:ec:
c8:00:c9:a3:7e:7e:f1:34:48:48:a4:81:75:ca:05:62:18:bd:
75:a0:db:4c:a7:0a:63:e4:46:c6:05:b5:e2:c4:d8:36:9d:fd:
d8:05:6b:5e:a7:e9:c2:26:37:e7:7a:ce:b6:45:da:c8:6d:73:
3a:fe:b3:f4:f1:db:3e:fb:fc:5a:b4:55:e8:ad:12:6a:42:9c:
14:84:8b:59:60:e0:bc:3c:d1:91:60:36:4d:e2:45:c5:6f:16:
14:67:ea:a7:09:1b:1b:91:5d:71:9d:77:e5:c3:45:59:a7:15:
78:82:25:b4:68:8a:d2:d4:00:3c:39:46:aa:67:78:d4:7e:c5:
fb:8a:1a:4c:02:75:17:c5:e1:f7:6d:f7:95:1a:7f:9b:11:30:
fe:d2:8e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:54 2024 by rpki-client on console-ams.rpki-client.org