Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/9-UUb6nmQc8_J9P20ag74z5yftA.roa
File: 9-UUb6nmQc8_J9P20ag74z5yftA.roa (raw, json)
Hash identifier: yfseOPm1zyf0IWCbJYF8wjZOgri87qbFbhMv2nw/VqY=
Subject key identifier: F7:E5:14:6F:A9:E6:41:CF:3F:27:D3:F6:D1:A8:3B:E3:3E:72:7E:D0
Certificate issuer: /CN=de37812bd45273ea3b2a53d9e96f6dba215826f3
Certificate serial: 018747CE9912C3A957E27835265550B9927E
Authority key identifier: DE:37:81:2B:D4:52:73:EA:3B:2A:53:D9:E9:6F:6D:BA:21:58:26:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/9-UUb6nmQc8_J9P20ag74z5yftA.roa
Signing time: Mon 03 Apr 2023 15:48:54 +0000
ROA not before: Mon 03 Apr 2023 15:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12748
IP address blocks: 185.225.140.0/22 maxlen: 22
5.183.20.0/22 maxlen: 22
45.137.56.0/22 maxlen: 22
193.104.216.0/24 maxlen: 24
194.31.198.0/24 maxlen: 24
2a0d:d400::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 11 Oct 2023 08:23:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:47:ce:99:12:c3:a9:57:e2:78:35:26:55:50:b9:92:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de37812bd45273ea3b2a53d9e96f6dba215826f3
Validity
Not Before: Apr 3 15:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7e5146fa9e641cf3f27d3f6d1a83be33e727ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2c:26:66:4f:d7:25:e4:06:23:53:2b:f0:a2:
ac:c2:1a:d9:99:1f:98:1d:0b:41:db:a5:ae:6f:32:
a7:6d:64:6f:a4:74:99:16:0f:18:56:e7:6b:d0:bc:
90:80:a7:f5:7c:21:85:e1:38:73:1b:16:83:4b:a8:
24:52:65:12:ed:3d:d9:ce:a0:c2:d7:c4:07:ee:ea:
6d:6f:91:b2:9b:4a:39:43:f1:8e:8c:ba:e9:f4:a6:
43:31:f3:35:5a:fa:d1:e4:9e:47:c4:36:89:cc:8d:
a5:19:f4:bc:96:b3:cf:40:d6:9f:62:d2:75:a7:0f:
e1:f3:d5:1e:29:f6:61:39:64:d2:37:87:a8:48:20:
f7:fd:78:a1:32:3a:52:55:02:e2:f5:fe:c4:79:bd:
6a:ce:cf:1d:4f:96:b3:5e:df:36:81:2f:c4:cc:0c:
41:af:dc:dd:1e:c8:29:02:78:05:16:c4:48:f1:12:
d3:a3:4f:ee:4a:fe:48:63:5f:1c:70:a6:1c:0c:4e:
00:fe:d2:d8:de:53:99:68:f0:7a:f8:2a:5a:d9:6c:
9a:11:29:0c:aa:62:5f:9c:d9:a3:6a:16:ab:f3:19:
6c:ed:2b:9c:4b:92:32:d7:8e:48:7c:2c:ac:29:84:
bf:39:a8:06:40:53:10:08:eb:96:01:94:26:f5:2d:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E5:14:6F:A9:E6:41:CF:3F:27:D3:F6:D1:A8:3B:E3:3E:72:7E:D0
X509v3 Authority Key Identifier:
keyid:DE:37:81:2B:D4:52:73:EA:3B:2A:53:D9:E9:6F:6D:BA:21:58:26:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/9-UUb6nmQc8_J9P20ag74z5yftA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.20.0/22
45.137.56.0/22
185.225.140.0/22
193.104.216.0/24
194.31.198.0/24
IPv6:
2a0d:d400::/29
Signature Algorithm: sha256WithRSAEncryption
28:72:43:1c:8f:87:45:ad:e0:a6:40:71:9c:fe:54:a5:42:fd:
d0:45:45:63:78:86:df:72:8b:13:8a:0f:0e:41:2e:34:e5:1e:
1a:af:cc:9b:58:ff:91:ab:e8:dd:41:54:f9:40:78:20:39:ef:
47:42:d8:6a:96:7d:15:d9:8a:00:44:65:4f:dd:a0:c6:3d:4b:
c8:c5:dc:a7:00:02:2d:28:c9:4a:fb:50:2b:75:a7:74:4a:35:
93:56:99:88:c8:2d:5e:28:2f:cd:48:40:9b:48:e9:74:c3:82:
b0:c7:0d:5e:97:42:16:c3:fa:f2:83:83:ad:cf:92:9d:00:9f:
9d:49:2b:bb:71:a8:ff:f0:c7:23:0e:6f:10:6a:51:ce:30:f1:
9d:57:96:82:eb:86:45:f5:5f:f8:ae:22:88:f6:51:f2:f3:5c:
6e:7d:21:30:a1:c0:eb:97:6f:e1:e8:0b:01:61:5a:b8:8f:39:
e7:a1:ac:5f:95:7f:74:8f:56:e7:78:8e:ed:32:04:dd:a6:95:
05:37:6a:7c:8f:f7:e7:de:99:a5:64:55:c8:96:b9:06:50:c5:
4e:31:cc:51:72:db:fb:52:f7:4e:0b:f4:fa:6f:43:43:14:08:
b8:17:ea:8a:ca:ea:48:71:1a:25:da:21:81:03:9d:71:07:e5:
c2:65:06:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:57 2024 by rpki-client on console-ams.rpki-client.org