Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/wUPnw6h0B7qVGxqGZY1WXzbmYMg.roa
File: wUPnw6h0B7qVGxqGZY1WXzbmYMg.roa (raw, json)
Hash identifier: Hj82KuNxwz3WnzN+Y9KOkQPn+xFz12IAZkfMVZxyvFg=
Subject key identifier: C1:43:E7:C3:A8:74:07:BA:95:1B:1A:86:65:8D:56:5F:36:E6:60:C8
Certificate issuer: /CN=7d61b8378e8f368ae4998d51c3a9ace64148d6cd
Certificate serial: 0185A52CFDEB93DCC84590BBF0901AB41350
Authority key identifier: 7D:61:B8:37:8E:8F:36:8A:E4:99:8D:51:C3:A9:AC:E6:41:48:D6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWG4N46PNorkmY1Rw6ms5kFI1s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/wUPnw6h0B7qVGxqGZY1WXzbmYMg.roa
Signing time: Thu 12 Jan 2023 08:51:06 +0000
ROA not before: Thu 12 Jan 2023 08:51:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35790
IP address blocks: 213.204.219.0/24 maxlen: 24
213.204.218.0/24 maxlen: 24
213.204.216.0/23 maxlen: 23
213.204.215.0/24 maxlen: 24
213.204.224.0/20 maxlen: 20
213.204.222.0/24 maxlen: 24
213.204.221.0/24 maxlen: 24
213.204.232.0/24 maxlen: 24
213.204.237.0/24 maxlen: 24
213.204.244.0/24 maxlen: 24
213.204.240.0/21 maxlen: 21
213.204.252.0/22 maxlen: 22
213.204.248.0/22 maxlen: 23
213.204.247.0/24 maxlen: 24
185.31.143.0/24 maxlen: 24
185.31.140.0/22 maxlen: 22
213.204.192.0/23 maxlen: 23
213.204.192.0/20 maxlen: 20
213.204.198.0/24 maxlen: 24
213.204.208.0/20 maxlen: 20
185.105.244.0/22 maxlen: 22
185.57.84.0/22 maxlen: 22
185.217.224.0/22 maxlen: 22
2a0b:cdc0::/29 maxlen: 29
2a0b:cdc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Jun 2023 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:2c:fd:eb:93:dc:c8:45:90:bb:f0:90:1a:b4:13:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d61b8378e8f368ae4998d51c3a9ace64148d6cd
Validity
Not Before: Jan 12 08:51:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c143e7c3a87407ba951b1a86658d565f36e660c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:bf:e2:c1:7b:d2:06:f8:c6:ab:bb:55:00:
f7:0a:bb:ba:ac:c7:cf:2b:de:6e:c6:a1:32:6b:60:
08:4b:61:12:56:a3:1e:72:16:c1:28:ec:6e:6b:a7:
20:54:b0:24:10:ae:e6:36:c6:b9:42:5e:b4:ac:92:
fe:0d:6f:0d:52:e0:03:6c:d6:b5:63:5f:04:fe:1c:
0a:1a:ed:a6:52:bf:0e:9f:55:cd:ee:66:56:f2:d1:
ef:bb:1e:79:9a:1c:4f:77:f2:7b:03:36:3b:30:d0:
07:cb:26:a8:7f:41:ec:c7:e9:5b:52:1d:94:0b:96:
79:15:4b:72:18:38:26:3d:80:91:23:7e:85:b6:37:
31:5d:31:8b:ca:ce:f3:53:e6:5d:be:95:39:b6:0d:
aa:4c:6c:bf:03:43:0e:a7:9e:00:95:56:d8:90:04:
21:ca:cf:cc:89:2d:11:af:21:5f:72:1b:f0:4f:ab:
1e:bb:db:63:f2:fc:e5:88:84:e2:3f:24:26:ac:af:
d3:54:ff:83:2e:dc:c8:63:99:55:1e:d2:f7:ab:f5:
08:1a:ea:2b:78:d5:e0:37:8e:1c:e5:8d:2d:d8:54:
d5:68:c9:73:ad:b4:5f:dc:b4:ba:27:bb:fd:62:01:
c3:4d:a9:ca:cb:82:8f:d6:e3:91:4d:cc:38:91:c2:
e3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:43:E7:C3:A8:74:07:BA:95:1B:1A:86:65:8D:56:5F:36:E6:60:C8
X509v3 Authority Key Identifier:
keyid:7D:61:B8:37:8E:8F:36:8A:E4:99:8D:51:C3:A9:AC:E6:41:48:D6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWG4N46PNorkmY1Rw6ms5kFI1s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/wUPnw6h0B7qVGxqGZY1WXzbmYMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/fWG4N46PNorkmY1Rw6ms5kFI1s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.140.0/22
185.57.84.0/22
185.105.244.0/22
185.217.224.0/22
213.204.192.0/18
IPv6:
2a0b:cdc0::/29
Signature Algorithm: sha256WithRSAEncryption
28:be:8c:65:0f:32:d9:cc:3a:a3:3c:03:7a:d6:b4:46:51:7b:
b6:eb:78:c8:19:41:8a:97:f8:ee:61:2b:94:b0:d0:76:fb:0b:
11:28:9e:c5:ea:45:13:1e:d9:6c:e7:3b:9f:a1:9e:55:5d:08:
af:4d:7a:14:2c:19:c2:74:06:14:4d:9f:13:a4:e7:bd:34:f2:
1c:19:7d:66:11:aa:21:5d:a7:ee:42:0c:e8:1e:d3:ee:48:f8:
29:38:6b:76:43:18:c7:b4:4e:48:3a:fe:97:16:dc:c2:a4:ec:
c6:44:32:83:fe:08:5e:2e:7b:35:33:68:31:3d:43:b0:63:66:
60:f2:5f:1d:f7:ce:ff:0b:9a:59:b1:80:90:ff:0b:90:e2:b4:
ee:4c:89:7e:38:e6:7c:c2:42:3e:88:6e:fe:31:c3:0c:35:4d:
b4:cf:f4:2d:db:d4:e5:55:21:49:5c:6d:d5:ac:7e:cc:b8:7a:
e0:2e:b4:db:f9:68:68:c8:fe:05:42:62:bc:4f:80:80:2f:dc:
de:67:50:34:5f:f4:85:bf:f5:82:01:0d:46:ce:66:4f:d8:92:
b1:ef:2e:65:a1:de:f6:ad:8c:7b:75:33:7b:9e:14:0a:bf:1f:
9c:07:12:2e:89:7c:9a:5b:8b:94:e5:4b:2b:34:48:67:e4:38:
0b:61:55:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org