Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/1N4dmQY8NYimSlgWAcHRsVgGO-s.roa
File: 1N4dmQY8NYimSlgWAcHRsVgGO-s.roa (raw, json)
Hash identifier: 2wuFifkg936K5VupAAPP1idf+Enxl2CaUr3ajecsbqA=
Subject key identifier: D4:DE:1D:99:06:3C:35:88:A6:4A:58:16:01:C1:D1:B1:58:06:3B:EB
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 01856FC2608E212C3AD7A12D40F6B8C7F187
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/1N4dmQY8NYimSlgWAcHRsVgGO-s.roa
Signing time: Sun 01 Jan 2023 23:54:47 +0000
ROA not before: Sun 01 Jan 2023 23:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21395
IP address blocks: 185.59.88.0/24 maxlen: 24
185.59.88.0/22 maxlen: 22
46.134.192.0/19 maxlen: 19
46.134.192.0/18 maxlen: 18
188.47.192.0/18 maxlen: 18
2a00:f46::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:60:8e:21:2c:3a:d7:a1:2d:40:f6:b8:c7:f1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 1 23:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4de1d99063c3588a64a581601c1d1b158063beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:69:08:e0:c1:ff:6d:70:41:09:db:d7:0c:
bc:d1:bf:87:1c:99:9a:f0:cb:4e:c4:dd:16:0a:83:
4f:91:fa:3a:3b:67:32:e6:7b:ce:12:bf:f5:8b:a7:
a4:50:cd:ed:7f:dd:6a:50:7e:d9:2e:73:05:d2:b2:
14:59:1f:55:e7:08:33:55:0b:e2:24:12:64:2e:fd:
67:5b:78:8e:02:7a:9b:e0:2b:3e:75:65:b8:8f:59:
37:21:a4:53:19:0b:14:96:20:d7:0e:93:85:35:84:
a5:33:b4:49:96:af:67:29:16:df:45:16:ef:bd:5e:
c2:a5:64:b3:9b:74:e9:44:45:0b:d5:88:25:d0:14:
92:64:91:74:f9:af:36:50:81:6e:0a:a0:77:54:e0:
da:c6:32:ec:d0:db:2a:72:67:00:f2:12:aa:93:ec:
1c:26:2c:0f:fd:69:39:72:1b:d4:8c:42:bd:c4:64:
f1:82:30:08:0e:19:9d:d8:cc:7e:9f:9a:07:5d:02:
dd:7f:34:8c:14:3c:c4:7c:6c:0e:f6:03:57:8b:2e:
57:1e:47:7d:4b:b5:0e:09:25:d7:7c:47:15:46:d9:
c8:ec:80:96:33:b8:a0:bc:44:66:c6:aa:d3:cb:fd:
26:c2:71:0f:83:da:b3:2e:d1:73:3c:cc:cc:15:d2:
44:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DE:1D:99:06:3C:35:88:A6:4A:58:16:01:C1:D1:B1:58:06:3B:EB
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/1N4dmQY8NYimSlgWAcHRsVgGO-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.134.192.0/18
185.59.88.0/22
188.47.192.0/18
IPv6:
2a00:f46::/36
Signature Algorithm: sha256WithRSAEncryption
39:75:00:76:25:8f:00:9d:be:99:c0:7d:2c:47:16:e7:11:44:
94:80:4c:5e:af:9d:e9:76:0f:70:0c:6e:26:4c:b2:f2:43:bd:
76:75:b2:2d:e2:d1:8e:46:b0:0b:7f:ec:29:70:ab:4b:25:c3:
51:75:6a:1c:84:2b:17:ad:5d:e9:f4:57:d2:74:c4:f8:65:91:
2e:88:dc:91:86:94:3f:d9:75:67:43:1d:a6:e4:a0:4f:a8:d5:
49:7d:a2:5f:03:dd:c9:d0:5d:31:71:f3:dd:52:12:d3:f6:e5:
f7:8e:db:ae:29:39:91:57:20:15:64:36:af:58:01:0b:e3:34:
df:e5:ec:92:20:96:0e:70:bd:b6:00:1e:68:af:a5:47:55:27:
47:83:64:78:17:5a:61:e9:7d:05:1f:ac:d2:0f:31:a6:9a:f2:
ff:b4:a5:27:99:9f:35:a4:0f:55:72:90:b5:67:f9:7e:84:d9:
41:5a:59:ac:85:a1:13:ae:d7:8a:b3:99:ee:6c:49:72:cb:30:
45:2c:55:f7:ae:8f:ae:a3:db:2a:5b:71:bf:17:fb:3d:1a:ea:
95:12:f8:0e:bb:07:b3:d7:d1:4d:9c:d9:73:dd:bc:50:23:5b:
76:1b:c6:e3:d4:4f:26:d6:25:8b:64:89:7d:d7:f9:2d:ed:78:
3d:f1:d5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org