Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/Av9b2Xg0Q-TBsuNhhyTTcDqoKVw.roa
File: Av9b2Xg0Q-TBsuNhhyTTcDqoKVw.roa (raw, json)
Hash identifier: O1wc92pTVPlglSNfLASB9YN7mRumeABDAdTSD8pKmaw=
Subject key identifier: 02:FF:5B:D9:78:34:43:E4:C1:B2:E3:61:87:24:D3:70:3A:A8:29:5C
Certificate issuer: /CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Certificate serial: 018570DE5FD75B31F5D53A88948F6E3167EB
Authority key identifier: 68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/Av9b2Xg0Q-TBsuNhhyTTcDqoKVw.roa
Signing time: Mon 02 Jan 2023 05:04:59 +0000
ROA not before: Mon 02 Jan 2023 05:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39691
IP address blocks: 185.234.224.0/22 maxlen: 22
185.234.224.0/23 maxlen: 23
185.234.224.0/24 maxlen: 24
185.234.225.0/24 maxlen: 24
185.234.226.0/24 maxlen: 24
185.234.227.0/24 maxlen: 24
2a0d:2f00::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:5f:d7:5b:31:f5:d5:3a:88:94:8f:6e:31:67:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Validity
Not Before: Jan 2 05:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02ff5bd9783443e4c1b2e3618724d3703aa8295c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:21:1a:16:16:92:85:81:5f:45:9d:09:58:58:
d0:93:b8:43:2a:dd:23:bd:36:0d:00:3d:8a:8b:ba:
79:01:38:33:c9:72:aa:14:4b:fe:57:eb:13:7c:e5:
86:02:ec:9b:56:81:3a:07:af:59:9c:b2:eb:7d:ab:
0f:f3:8b:d7:fb:76:2d:4b:db:ab:12:82:30:0d:36:
ab:48:7f:d2:ea:01:e6:dc:9b:7a:aa:31:be:b9:68:
78:b7:4b:18:67:f2:a3:1a:cc:b2:eb:dd:56:b5:62:
e8:48:a5:58:23:8d:19:e6:fe:68:ea:b8:db:49:d3:
42:fe:02:b0:b9:c6:8b:ee:cb:b0:d2:0b:a1:99:ce:
e7:2e:b8:09:b7:14:07:1c:26:92:54:bf:8a:e2:39:
ff:1c:ce:5f:2f:36:d0:76:ff:08:d3:94:a0:d6:2d:
62:2c:d5:d5:46:94:54:98:a5:73:2a:c4:1b:60:04:
d8:dd:5e:4f:d5:5a:f3:23:41:29:16:ff:10:0d:6d:
d6:e7:b9:a7:d5:d1:2f:d5:29:2f:9a:d3:ce:c9:9f:
12:09:42:fd:73:30:81:07:9d:1c:8b:15:92:d2:4a:
e4:3e:4a:4e:4e:e1:50:39:26:f0:14:4e:30:7d:65:
d7:93:b6:8f:42:51:59:5e:05:8d:6c:d4:53:21:6d:
13:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FF:5B:D9:78:34:43:E4:C1:B2:E3:61:87:24:D3:70:3A:A8:29:5C
X509v3 Authority Key Identifier:
keyid:68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/Av9b2Xg0Q-TBsuNhhyTTcDqoKVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.224.0/22
IPv6:
2a0d:2f00::/48
Signature Algorithm: sha256WithRSAEncryption
06:2d:17:10:e9:28:0f:8c:bf:ed:e8:e1:2a:6a:16:21:34:6d:
ad:2f:98:3a:d9:7c:e7:e6:0a:7e:f8:6c:35:4f:2e:7b:3d:c0:
ce:eb:58:e9:b3:40:0b:d8:2c:34:c4:98:78:e3:f1:3b:70:bb:
f2:7a:55:12:eb:df:30:aa:78:83:6d:40:55:55:8b:ab:6d:47:
d4:3b:67:82:7d:dc:cc:2b:fc:19:b0:5a:90:f2:0b:38:f3:79:
21:c0:3b:07:fe:2f:df:e5:ed:50:9c:42:80:2e:e9:cc:e5:fd:
68:0f:5c:dd:9b:6b:6e:5b:e1:84:41:9c:85:1a:2f:71:25:b0:
34:5e:ac:48:a8:6e:59:96:f8:d7:16:e1:67:92:7f:fc:a7:90:
f5:bc:2d:e6:e5:c9:31:06:56:52:0e:31:8c:22:6c:2f:69:b9:
75:80:a5:34:ed:c5:02:8b:0f:f3:73:e3:fb:44:be:54:42:f0:
7e:06:ee:8d:ca:f8:79:3a:7a:68:d6:88:dd:76:6a:a4:2f:dc:
61:1a:33:28:f0:6f:49:fd:10:fd:5d:0c:e7:62:85:2d:f7:91:
f9:5a:f7:07:1f:72:19:6e:0b:02:93:9c:ed:0f:ba:32:53:76:
d8:4f:06:99:f5:19:0d:2f:a4:64:22:02:0f:69:76:f1:66:c0:
c5:e5:58:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:58 2024 by rpki-client on console-fra.rpki-client.org