Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/4a0949-df58-4005-9768-fc5393c57887/1/jUD4AF6X7RoIbXlTHfYEfSh7GGs.roa
File: jUD4AF6X7RoIbXlTHfYEfSh7GGs.roa (raw, json)
Hash identifier: v3wKFcu2Csq0nOzhvWZPHy+MbqRdLlKFRzpImUyUIpM=
Subject key identifier: 8D:40:F8:00:5E:97:ED:1A:08:6D:79:53:1D:F6:04:7D:28:7B:18:6B
Certificate issuer: /CN=2c754ae473d9c154b804b70ed31881e025d926aa
Certificate serial: 0185708CC9F97279A0086A4E1B8F710FACA0
Authority key identifier: 2C:75:4A:E4:73:D9:C1:54:B8:04:B7:0E:D3:18:81:E0:25:D9:26:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHVK5HPZwVS4BLcO0xiB4CXZJqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/4a0949-df58-4005-9768-fc5393c57887/1/jUD4AF6X7RoIbXlTHfYEfSh7GGs.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8312
IP address blocks: 185.213.0.0/24 maxlen: 24
185.213.3.0/24 maxlen: 24
185.213.2.0/24 maxlen: 24
185.213.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c9:f9:72:79:a0:08:6a:4e:1b:8f:71:0f:ac:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c754ae473d9c154b804b70ed31881e025d926aa
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d40f8005e97ed1a086d79531df6047d287b186b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:96:9a:53:f8:b6:e2:0f:f7:75:c4:93:3c:1e:
72:8e:38:58:a4:06:b8:ac:19:88:0a:73:34:73:cf:
c5:b0:f1:16:20:d7:eb:54:46:37:32:b9:0c:b2:23:
46:df:e2:9b:77:a9:68:35:0c:83:44:6b:f2:da:65:
a7:61:85:d2:50:5a:3f:2b:4e:6b:db:6c:fa:6e:9c:
66:dd:ce:5e:e3:2b:e1:d4:40:a0:f6:3f:a6:f6:d5:
0f:e8:4e:22:b5:0e:d1:4b:3b:28:aa:b7:cb:74:39:
08:36:2c:8e:bd:30:54:66:ec:18:75:3f:80:39:2e:
8e:57:fe:ea:47:fd:60:79:5b:cc:51:e0:c3:b6:99:
9d:40:c2:d5:01:8d:6b:47:c5:0c:80:66:2e:45:a1:
da:51:5c:f1:8d:b3:86:cb:4f:57:7f:af:cc:a1:24:
4c:f2:f3:dc:b1:cc:be:83:09:a0:a6:77:e3:47:99:
93:cc:30:ac:f1:bd:13:b9:d4:0a:a5:19:d1:b0:5d:
7e:a9:82:ed:d5:05:15:d4:dc:96:ff:f7:fe:db:ea:
6b:c6:84:85:d7:68:f7:2f:50:17:a9:87:23:53:82:
9b:87:e5:c4:02:a6:8a:e9:a2:09:8f:11:61:51:0d:
e2:d6:ec:37:60:cf:81:b1:66:6e:b2:0d:5b:c2:10:
96:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:40:F8:00:5E:97:ED:1A:08:6D:79:53:1D:F6:04:7D:28:7B:18:6B
X509v3 Authority Key Identifier:
keyid:2C:75:4A:E4:73:D9:C1:54:B8:04:B7:0E:D3:18:81:E0:25:D9:26:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHVK5HPZwVS4BLcO0xiB4CXZJqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/4a0949-df58-4005-9768-fc5393c57887/1/jUD4AF6X7RoIbXlTHfYEfSh7GGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/4a0949-df58-4005-9768-fc5393c57887/1/LHVK5HPZwVS4BLcO0xiB4CXZJqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.0.0/22
Signature Algorithm: sha256WithRSAEncryption
33:17:e9:52:c2:83:2d:cc:19:98:f0:18:71:b1:6f:2b:dd:13:
4d:cb:2e:06:76:a2:5a:b9:b4:62:b5:b7:0e:df:0b:ca:d6:d4:
2b:3e:9c:aa:e8:92:0e:fa:81:83:f5:10:39:f9:d2:20:8a:49:
ef:8c:86:b8:0c:6a:89:97:c8:9e:1f:4a:18:67:12:79:4e:8f:
cb:72:ff:be:22:a9:f7:d7:14:99:6a:0a:14:b7:cb:cf:c9:b3:
23:27:25:81:43:32:5c:63:b6:33:31:7f:93:43:35:e0:ed:a8:
6d:cf:29:02:8c:60:8d:91:65:63:7e:66:3c:92:a0:11:94:70:
f8:e2:34:e9:6b:d2:e7:e4:bc:c3:28:2d:80:cb:f9:e6:b3:5f:
4f:71:5e:e0:1d:0e:d8:a7:64:ce:42:ed:c4:ce:13:c7:1f:f1:
0f:7d:da:41:35:b9:2e:ee:9c:3e:08:19:8e:b4:3e:24:23:1f:
76:ec:f7:76:87:78:3f:24:f4:4b:90:7a:24:82:fe:b8:fe:5c:
ad:17:be:eb:49:ae:53:69:d6:0b:36:20:f9:46:76:3d:e3:6c:
7e:2c:8f:13:57:6c:55:0d:ae:00:42:4c:bf:b6:cc:41:1b:5c:
52:33:45:4d:06:ce:fe:8f:ed:f0:fb:cf:9f:c1:65:0d:39:92:
69:01:03:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:13 2024 by rpki-client on console-fra.rpki-client.org