Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/kjcEy_t5VlaCThn7b8Zo-MZ4KmQ.roa
File: kjcEy_t5VlaCThn7b8Zo-MZ4KmQ.roa (raw, json)
Hash identifier: b1q8aRrtQhtUy1iEShAFxBfPNhRysAclHRvZX0fmpqw=
Subject key identifier: 92:37:04:CB:FB:79:56:56:82:4E:19:FB:6F:C6:68:F8:C6:78:2A:64
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 018E563961EF57E49058A82A2B2018EACC66
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/kjcEy_t5VlaCThn7b8Zo-MZ4KmQ.roa
Signing time: Tue 19 Mar 2024 10:19:44 +0000
ROA not before: Tue 19 Mar 2024 10:19:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15755
IP address blocks: 185.35.21.0/24 maxlen: 24
185.96.168.0/24 maxlen: 24
185.96.171.0/24 maxlen: 24
185.203.32.0/24 maxlen: 24
185.203.34.0/24 maxlen: 24
2a00:7300::/32 maxlen: 32
2a0a:e0c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 20 Mar 2024 19:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:39:61:ef:57:e4:90:58:a8:2a:2b:20:18:ea:cc:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Mar 19 10:19:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=923704cbfb795656824e19fb6fc668f8c6782a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cb:c7:7e:0e:49:a5:cb:ae:68:23:06:54:19:
30:7d:a7:8f:7b:ad:89:82:5d:dc:b9:c7:4f:f1:a1:
ad:c2:c1:92:a2:cc:fe:4c:62:79:de:44:60:d5:d2:
b2:03:e2:a6:dc:ff:e4:a7:c0:44:8c:47:f7:71:d0:
bb:a9:69:90:67:61:0e:3d:8b:21:fb:e7:45:1f:56:
f7:13:a8:25:a7:ea:79:55:1c:e6:bf:a3:1d:77:2f:
6d:71:31:7b:b0:d5:77:e0:2e:3a:54:ae:96:d0:82:
aa:a1:a8:27:f9:fe:93:b0:92:40:03:c8:fd:66:0f:
aa:67:e1:41:16:b7:c4:59:08:3f:7d:a1:2f:92:1b:
6c:31:b5:8f:bf:1c:7f:b0:8e:79:1f:f3:25:15:c9:
9a:34:b9:e9:03:f6:d3:57:60:c3:81:7c:79:0b:81:
af:cc:d8:72:cd:39:53:3e:41:e9:0d:6f:94:ad:ec:
70:f8:bc:3e:da:05:94:c3:40:47:c3:e6:0e:48:34:
21:f8:62:de:f9:e9:cf:72:8d:ee:a8:30:ac:1c:68:
36:70:e4:ae:99:f8:38:4a:dd:a8:17:ab:22:f5:aa:
37:de:ae:92:50:67:a7:63:bc:ba:b5:f8:ea:ab:53:
3c:77:1c:81:35:0a:a4:fe:4e:96:53:11:96:c6:5b:
05:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:37:04:CB:FB:79:56:56:82:4E:19:FB:6F:C6:68:F8:C6:78:2A:64
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/kjcEy_t5VlaCThn7b8Zo-MZ4KmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.21.0/24
185.96.168.0/24
185.96.171.0/24
185.203.32.0/24
185.203.34.0/24
IPv6:
2a00:7300::/32
2a0a:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
58:fc:f2:8c:f9:56:3c:35:f4:2a:03:cc:f4:12:6d:f9:b0:ae:
e6:09:c6:4a:48:93:1d:61:2e:b5:3b:cf:ca:1f:cc:48:bb:6a:
6b:1c:30:dc:51:69:5a:55:19:20:a7:b7:17:c2:96:ca:96:97:
27:fb:b3:5a:97:33:ff:f8:1d:3f:64:55:23:db:27:79:ee:a8:
d3:9a:1f:c2:7a:54:92:85:3e:f4:75:9d:af:91:df:eb:d1:5f:
0b:e7:11:34:09:41:00:b3:e7:5c:1f:20:78:e2:12:3a:73:6a:
34:73:1a:ad:b9:12:e9:2c:f4:88:87:be:10:d2:8f:d8:a9:ae:
33:40:9f:8a:1e:a3:9a:98:f2:5b:96:e0:4c:bc:1b:74:b3:12:
8a:cb:29:bd:72:5d:04:b0:27:b8:9f:45:96:54:c3:e1:45:46:
75:16:0d:7b:cc:51:70:db:77:be:85:3e:c2:ac:f9:89:27:9b:
d3:cf:bc:8c:85:20:28:6c:02:cb:f8:7c:e7:00:f6:3a:34:e5:
80:02:d7:1d:92:56:ea:e1:c3:93:a0:6e:02:98:55:19:f4:f7:
6a:0a:78:e6:45:3f:40:19:ee:3f:79:78:61:2a:0b:b7:5c:5b:
90:e4:f4:b4:27:e3:84:66:ef:57:c2:60:1d:af:77:4b:24:de:
b4:b6:a4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 22:53:09 2024 by rpki-client on console.sobornost.net