Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/_Wce0mjzrbnnO5TNJujL7bSF2Xc.roa
File: _Wce0mjzrbnnO5TNJujL7bSF2Xc.roa (raw, json)
Hash identifier: 6NzPmlsk/cSt5fBQ17PxcHipT5YvhQduekccBYSB2Pc=
Subject key identifier: FD:67:1E:D2:68:F3:AD:B9:E7:3B:94:CD:26:E8:CB:ED:B4:85:D9:77
Certificate issuer: /CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Certificate serial: 018CC3B7339433DC6C054A6DFCBDCFB49B6D
Authority key identifier: 32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/_Wce0mjzrbnnO5TNJujL7bSF2Xc.roa
Signing time: Mon 01 Jan 2024 06:30:12 +0000
ROA not before: Mon 01 Jan 2024 06:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211090
IP address blocks: 185.253.76.0/24 maxlen: 24
185.253.77.0/24 maxlen: 24
185.253.78.0/24 maxlen: 24
91.239.119.0/24 maxlen: 24
2a10:f1c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 24 Mar 2024 10:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:33:94:33:dc:6c:05:4a:6d:fc:bd:cf:b4:9b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Validity
Not Before: Jan 1 06:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd671ed268f3adb9e73b94cd26e8cbedb485d977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:aa:80:9c:03:5e:03:5f:36:96:fe:24:18:3c:
af:98:7a:d2:3e:1c:ca:f7:8f:db:82:9e:88:91:e6:
50:a5:20:c5:30:3e:24:7d:25:de:db:d3:40:14:26:
ae:50:91:11:09:f8:a4:37:f0:0f:48:fa:b8:85:ec:
9a:eb:3e:52:f5:d7:6f:fe:98:a8:f3:41:94:99:a6:
63:0e:8c:af:c6:18:e2:98:d6:9e:fd:5f:23:09:93:
fb:b7:bf:ab:3f:43:12:00:f3:f7:b3:3e:47:2d:08:
9d:67:95:7c:bd:44:37:0c:d3:a4:40:ec:df:ca:75:
bf:c1:08:bd:1c:3b:8d:98:4f:60:cd:a2:a6:4f:4f:
4a:71:c2:2e:34:58:a8:ba:99:ab:c9:b4:3b:f9:fa:
f6:80:8b:c4:90:f6:96:de:c0:22:6f:fa:8f:5a:96:
41:6c:a2:17:53:43:f3:b8:c5:62:58:66:9b:f8:54:
6e:e8:72:e4:0a:49:a8:18:0a:e6:e4:46:18:f7:35:
a4:2b:1e:c9:c1:08:bb:04:a9:44:44:f7:85:de:75:
dc:7e:2f:5e:4d:62:62:03:9d:2d:0d:06:ad:63:d1:
63:8a:99:14:bd:e6:6b:e4:f4:08:02:8d:0b:00:6a:
5c:55:c5:ce:e2:46:69:f7:ec:49:fb:8c:3d:a4:43:
f1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:67:1E:D2:68:F3:AD:B9:E7:3B:94:CD:26:E8:CB:ED:B4:85:D9:77
X509v3 Authority Key Identifier:
keyid:32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/_Wce0mjzrbnnO5TNJujL7bSF2Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.119.0/24
185.253.76.0-185.253.78.255
IPv6:
2a10:f1c0::/48
Signature Algorithm: sha256WithRSAEncryption
b5:b2:8b:5f:c6:da:6c:de:e0:ba:07:e3:31:49:ec:28:57:7c:
3d:83:90:43:01:6c:5d:e9:ce:ab:9d:cb:c6:7e:38:a3:5a:33:
81:53:00:73:95:4b:f6:d8:07:c0:72:e3:25:61:9f:75:a9:3f:
cd:7f:c7:f9:ac:ef:8a:2e:0e:39:40:15:0e:ea:b7:2d:27:49:
eb:17:28:45:3e:95:5d:67:d5:fa:02:a1:3f:da:67:e8:45:11:
c0:88:1c:c2:ab:15:38:69:b6:b4:ce:71:f1:b3:ec:cd:6a:9c:
da:3a:dd:fb:7c:5e:cf:b1:73:d1:52:5f:50:ec:a8:20:0a:71:
4d:04:0d:8c:39:3a:1c:7b:6b:b5:51:1e:58:23:97:b1:70:78:
21:cc:20:d6:8b:31:23:bd:b8:01:59:2d:51:1b:27:e2:ac:9e:
d6:91:c5:64:f4:85:d2:a9:54:90:71:68:c2:44:08:2e:dc:e2:
53:b8:6b:59:df:66:fb:21:8e:4f:89:cf:78:26:5f:ac:c4:83:
22:a0:32:67:b6:9a:2d:bf:f6:10:67:e4:93:8b:32:49:ee:ba:
7d:d2:fc:2c:ca:da:78:dd:ff:c5:aa:53:82:a7:44:a0:9a:10:
4f:78:a6:a5:3e:d1:e6:2f:9a:4a:e6:d7:fe:51:4b:c9:e6:2d:
df:42:34:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 24 13:16:37 2024 by rpki-client on console.sobornost.net