Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/_Pe5_XkYHBNzzsjoQjwOoMlfi1M.roa
File: _Pe5_XkYHBNzzsjoQjwOoMlfi1M.roa (raw, json)
Hash identifier: wfv9K9psjCkAC9v6/K0eepvEICZyl6kKgCVM4yNxtcU=
Subject key identifier: FC:F7:B9:FD:79:18:1C:13:73:CE:C8:E8:42:3C:0E:A0:C9:5F:8B:53
Certificate issuer: /CN=ac9e2efcdc213ac5b1b0879d922a178b850f451f
Certificate serial: 01856E267718D295DFE0230D9A613C155926
Authority key identifier: AC:9E:2E:FC:DC:21:3A:C5:B1:B0:87:9D:92:2A:17:8B:85:0F:45:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJ4u_NwhOsWxsIedkioXi4UPRR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/_Pe5_XkYHBNzzsjoQjwOoMlfi1M.roa
Signing time: Sun 01 Jan 2023 16:24:52 +0000
ROA not before: Sun 01 Jan 2023 16:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29104
IP address blocks: 185.116.134.0/24 maxlen: 24
193.56.125.0/24 maxlen: 24
193.56.124.0/24 maxlen: 24
193.56.124.0/23 maxlen: 23
37.35.6.0/24 maxlen: 24
193.56.130.0/23 maxlen: 23
193.56.130.0/24 maxlen: 24
193.56.131.0/24 maxlen: 24
2a00:4f40::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:77:18:d2:95:df:e0:23:0d:9a:61:3c:15:59:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9e2efcdc213ac5b1b0879d922a178b850f451f
Validity
Not Before: Jan 1 16:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcf7b9fd79181c1373cec8e8423c0ea0c95f8b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:ce:16:71:33:da:12:0d:74:66:88:08:06:
b1:8b:dc:4f:1e:17:19:4c:0f:2c:e6:d3:01:93:7e:
cb:ef:80:3c:a4:75:b0:9d:4f:f8:66:cb:5d:1e:c9:
0a:da:4d:c9:0d:5c:fd:d4:68:a4:bd:1d:dd:31:32:
71:5a:33:d7:5d:a9:00:0a:8e:48:cd:98:35:89:cb:
88:ea:11:06:7a:da:a6:c3:a8:99:86:05:ed:66:87:
54:c2:57:d2:6c:75:42:45:82:cf:a5:86:4c:eb:3b:
27:19:e8:38:11:d2:b4:a4:ef:a7:2e:de:10:c5:6c:
27:c2:35:01:e4:b4:32:1d:31:86:96:83:61:07:e1:
90:fc:1e:39:d3:0c:ae:af:98:05:c4:e2:ad:e9:49:
1a:a8:f4:27:31:2c:78:23:2a:eb:1f:7d:96:d3:77:
bf:72:85:08:ac:56:35:20:15:c4:f4:90:0a:ea:f9:
e4:bc:cb:06:7b:e2:0f:b7:58:ac:66:e0:66:91:5e:
bb:8b:d4:ce:6c:69:ef:f2:13:52:41:a9:b0:a6:74:
06:d4:81:9a:69:e8:2a:36:e4:58:6a:12:55:f0:c8:
06:29:0b:18:84:94:f8:b4:51:d0:a2:04:30:35:33:
8e:ab:52:ef:c9:f9:6c:9a:4a:b8:2f:d4:49:45:00:
8d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F7:B9:FD:79:18:1C:13:73:CE:C8:E8:42:3C:0E:A0:C9:5F:8B:53
X509v3 Authority Key Identifier:
keyid:AC:9E:2E:FC:DC:21:3A:C5:B1:B0:87:9D:92:2A:17:8B:85:0F:45:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJ4u_NwhOsWxsIedkioXi4UPRR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/_Pe5_XkYHBNzzsjoQjwOoMlfi1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/rJ4u_NwhOsWxsIedkioXi4UPRR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.6.0/24
185.116.134.0/24
193.56.124.0/23
193.56.130.0/23
IPv6:
2a00:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
80:6f:71:06:11:e6:3a:7f:43:d5:e0:ca:4a:08:85:0d:e4:33:
b1:76:43:6f:06:de:c2:c3:41:f1:88:27:65:5e:d8:fc:66:c0:
e7:5c:b7:21:9a:e0:b1:e1:f3:7f:2f:aa:65:f1:5d:00:8e:48:
e1:e4:06:39:b7:b1:e9:f1:0a:f3:fd:c8:48:84:f4:40:c9:6d:
51:93:10:a2:60:03:4c:19:f5:a3:05:2e:2c:b5:12:65:46:7f:
08:29:50:e5:8c:34:0f:6f:4d:a0:ab:8d:47:cb:e1:f4:ff:03:
82:f3:aa:79:3b:f7:39:ff:75:e4:4c:8a:a3:31:6f:6a:11:dc:
0e:f0:29:be:ba:b5:49:9a:f5:76:57:c6:1f:04:d9:54:c2:5c:
09:2d:b3:fa:65:3e:57:b4:f4:53:53:a0:b4:70:14:d5:0f:a7:
8e:ba:4f:50:3a:7a:de:f9:60:3c:8c:ac:74:3b:be:5b:c4:03:
64:31:fd:76:4e:df:06:e9:cc:cc:90:2b:ec:80:79:45:48:7a:
f6:d8:6c:1c:99:47:d0:3c:ae:e1:03:54:da:db:20:b1:cc:cd:
34:ac:b9:3d:1b:6b:97:44:04:12:47:20:bf:40:6a:0b:bb:85:
9d:bc:3f:35:01:ab:23:b4:45:8d:d1:ef:c0:7d:f8:dd:99:6d:
7a:cf:f6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net