Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/xQ1ASoXrBr5PgAZ9V20lf0iFZFk.roa
File: xQ1ASoXrBr5PgAZ9V20lf0iFZFk.roa (raw, json)
Hash identifier: q9wOlm+lvQXM0gbY0VvGrs2NIW87z/XTqSQKJgI6ajw=
Subject key identifier: C5:0D:40:4A:85:EB:06:BE:4F:80:06:7D:57:6D:25:7F:48:85:64:59
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 01856F1D973F9DD4EE41751E072CB04A9282
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/xQ1ASoXrBr5PgAZ9V20lf0iFZFk.roa
Signing time: Sun 01 Jan 2023 20:54:48 +0000
ROA not before: Sun 01 Jan 2023 20:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207456
IP address blocks: 185.82.74.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:97:3f:9d:d4:ee:41:75:1e:07:2c:b0:4a:92:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Jan 1 20:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c50d404a85eb06be4f80067d576d257f48856459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9f:e9:7f:71:f7:66:d4:bf:85:f6:31:38:54:
52:50:11:e5:9b:66:25:f6:90:cc:e2:13:2a:83:1d:
5b:72:43:43:c7:04:97:40:92:73:45:a7:42:c0:2e:
27:31:b3:14:a1:1d:a5:77:cd:83:c6:f2:c6:73:48:
ba:e9:2a:a3:45:e1:34:29:0b:5d:a2:b7:c5:ba:b0:
b9:25:98:f1:ad:ed:1f:b5:e1:07:8c:1a:25:3b:c2:
6a:0c:c1:12:5a:e8:2b:d7:f8:2b:15:b8:80:8c:4c:
74:20:bc:85:6c:38:d9:bd:de:7f:2d:cc:9a:79:9e:
ae:d7:09:53:e0:28:1c:3a:6c:e3:26:34:2d:15:47:
d7:92:d3:db:6d:4a:b3:4b:1a:63:e2:fb:1c:63:db:
e4:39:0c:c2:c3:2f:d2:54:bd:b2:d6:34:87:ce:db:
00:87:34:4a:40:97:cc:b0:e5:d3:0e:2d:f7:a3:53:
df:e5:9f:2d:96:ed:3e:c3:cc:7d:1c:b7:23:d7:bc:
f2:ad:0f:88:4c:74:55:bf:62:89:42:93:8a:72:d0:
fd:f2:9d:19:01:d8:74:bc:2a:6e:b8:a3:0c:aa:1e:
a3:b2:27:ed:f5:1a:b9:41:12:0f:4f:36:3d:69:bd:
e5:ec:5c:90:7b:06:04:cb:58:f3:05:a2:7c:2b:44:
ae:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0D:40:4A:85:EB:06:BE:4F:80:06:7D:57:6D:25:7F:48:85:64:59
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/xQ1ASoXrBr5PgAZ9V20lf0iFZFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.74.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:f4:0e:cc:ba:8e:23:fe:3e:a9:07:ef:1d:c5:ca:87:44:fc:
35:12:1c:51:f0:71:4f:75:99:a0:55:ef:6f:c1:3f:3d:42:2b:
ed:e0:6d:29:ae:22:e4:8f:ac:0b:c7:32:bd:d1:34:ed:0e:7f:
48:be:be:9c:b6:c5:42:5d:43:16:0c:6b:16:4d:7d:a1:80:9c:
c7:59:80:5d:2c:fe:f6:6c:24:e4:ed:f9:10:00:33:1f:a9:ea:
fd:7f:09:58:ef:2e:bc:72:f4:f2:b3:1c:db:01:3a:95:2f:c2:
17:49:52:cc:ae:d5:c6:53:30:f3:80:b6:10:9d:b4:cc:ee:e0:
b1:f9:78:40:6b:3f:22:96:63:00:1a:95:11:06:ba:75:6c:a6:
f3:5e:31:19:8d:d8:c0:74:3a:cc:60:54:32:16:4d:ef:96:10:
15:21:c5:d0:49:6d:2a:0b:2e:c1:01:09:e0:0b:a9:4b:c5:b2:
58:6b:5f:df:5f:03:7c:52:7c:d7:c7:0f:76:f2:90:8d:88:f7:
19:d2:7b:6b:4d:4c:f2:2d:6c:aa:2a:2e:91:f5:7d:1f:ee:06:
3e:7f:af:42:98:31:7c:b7:6a:4c:b6:62:34:a1:fd:53:fa:92:
5a:85:0b:9d:f1:c2:f8:22:c9:64:25:2f:9d:21:e9:47:c4:35:
8d:c2:ca:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:38 2024 by rpki-client on console-fra.rpki-client.org