Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/1j4e0Msxk_AGr9Z2wLuL_7lLpgI.roa
File: 1j4e0Msxk_AGr9Z2wLuL_7lLpgI.roa (raw, json)
Hash identifier: ph4kmYt3yrhA2UmpegJtyHPFNLS+TnEvxu99JRm1epk=
Subject key identifier: D6:3E:1E:D0:CB:31:93:F0:06:AF:D6:76:C0:BB:8B:FF:B9:4B:A6:02
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 018651F7B1DB65E73BDCBD17C602345876F2
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/1j4e0Msxk_AGr9Z2wLuL_7lLpgI.roa
Signing time: Tue 14 Feb 2023 22:07:12 +0000
ROA not before: Tue 14 Feb 2023 22:07:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1584::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 26 Sep 2023 22:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:51:f7:b1:db:65:e7:3b:dc:bd:17:c6:02:34:58:76:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Feb 14 22:07:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d63e1ed0cb3193f006afd676c0bb8bffb94ba602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2b:59:2d:66:01:33:aa:4f:d7:73:3c:cd:e0:
c1:84:c3:00:07:7b:95:dd:ed:1f:08:0b:08:77:c5:
26:6e:5e:6d:9c:3d:dc:e9:7c:15:7f:42:95:a3:df:
d6:0b:a9:3c:55:26:d9:50:4d:2f:30:71:23:9b:8c:
ab:70:ba:91:63:0f:35:af:0b:3c:b1:ac:bb:89:e3:
ed:81:f4:9e:09:d7:2e:f9:8c:b9:2e:4e:be:a2:c3:
f0:24:d7:34:3a:11:bd:fe:0c:fa:14:d1:ca:fd:80:
fe:3b:f9:8c:16:db:c8:92:0e:68:b3:16:9f:64:67:
72:70:00:6a:fb:43:77:b1:40:55:7e:69:ed:34:a8:
b8:3e:f6:67:1d:4f:da:e9:92:3e:1d:36:73:19:7c:
5a:70:79:03:61:3f:96:54:e6:b7:ce:27:d7:7b:59:
51:8a:32:20:a6:5b:e4:ab:96:12:db:11:25:de:cc:
fd:b9:d8:8a:8f:bb:26:35:8f:ea:48:01:fa:f1:f9:
b1:b8:16:fd:6e:db:1e:16:7c:70:96:9d:a0:06:82:
75:40:ab:12:d8:54:47:67:3a:00:79:03:56:52:56:
2b:17:a9:00:08:38:00:7c:b2:68:94:f2:11:a5:fc:
94:85:ee:29:21:b3:bf:9e:8c:10:ef:cf:bf:95:17:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3E:1E:D0:CB:31:93:F0:06:AF:D6:76:C0:BB:8B:FF:B9:4B:A6:02
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/1j4e0Msxk_AGr9Z2wLuL_7lLpgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1584::/30
Signature Algorithm: sha256WithRSAEncryption
32:da:bc:2e:dc:97:2a:c8:59:3a:f1:f0:31:fe:fb:f3:c8:c0:
d0:fa:16:1c:cb:52:e5:6e:0b:4d:f1:c1:c4:e4:c1:e2:77:2c:
26:40:30:f6:44:12:e5:4b:63:b9:a7:bf:ba:41:6b:46:ea:6f:
d8:ec:2e:10:d7:93:dc:72:1f:27:fb:aa:02:5f:e5:9c:97:2b:
8a:dd:0d:9e:5e:9f:9f:83:c5:bb:c7:e9:6d:70:52:0a:46:b1:
1d:5a:0d:dd:23:d2:f6:32:e7:ab:be:9a:eb:a5:b4:90:79:0c:
61:d1:59:97:ba:aa:ca:22:13:28:ad:2e:a1:2f:f9:95:79:92:
38:cc:72:09:25:a9:0d:bf:51:62:9f:b8:ed:44:a6:26:e8:82:
48:b3:04:07:cc:b8:77:42:f7:1f:d7:a1:65:0e:2f:da:10:df:
33:68:76:51:3b:e5:5a:29:1e:4e:cb:21:01:91:01:a7:ef:8a:
fb:33:db:32:bb:21:f0:b4:07:b1:6d:01:7e:05:8f:f5:74:e0:
af:8f:6a:45:23:4d:54:8c:db:2f:45:8a:6c:06:f3:af:8d:8f:
01:dc:31:b6:d0:45:a2:0c:b8:49:ab:86:91:66:77:e8:be:2b:
d3:74:b9:3a:eb:30:9b:2b:8b:87:52:d8:b8:b6:77:5b:f7:db:
be:e4:d7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org