Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/FOYhbQpuVosJE7rE-1wg5Nz88eE.roa
File: FOYhbQpuVosJE7rE-1wg5Nz88eE.roa (raw, json)
Hash identifier: gTnZXlylyYSOsO1hQzK9vztYax+n9m6bXNSqxuKYyuo=
Subject key identifier: 14:E6:21:6D:0A:6E:56:8B:09:13:BA:C4:FB:5C:20:E4:DC:FC:F1:E1
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 018AD39625AA3FA1A1594E8AFA18E2FF4433
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/FOYhbQpuVosJE7rE-1wg5Nz88eE.roa
Signing time: Tue 26 Sep 2023 22:22:27 +0000
ROA not before: Tue 26 Sep 2023 22:22:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1580::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 26 Sep 2023 22:59:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:96:25:aa:3f:a1:a1:59:4e:8a:fa:18:e2:ff:44:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Sep 26 22:22:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14e6216d0a6e568b0913bac4fb5c20e4dcfcf1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:00:6b:7b:29:79:e5:3b:df:52:5e:c2:bf:ef:
d3:d0:9b:22:9e:93:63:b6:94:50:49:5b:13:0f:78:
0b:eb:1f:c7:d3:8e:e1:3a:95:f3:aa:ee:d9:c2:d3:
ea:06:ea:6b:82:64:fe:d5:ca:1e:27:6a:a2:45:bf:
8b:7d:b4:a6:04:35:e3:54:1c:07:04:0b:33:77:6c:
86:7a:96:ad:47:5b:47:af:64:89:07:cb:9a:21:6f:
9e:5b:a1:3d:5e:96:28:aa:31:64:7d:ff:c5:1b:46:
9d:c0:81:7d:cc:45:d3:4a:17:ec:b6:56:71:a0:90:
2d:bf:c8:ca:b1:54:ef:83:de:06:db:4d:ab:c5:72:
ab:06:39:4f:8a:20:32:c5:18:d0:85:bf:3a:7f:bd:
c5:a4:3c:1b:ae:cb:9f:bb:52:b3:a8:45:c2:dc:a5:
60:9f:82:a5:ce:5b:11:85:70:f3:e6:28:7e:d7:69:
8e:0d:8a:c7:df:ab:cc:84:a1:82:16:95:b0:eb:58:
e5:3e:bc:f6:c4:fc:57:88:cd:f7:6a:4d:5e:3d:02:
68:57:90:93:b8:af:fd:68:cc:da:bc:74:57:fc:5a:
31:b8:96:ec:75:18:11:26:cf:76:88:7a:21:be:88:
88:16:8c:c1:10:bf:f8:42:7a:b0:b8:8e:97:da:30:
0b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E6:21:6D:0A:6E:56:8B:09:13:BA:C4:FB:5C:20:E4:DC:FC:F1:E1
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/FOYhbQpuVosJE7rE-1wg5Nz88eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1580::/29
Signature Algorithm: sha256WithRSAEncryption
33:41:6a:d5:30:0d:0e:7d:e5:9e:5d:1f:84:32:5d:e3:ba:44:
3c:8c:dc:a7:f3:f4:e2:0c:d8:57:05:66:23:72:57:60:c8:12:
25:c5:b7:43:f0:6a:e7:2c:9b:20:f9:75:b2:31:c8:48:1c:2d:
cd:44:e4:21:4a:da:0e:35:29:f3:27:00:43:ab:9e:47:2f:7e:
53:06:3a:89:c2:6a:4f:a6:d8:a9:c5:0a:3f:b7:64:7e:07:7a:
e7:55:fe:20:0d:75:b4:2f:25:00:48:be:a7:5b:82:c5:d5:4a:
fd:a6:92:51:49:79:f9:c2:aa:15:a5:89:90:67:81:0c:9c:33:
41:05:5d:b2:b1:28:c8:d4:f5:65:30:76:88:b6:f4:28:2b:f7:
59:46:7e:6a:98:3e:d1:83:5b:e9:ab:a7:13:03:1b:ce:f6:d1:
08:33:79:93:27:94:49:08:a8:a4:5a:3c:60:c7:05:b6:22:d0:
57:33:6d:2b:e0:e6:14:94:d0:1a:a8:08:44:ee:62:da:ee:6a:
8c:96:c2:f0:6b:11:02:33:69:32:05:29:e8:77:58:91:2c:68:
a7:1d:02:7d:1d:4e:94:46:51:4a:8d:81:a0:60:8d:c6:a9:0b:
66:95:94:ea:2a:d8:dc:55:9f:23:cc:80:5f:da:f7:df:8f:e8:
7c:50:95:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org