Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/911b83-0c27-4040-970e-ecaf553c31d7/1/q1jLvMJjlKZ246bdLtXDuQ1u_RE.roa
File: q1jLvMJjlKZ246bdLtXDuQ1u_RE.roa (raw, json)
Hash identifier: lE+YcYbNEcjnZYlDrgeGlPP1Mzc2MOj6uf2wNPe6yhk=
Subject key identifier: AB:58:CB:BC:C2:63:94:A6:76:E3:A6:DD:2E:D5:C3:B9:0D:6E:FD:11
Certificate issuer: /CN=79a9f6a381ce4a5a3eccb2493a684609c988a0fc
Certificate serial: 01857315EFF34AEF44BFD88C5DE02EC64386
Authority key identifier: 79:A9:F6:A3:81:CE:4A:5A:3E:CC:B2:49:3A:68:46:09:C9:88:A0:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ean2o4HOSlo-zLJJOmhGCcmIoPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/911b83-0c27-4040-970e-ecaf553c31d7/1/q1jLvMJjlKZ246bdLtXDuQ1u_RE.roa
Signing time: Mon 02 Jan 2023 15:24:55 +0000
ROA not before: Mon 02 Jan 2023 15:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 185.218.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:ef:f3:4a:ef:44:bf:d8:8c:5d:e0:2e:c6:43:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a9f6a381ce4a5a3eccb2493a684609c988a0fc
Validity
Not Before: Jan 2 15:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab58cbbcc26394a676e3a6dd2ed5c3b90d6efd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ec:d0:30:b7:5a:63:96:14:b4:21:d5:1b:e5:
7c:0b:57:04:90:1a:c3:87:bd:95:b5:89:59:d7:b2:
88:18:0a:9c:59:c2:de:f9:c8:5a:c7:4c:7d:98:9f:
c2:dc:8c:c5:05:04:be:30:91:f2:16:7e:6a:03:0f:
06:c9:9a:28:af:4b:bc:c6:d8:f4:41:4b:3a:50:1c:
87:25:e1:86:49:58:6a:58:3e:10:a8:ab:6a:37:29:
70:da:79:4c:a6:44:e6:67:7f:53:f1:db:1a:a3:78:
08:de:7f:e7:1c:7b:fb:42:1b:d5:de:61:4a:73:b0:
f5:30:dc:83:28:70:7c:f0:76:ce:ce:a7:f5:3b:19:
78:aa:d5:fa:ce:4a:d9:78:0f:fc:71:77:f7:a3:5c:
ca:2d:c8:a0:16:73:49:c9:3e:1e:2c:c9:79:41:be:
74:76:02:9b:a4:bb:9d:a2:d1:d1:17:31:bd:71:2a:
3d:93:9b:41:72:e3:ee:70:b2:68:a2:18:50:6e:5b:
d6:e9:82:bc:4b:f8:fd:01:6d:f7:60:57:85:ad:fe:
4a:e8:63:b7:2f:4b:99:73:9f:b4:7e:cf:bb:99:ae:
6c:72:c1:65:56:84:f1:c7:31:3d:a7:7e:aa:e4:9a:
6b:4f:25:04:46:9f:32:ab:9d:34:9f:67:bd:2c:50:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:58:CB:BC:C2:63:94:A6:76:E3:A6:DD:2E:D5:C3:B9:0D:6E:FD:11
X509v3 Authority Key Identifier:
keyid:79:A9:F6:A3:81:CE:4A:5A:3E:CC:B2:49:3A:68:46:09:C9:88:A0:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ean2o4HOSlo-zLJJOmhGCcmIoPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/911b83-0c27-4040-970e-ecaf553c31d7/1/q1jLvMJjlKZ246bdLtXDuQ1u_RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/911b83-0c27-4040-970e-ecaf553c31d7/1/ean2o4HOSlo-zLJJOmhGCcmIoPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.240.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:bd:2d:6a:a1:a3:45:0f:7c:ad:ff:6c:ed:dd:c5:e5:ac:8b:
7e:21:9b:b9:df:0a:d6:84:ba:a0:14:b7:56:6b:25:5f:c0:b8:
05:27:65:e7:b5:6a:78:8b:58:a8:f5:01:f4:8e:cb:41:59:8d:
4f:b1:b8:bf:70:db:40:97:93:50:ae:50:5c:f2:e0:c2:e0:58:
54:79:f6:46:12:06:e3:2a:b9:ea:76:8a:9a:67:e8:97:73:11:
5a:dc:50:30:1c:43:07:ed:9b:52:ee:17:5f:8c:55:53:ac:9d:
2e:34:8b:50:46:67:da:f0:17:7f:37:c2:42:dd:04:fe:47:39:
f6:36:ed:98:2c:3c:86:49:e2:45:cc:25:2e:f8:9e:f3:42:7f:
64:29:1e:38:20:08:6f:30:e6:0c:2a:15:8c:92:60:d0:48:11:
9d:42:76:b8:0a:19:2b:4f:62:fb:fe:07:fc:35:5e:50:4f:2e:
29:c2:50:1a:9f:e3:d7:60:7d:15:25:65:13:e4:78:a7:6e:b3:
5e:0f:10:32:52:71:d5:8d:80:81:15:c5:2b:90:8b:7e:c3:27:
78:b6:d0:f5:74:cb:1d:32:42:d8:70:3d:f1:44:94:e9:e3:b9:
fe:f0:f6:31:bc:9c:43:cc:f2:97:84:80:73:da:76:b2:b1:a6:
1d:e2:ff:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:22 2024 by rpki-client on console-ams.rpki-client.org