Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/8Tw9c0VKO8gecaeEZPuC1QJpanY.roa
File: 8Tw9c0VKO8gecaeEZPuC1QJpanY.roa (raw, json)
Hash identifier: ILdyRQw+fRcNRI0ISKY2Ndsv2s0JlFYd5IJRY1H6zAY=
Subject key identifier: F1:3C:3D:73:45:4A:3B:C8:1E:71:A7:84:64:FB:82:D5:02:69:6A:76
Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Certificate serial: 01856E0B070FD7E0B79E2440660BE5EA25C7
Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/8Tw9c0VKO8gecaeEZPuC1QJpanY.roa
Signing time: Sun 01 Jan 2023 15:54:54 +0000
ROA not before: Sun 01 Jan 2023 15:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212086
IP address blocks: 185.231.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:07:0f:d7:e0:b7:9e:24:40:66:0b:e5:ea:25:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Validity
Not Before: Jan 1 15:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f13c3d73454a3bc81e71a78464fb82d502696a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a2:8b:52:9f:10:e1:87:44:e6:ee:59:a5:0c:
8a:79:03:35:f5:e0:c7:9f:bb:e3:d2:c7:2f:c1:39:
e1:2f:91:69:15:10:c2:26:e9:c4:c2:5a:04:08:56:
44:c4:f0:a9:db:56:95:19:80:f7:60:4b:5c:40:d6:
d0:d2:a7:32:7a:58:3d:b4:53:20:26:df:fa:ac:5b:
5c:55:db:60:89:04:eb:ce:68:e3:e7:7b:13:2d:b8:
9c:05:2c:4d:cd:33:92:fd:73:6a:91:bf:3e:24:e3:
80:54:da:46:b1:4d:ad:ee:7b:f6:40:20:31:1c:dc:
be:0d:a1:0d:36:fa:93:ea:cd:c6:36:72:14:9e:c2:
e2:db:6f:92:3a:d2:78:80:42:9f:f0:25:c1:cd:42:
a8:71:83:2b:d1:0a:8e:d0:3b:a0:52:94:9c:38:1c:
e1:ca:dd:d6:c8:e2:08:5b:69:02:56:1b:17:c1:6f:
d6:23:5e:a4:5e:00:c6:92:29:65:cb:8d:59:f1:49:
d3:d9:1f:92:78:96:e7:9c:85:da:e5:a8:eb:62:ed:
76:a7:ad:c4:4a:f1:6d:26:76:5d:08:bd:a6:f1:ff:
65:4a:a1:ee:a1:ab:02:f0:0b:8a:ab:22:41:5c:7f:
06:bf:9f:c2:5b:c7:31:03:0d:65:62:56:9f:72:6e:
11:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3C:3D:73:45:4A:3B:C8:1E:71:A7:84:64:FB:82:D5:02:69:6A:76
X509v3 Authority Key Identifier:
keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/8Tw9c0VKO8gecaeEZPuC1QJpanY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.64.0/24
Signature Algorithm: sha256WithRSAEncryption
45:88:4e:23:83:58:30:f5:f7:c7:a3:a1:4d:3c:d8:0d:a4:0d:
42:a0:dc:de:f9:8c:4c:38:e6:c0:11:b3:bd:3a:ff:1f:86:61:
23:48:96:2e:01:15:90:98:15:cd:35:56:a3:b9:e8:c9:56:42:
d8:31:e4:f9:58:2c:fc:bd:f8:73:73:f7:4f:8e:b7:5d:6b:f1:
c6:83:10:e3:5e:d3:7e:c6:b8:a8:e1:2a:91:43:5e:4d:4a:3c:
c4:61:70:25:48:f0:39:fa:75:a5:e3:9a:c6:48:b0:ab:2c:63:
80:63:87:58:cd:68:ef:eb:2a:24:4d:c0:ba:84:10:95:aa:c8:
49:53:fb:89:9d:ec:ad:36:46:a2:5b:17:19:e8:2c:47:14:16:
a9:2d:be:aa:83:27:2e:51:f1:48:84:69:0d:a6:9a:ae:fb:06:
25:a2:69:24:fc:23:3c:65:44:dd:d1:0a:dc:8b:34:ed:1f:95:
af:7e:78:37:53:cc:90:aa:68:0b:b7:1c:97:b1:a4:34:c9:f4:
24:45:ab:27:db:5b:a5:8c:64:89:bf:5a:fa:8b:ea:6e:5b:ce:
8b:b7:98:3a:72:c3:bc:40:bb:60:16:af:cc:73:f0:47:86:e1:
56:94:d5:be:a8:96:53:94:17:86:84:9a:5a:31:b1:09:ed:e1:
c9:d8:6c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:38 2024 by rpki-client on console-ams.rpki-client.org