Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/217451-e1fb-4cc6-8165-804c4679093f/1/2EPtjlxxpsBtuT0OBC1ry939KPY.roa
File: 2EPtjlxxpsBtuT0OBC1ry939KPY.roa (raw, json)
Hash identifier: WQYeN4rxxrtnwkw/VzM/ffy28qjhBL0BIVdtUafuPBU=
Subject key identifier: D8:43:ED:8E:5C:71:A6:C0:6D:B9:3D:0E:04:2D:6B:CB:DD:FD:28:F6
Certificate issuer: /CN=0524066f866cf36e9cba9e9be6f90264da372f3e
Certificate serial: 01857295C08718CD6EE72FAD4AA01744B4E9
Authority key identifier: 05:24:06:6F:86:6C:F3:6E:9C:BA:9E:9B:E6:F9:02:64:DA:37:2F:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSQGb4Zs826cup6b5vkCZNo3Lz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/217451-e1fb-4cc6-8165-804c4679093f/1/2EPtjlxxpsBtuT0OBC1ry939KPY.roa
Signing time: Mon 02 Jan 2023 13:04:54 +0000
ROA not before: Mon 02 Jan 2023 13:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198682
IP address blocks: 185.87.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:c0:87:18:cd:6e:e7:2f:ad:4a:a0:17:44:b4:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0524066f866cf36e9cba9e9be6f90264da372f3e
Validity
Not Before: Jan 2 13:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d843ed8e5c71a6c06db93d0e042d6bcbddfd28f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:47:0e:52:4b:37:91:05:10:ba:8c:6d:7e:c2:
7b:7b:8e:a3:95:63:a0:19:ec:c9:01:4a:d8:4f:43:
c5:15:b0:03:24:1a:c5:2b:dd:e0:6c:55:5a:78:3b:
e5:bb:0f:57:71:8c:e9:31:9f:ac:f4:0c:ec:51:ac:
4b:b8:92:64:16:e6:a8:8e:af:41:aa:ec:d9:4c:c2:
42:12:60:6b:c0:8d:9b:03:cf:a4:2e:5a:b3:ee:5b:
97:6e:81:13:ee:41:7b:86:12:fe:ba:dc:a5:30:d3:
e2:66:da:0c:69:fb:4f:8b:8c:02:f9:9c:35:4f:48:
16:6f:c0:27:d4:09:f9:d2:ab:c0:fb:e3:5d:0b:74:
73:3e:86:52:22:f2:e8:85:dd:22:b4:77:13:76:b8:
46:69:40:43:08:dd:f2:29:cf:f8:13:ea:b6:47:d1:
4a:37:a2:83:18:55:5d:9f:51:af:57:f2:96:32:1e:
b5:3a:83:38:18:de:1d:68:4e:b6:7b:a1:20:08:c0:
10:b8:03:1a:8d:9d:11:d0:23:27:40:4d:dc:47:49:
2b:9e:f2:03:83:a8:85:b4:c7:cf:6b:ab:07:71:bf:
13:02:ab:74:21:e6:01:be:e5:2c:8f:01:fc:7f:6a:
a0:74:c7:1e:10:d2:ce:40:14:1b:6f:ed:09:cf:77:
2a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:43:ED:8E:5C:71:A6:C0:6D:B9:3D:0E:04:2D:6B:CB:DD:FD:28:F6
X509v3 Authority Key Identifier:
keyid:05:24:06:6F:86:6C:F3:6E:9C:BA:9E:9B:E6:F9:02:64:DA:37:2F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSQGb4Zs826cup6b5vkCZNo3Lz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/217451-e1fb-4cc6-8165-804c4679093f/1/2EPtjlxxpsBtuT0OBC1ry939KPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/217451-e1fb-4cc6-8165-804c4679093f/1/BSQGb4Zs826cup6b5vkCZNo3Lz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.64.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:64:6e:a8:8d:c0:4b:d6:d8:c6:e3:84:63:05:7e:5c:10:a7:
94:9b:14:20:fa:a3:03:d4:f4:40:80:6d:0d:86:f4:56:fa:e0:
48:67:4d:2f:bb:0b:a9:01:ba:3f:1d:4e:6e:47:35:61:b7:99:
48:76:6c:74:c9:cd:d9:51:9e:5e:9f:2f:50:fe:5a:67:df:ce:
73:96:d4:b8:e5:60:2a:10:93:3f:49:d1:65:2a:97:be:cb:8a:
c2:3f:f3:8d:38:34:0f:23:c2:3e:0f:97:48:ba:a8:31:d4:b5:
b7:1b:00:4a:c5:04:4a:64:84:5d:cf:44:83:d7:4b:5c:af:15:
36:82:33:3a:d1:d8:ee:73:96:b6:77:8e:36:44:55:a0:74:d5:
b8:64:ef:6e:9f:ce:5c:56:71:28:e5:48:1d:14:13:c2:0e:d9:
14:e7:5b:04:e5:f8:de:8c:67:70:1d:1c:ca:f4:7b:ce:20:8e:
66:6a:5b:da:36:35:62:9a:6f:26:57:20:37:de:0c:f6:8b:df:
8d:a5:29:e4:2e:54:85:77:79:a1:df:b5:57:4d:66:b9:c7:2f:
9e:15:3f:59:54:63:84:5c:70:a6:59:11:d6:ea:74:7c:a5:5f:
98:0c:18:53:50:b6:07:55:07:68:48:15:f8:58:8d:b6:65:7d:
c5:e9:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:10 2024 by rpki-client on console-ams.rpki-client.org