Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/XX2fNfHfB-LRtsKde_PY7n7ZBY0.roa
File: XX2fNfHfB-LRtsKde_PY7n7ZBY0.roa (raw, json)
Hash identifier: zLakqoUPC0fQcpgn47Vpl97fDOxA3sje9dhCpR3eycM=
Subject key identifier: 5D:7D:9F:35:F1:DF:07:E2:D1:B6:C2:9D:7B:F3:D8:EE:7E:D9:05:8D
Certificate issuer: /CN=80df0cbdd5571e580ea57e18a440ca2bea4806f8
Certificate serial: 01856FDDE32E834AFC5D55A7080913373CFB
Authority key identifier: 80:DF:0C:BD:D5:57:1E:58:0E:A5:7E:18:A4:40:CA:2B:EA:48:06:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gN8MvdVXHlgOpX4YpEDKK-pIBvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/XX2fNfHfB-LRtsKde_PY7n7ZBY0.roa
Signing time: Mon 02 Jan 2023 00:24:50 +0000
ROA not before: Mon 02 Jan 2023 00:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206674
IP address blocks: 185.179.56.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:e3:2e:83:4a:fc:5d:55:a7:08:09:13:37:3c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80df0cbdd5571e580ea57e18a440ca2bea4806f8
Validity
Not Before: Jan 2 00:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d7d9f35f1df07e2d1b6c29d7bf3d8ee7ed9058d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:91:51:40:26:1c:5c:d2:7e:77:09:ac:64:07:
fa:cf:cb:36:f2:05:42:21:3b:b2:12:32:92:e4:36:
ae:61:8f:d6:dd:ad:83:38:3d:dd:99:ea:3f:c8:68:
0b:cc:f1:83:d0:ec:6c:57:1a:28:f5:65:da:14:a6:
e7:4c:e5:25:7a:2c:b1:5c:bc:93:6c:69:fe:67:bf:
ec:ea:14:f4:df:1e:d6:32:fc:87:c8:a4:e2:5a:c4:
30:17:10:b7:1b:71:b1:f2:5e:88:5a:41:18:2a:c8:
34:4e:a7:0a:89:88:2f:80:e0:2d:ab:52:9a:d5:e1:
fb:9b:8d:4a:e3:28:0e:fb:1f:8e:49:15:df:80:36:
8a:51:fa:70:20:9b:59:73:64:c2:8f:21:59:11:7f:
d1:85:67:fb:63:1d:07:24:c7:38:65:13:a2:4f:ca:
30:4d:9a:da:20:00:09:2e:1b:1e:e7:2f:4c:45:15:
61:20:01:aa:18:dc:fd:c4:b0:5e:d1:92:79:81:a6:
d3:d0:a8:2d:97:57:d8:ad:21:09:89:77:1d:20:73:
54:d0:d5:6f:c1:dc:ce:56:62:b2:af:59:a6:aa:0b:
cd:50:fe:31:ed:c9:a7:bc:a3:e4:fb:6d:64:bf:f2:
b9:25:46:4f:e4:51:bb:c7:5f:05:97:37:ea:98:1a:
eb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7D:9F:35:F1:DF:07:E2:D1:B6:C2:9D:7B:F3:D8:EE:7E:D9:05:8D
X509v3 Authority Key Identifier:
keyid:80:DF:0C:BD:D5:57:1E:58:0E:A5:7E:18:A4:40:CA:2B:EA:48:06:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gN8MvdVXHlgOpX4YpEDKK-pIBvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/XX2fNfHfB-LRtsKde_PY7n7ZBY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/gN8MvdVXHlgOpX4YpEDKK-pIBvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.56.0/23
Signature Algorithm: sha256WithRSAEncryption
96:4b:29:3e:5f:15:96:a4:83:bc:5c:7d:12:8f:ef:84:2e:28:
c7:b8:1b:c5:82:78:01:03:54:4e:71:0a:1e:e3:75:b4:eb:f1:
46:7c:fc:cc:9c:86:6a:62:21:78:5c:1d:55:d7:dd:40:16:4d:
45:99:c8:3b:1a:cf:dd:64:dc:86:f4:b7:81:3d:39:dc:81:9f:
51:f7:99:4c:52:e8:12:22:5a:d5:25:6b:29:77:a9:3f:d4:dd:
36:0b:b4:b2:a8:3b:0d:32:04:0d:c0:9c:46:8a:ce:c1:b9:f1:
86:b5:5a:fd:8b:95:b7:39:e0:ee:d8:17:81:dd:48:a4:77:82:
e7:2b:5c:81:60:34:8c:f3:ae:07:45:11:95:6d:1a:5c:f1:07:
a8:27:36:9e:1f:61:e9:1b:cc:e1:80:ca:38:1f:b3:ab:c6:39:
8f:31:d8:9a:d7:74:a4:56:a8:a8:b9:fa:3d:90:f0:1a:47:ee:
a7:81:e5:e5:97:91:78:87:ce:2e:cf:aa:89:2b:89:d9:05:87:
73:3c:8f:87:53:49:9d:b7:2b:ee:61:8d:c9:ee:38:07:c0:71:
4d:89:cb:cf:7b:3f:51:c8:7b:27:4b:c8:59:cb:62:d9:72:a1:
19:a9:8e:69:3e:be:3c:bb:aa:5d:d6:0d:f5:62:1b:81:dc:4c:
af:70:73:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:11 2024 by rpki-client on console-fra.rpki-client.org