Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/rlTBtPGZfz_ZpxjPXahF44HRp58.roa
File: rlTBtPGZfz_ZpxjPXahF44HRp58.roa (raw, json)
Hash identifier: lQx26fDXLhPpr+Idt06pOYnCYI1yDE7v4dz6Z5LdT9c=
Subject key identifier: AE:54:C1:B4:F1:99:7F:3F:D9:A7:18:CF:5D:A8:45:E3:81:D1:A7:9F
Certificate issuer: /CN=2aaacfc5d5e3b268f2c6ba4336bcc941f5c8d7af
Certificate serial: 01856DA6608D666EC1DA74F5374B2795A7F8
Authority key identifier: 2A:AA:CF:C5:D5:E3:B2:68:F2:C6:BA:43:36:BC:C9:41:F5:C8:D7:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqrPxdXjsmjyxrpDNrzJQfXI168.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/rlTBtPGZfz_ZpxjPXahF44HRp58.roa
Signing time: Sun 01 Jan 2023 14:04:58 +0000
ROA not before: Sun 01 Jan 2023 14:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52030
IP address blocks: 185.234.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 13:51:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:60:8d:66:6e:c1:da:74:f5:37:4b:27:95:a7:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaacfc5d5e3b268f2c6ba4336bcc941f5c8d7af
Validity
Not Before: Jan 1 14:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae54c1b4f1997f3fd9a718cf5da845e381d1a79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a8:28:d4:5b:b9:48:26:4d:22:97:e8:01:93:
b0:e3:ef:95:1d:8d:30:c7:94:43:ec:ec:e9:4e:12:
1e:e8:d0:69:2c:c8:f4:36:05:19:e3:5b:18:48:d4:
d2:ca:03:03:b3:af:e3:7b:76:dd:15:41:94:be:e1:
45:90:6f:90:fc:27:06:cf:48:39:d3:79:80:ba:c9:
de:8a:80:2a:81:f0:64:99:0e:f3:25:20:ae:3d:d6:
aa:98:b0:d9:d7:9a:f5:15:07:d6:31:71:69:98:0d:
67:b1:88:b6:38:d7:b2:55:a7:10:b3:a5:6e:c5:28:
2a:d6:8f:69:ed:24:a5:e0:cd:e9:91:6d:8b:ec:ad:
5f:49:2b:9d:4d:c1:3e:b0:cc:76:d9:49:7b:12:86:
16:39:b3:1f:72:59:a1:5d:4c:39:89:bf:ea:d3:53:
0d:a3:e3:a8:92:bc:50:43:58:77:82:b3:88:8b:bb:
0b:13:23:72:5b:be:29:4d:79:da:6d:13:71:2f:22:
0c:47:d8:15:be:b0:84:ab:d7:90:92:ed:4d:a3:c4:
1f:fa:66:74:cf:ba:85:09:b4:c2:3d:f5:a3:0b:0c:
77:34:d7:e7:36:27:49:60:96:4a:0d:e7:69:fe:cf:
88:51:ca:bd:2e:0a:71:48:7c:4f:2e:dc:52:58:f7:
5a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:54:C1:B4:F1:99:7F:3F:D9:A7:18:CF:5D:A8:45:E3:81:D1:A7:9F
X509v3 Authority Key Identifier:
keyid:2A:AA:CF:C5:D5:E3:B2:68:F2:C6:BA:43:36:BC:C9:41:F5:C8:D7:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqrPxdXjsmjyxrpDNrzJQfXI168.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/rlTBtPGZfz_ZpxjPXahF44HRp58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c52d44-1bb6-4dc0-86ba-44cb4e953027/1/KqrPxdXjsmjyxrpDNrzJQfXI168.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.110.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:85:c8:5a:81:66:10:dc:d3:3f:5d:19:be:21:87:d1:6e:dc:
e8:84:37:59:c3:f5:aa:7d:4a:5e:35:d1:f3:7c:ac:1c:77:62:
92:fb:d9:e5:e6:d8:e8:fd:e2:90:16:de:35:98:16:a6:f7:41:
6c:c6:1e:d6:16:36:d6:3a:17:77:f6:ae:63:a5:1b:e6:34:1d:
b5:aa:5b:a1:a8:bb:fe:dd:80:09:9e:e8:5c:ef:64:c7:1e:7a:
31:97:77:22:56:1d:c9:a9:53:bf:9f:ca:f9:ab:aa:c3:d3:bd:
59:fe:17:be:82:2a:50:fd:aa:45:0a:02:01:87:03:74:f2:0a:
03:1d:4c:32:8c:25:cf:7f:8f:5b:e0:0a:a8:35:88:6c:33:ad:
df:98:d9:75:86:eb:15:dc:1f:f1:08:30:93:3b:8e:cd:22:11:
39:6e:a0:62:8f:08:5a:02:5c:9e:40:10:dd:48:c1:78:1e:e1:
e8:ed:e9:30:78:f3:56:31:cf:ab:05:a0:51:4c:92:25:ff:5f:
4c:dc:29:a3:a2:0d:a4:38:85:8c:dc:88:84:50:d7:3d:f9:01:
b3:80:4a:ee:d3:23:a4:6f:e8:b3:d0:90:64:37:82:b6:f8:2d:
ab:c9:83:2f:d4:eb:9e:a0:6e:73:fb:12:01:56:9f:5e:f1:05:
ee:ae:f0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:33 2024 by rpki-client on console-ams.rpki-client.org