Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/CB4EjHCdag_CoZrlXJzeLCIyeWw.roa
File: CB4EjHCdag_CoZrlXJzeLCIyeWw.roa (raw, json)
Hash identifier: gPdf8MpaQxeiLbeRu/h0xY53Qc+IFajZJCdXoN7JzyA=
Subject key identifier: 08:1E:04:8C:70:9D:6A:0F:C2:A1:9A:E5:5C:9C:DE:2C:22:32:79:6C
Certificate issuer: /CN=6431e960cd061039b3b27fd25d4160771c498bab
Certificate serial: 01857169C4B8245603B6B472FF6270EB01A3
Authority key identifier: 64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/CB4EjHCdag_CoZrlXJzeLCIyeWw.roa
Signing time: Mon 02 Jan 2023 07:37:15 +0000
ROA not before: Mon 02 Jan 2023 07:37:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205229
IP address blocks: 185.224.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 09 Jul 2023 12:58:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c4:b8:24:56:03:b6:b4:72:ff:62:70:eb:01:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6431e960cd061039b3b27fd25d4160771c498bab
Validity
Not Before: Jan 2 07:37:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=081e048c709d6a0fc2a19ae55c9cde2c2232796c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5d:62:2c:8a:ff:87:12:38:76:2b:50:64:c4:
32:4e:80:7b:76:d1:cf:21:27:ea:13:27:52:ab:44:
3e:77:77:f8:73:56:8c:b1:99:f9:b1:f6:f9:9b:39:
b4:58:4b:68:8a:55:83:b5:e9:7b:da:34:6c:75:fc:
fb:f0:36:f4:6e:44:51:f4:33:c4:6b:43:1e:15:3b:
a6:ab:8f:9f:a5:c9:c3:3f:f8:9e:4f:b2:b1:52:4d:
a7:3b:c2:5a:b2:26:d1:89:45:1c:c7:48:11:c0:6f:
51:37:09:bf:52:30:39:fd:97:5f:4c:8e:b8:45:60:
5a:74:39:eb:ad:67:2f:6a:bc:ab:13:be:81:bd:d1:
36:3f:af:14:d1:37:7c:63:c4:b9:88:42:3f:64:5a:
34:79:5b:45:77:58:88:ba:45:8d:91:3d:ed:b0:84:
a6:65:60:58:b1:eb:6a:87:2f:bb:54:85:0a:b1:52:
67:df:3e:de:d1:10:fa:ee:29:c6:3c:d6:47:6a:bd:
0b:5a:a0:0f:65:e8:f2:72:33:73:11:ab:1c:65:bc:
4e:d5:02:7c:2f:12:5e:f9:52:5f:bd:28:3d:3a:e6:
4e:b4:79:f6:10:08:50:a7:1d:68:d2:51:09:e0:85:
97:98:a4:78:91:ff:2d:f7:9b:c8:58:6b:fa:72:70:
c2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1E:04:8C:70:9D:6A:0F:C2:A1:9A:E5:5C:9C:DE:2C:22:32:79:6C
X509v3 Authority Key Identifier:
keyid:64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/CB4EjHCdag_CoZrlXJzeLCIyeWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.176.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:29:26:fe:de:ac:18:fe:50:e9:0a:10:d2:50:86:1c:0d:9e:
b0:b4:29:b3:01:e2:9c:19:15:34:de:ab:7e:ba:a5:be:f8:84:
96:49:e8:35:bf:ec:65:08:22:66:4c:e9:cc:85:b4:d8:61:0d:
4e:16:d6:20:9d:ab:9c:09:f7:a6:77:b6:70:90:51:5f:dd:85:
c9:be:b4:88:37:7d:b8:1c:fb:85:6c:58:0a:cf:63:be:bb:75:
96:ff:01:b6:2b:84:b6:e3:e8:9b:21:74:51:08:00:e6:95:aa:
4c:61:2b:63:67:bc:c5:e0:a8:a7:c8:1a:4a:85:08:5a:f9:b9:
8b:e3:6b:e0:3e:aa:ca:ef:58:f6:4d:7f:08:b7:0f:c6:2a:c3:
e1:c9:8a:5d:d4:0c:b4:53:9f:80:fc:aa:38:e0:45:f7:3f:13:
c5:18:1d:27:aa:c2:9e:a7:3c:c8:33:dd:68:c7:74:f5:da:69:
cf:11:14:39:25:cf:75:8d:a0:f6:eb:fb:84:30:5c:27:23:6b:
33:17:8f:17:14:eb:2d:29:1a:b7:e5:a2:a5:2c:8b:c1:36:0e:
0a:70:00:97:fe:a5:88:21:db:fa:b5:62:01:a2:35:a9:65:27:
b1:95:21:87:e5:1d:c1:e2:d8:ea:ae:fd:b4:ce:e5:08:61:a1:
62:2c:82:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:43 2024 by rpki-client on console-ams.rpki-client.org