Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/_bG1ypOTNNFr9a9oe4CgZl7pHDk.roa
File: _bG1ypOTNNFr9a9oe4CgZl7pHDk.roa (raw, json)
Hash identifier: 8FdDuzatYDUeay1tNEp9Ff6YELdcAaEnboGfhggyXe8=
Subject key identifier: FD:B1:B5:CA:93:93:34:D1:6B:F5:AF:68:7B:80:A0:66:5E:E9:1C:39
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01856FCBB01A8CF8F98CE9C36CFFE41B0E1A
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/_bG1ypOTNNFr9a9oe4CgZl7pHDk.roa
Signing time: Mon 02 Jan 2023 00:04:57 +0000
ROA not before: Mon 02 Jan 2023 00:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25780
IP address blocks: 185.206.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 04 Jul 2023 11:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:b0:1a:8c:f8:f9:8c:e9:c3:6c:ff:e4:1b:0e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 00:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdb1b5ca939334d16bf5af687b80a0665ee91c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:85:b1:54:7e:bb:5b:00:ee:49:a9:d5:8d:4e:
cd:d4:26:07:78:66:fe:09:a0:a1:45:39:d0:e3:1c:
a5:f7:0f:d8:70:e7:92:b4:bb:b3:0b:69:cf:23:01:
73:2c:1e:e3:39:04:ae:8b:b4:d9:70:3d:bc:5f:72:
48:85:cd:ce:69:e7:0d:31:ba:0f:58:ec:6d:4b:9a:
09:e7:03:8e:d9:bf:a7:b5:9c:a7:79:4e:f0:76:b6:
6b:63:ee:fc:a4:8e:9c:2b:f7:3c:fe:01:15:29:54:
cd:68:92:c5:2a:fa:b7:11:b7:94:71:8b:f8:af:5b:
6e:ff:68:08:47:e0:2f:9d:bb:0d:88:57:3b:9f:a2:
1b:b6:5d:52:6b:98:37:e5:e9:f6:75:29:ed:cf:a0:
a6:50:87:e4:c1:83:d3:4a:d7:6c:bd:6c:31:bc:4d:
47:a5:12:84:3f:00:b1:f2:68:07:02:0a:c4:81:11:
c0:c3:fb:8d:63:92:36:33:74:86:09:1d:57:2a:02:
e8:36:c0:7c:2d:7f:6c:8b:68:87:2f:95:49:fa:fd:
29:3a:be:a9:70:91:b2:af:38:6d:e1:85:44:26:60:
3b:32:92:07:d4:97:64:d6:23:a2:4a:ea:d8:a9:c9:
fc:3e:e7:71:58:d3:04:0d:a4:c6:42:a9:60:ff:65:
16:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B1:B5:CA:93:93:34:D1:6B:F5:AF:68:7B:80:A0:66:5E:E9:1C:39
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/_bG1ypOTNNFr9a9oe4CgZl7pHDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.168.0/22
Signature Algorithm: sha256WithRSAEncryption
49:c4:d5:7b:70:bf:8e:59:63:83:7c:d7:bf:b5:fe:f9:ce:3a:
9a:85:11:00:dc:3f:1c:98:a3:65:fb:f3:3f:5e:5c:57:fa:e2:
8c:a1:4f:9a:49:44:d6:f0:08:20:a4:8b:9b:af:09:63:c8:34:
74:ba:44:a3:64:6b:80:51:80:d6:0d:08:62:79:8e:9a:d0:0f:
10:72:ea:e6:7b:8c:87:88:a4:29:4c:de:97:5b:53:c9:21:48:
31:21:43:54:24:d7:76:27:bf:ec:27:dd:e7:00:30:3a:5c:f0:
4b:ec:d0:e2:f8:df:91:08:69:ab:2a:90:ca:01:39:16:62:23:
b9:ce:d0:d4:28:63:38:de:08:d8:2b:b7:39:d7:93:1d:96:2d:
52:90:f7:e9:85:eb:f4:16:22:aa:c3:0a:c5:45:30:27:db:0f:
61:5a:ba:0b:11:89:ec:ba:9b:2d:fb:b4:df:17:fe:c7:82:d6:
78:ea:0a:06:79:dc:06:70:17:5b:dd:df:2d:ab:ff:f2:f9:ca:
04:f1:f5:77:35:bb:75:2f:5e:c3:42:53:4e:94:93:6f:da:5b:
5e:91:8a:46:fa:21:10:4f:d8:5a:ca:a5:9c:37:c6:b4:e1:cd:
b6:6f:20:7c:fa:cc:3b:d3:22:0e:22:39:b2:da:4d:d1:bb:e9:
bf:00:cc:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org