Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/xoSk1bEpgLe-3kVjLLid-PWaNvk.roa
File: xoSk1bEpgLe-3kVjLLid-PWaNvk.roa (raw, json)
Hash identifier: T9nZS1QFLkSWHpQl12vS055BKNQRcnemOHsp7LK65Sk=
Subject key identifier: C6:84:A4:D5:B1:29:80:B7:BE:DE:45:63:2C:B8:9D:F8:F5:9A:36:F9
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 0187321A423385206D6DD7433D2662252EFB
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/xoSk1bEpgLe-3kVjLLid-PWaNvk.roa
Signing time: Thu 30 Mar 2023 10:39:54 +0000
ROA not before: Thu 30 Mar 2023 10:39:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202227
IP address blocks: 185.232.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 10:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:1a:42:33:85:20:6d:6d:d7:43:3d:26:62:25:2e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Mar 30 10:39:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c684a4d5b12980b7bede45632cb89df8f59a36f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:f1:1f:84:c1:fd:88:8a:19:0a:da:23:c5:
64:13:ff:21:93:4a:fe:c1:45:ae:dd:c5:51:76:9b:
86:17:58:77:62:a5:f4:cd:73:ca:b0:3a:52:67:a0:
f8:45:b3:b9:2d:16:1d:df:b4:ea:30:6d:68:f9:a9:
b8:63:46:8f:ec:a5:d2:b9:46:32:9f:fc:6f:82:32:
6e:36:17:72:87:c5:38:ad:43:d7:7b:2e:85:72:de:
54:f9:14:3f:99:bb:f3:54:48:c3:f2:91:e1:1d:9a:
25:50:69:24:7d:9a:9c:89:e9:e1:72:94:0e:29:b7:
4a:c4:0e:1b:d5:23:c0:49:bd:16:c5:58:a0:a1:6e:
b1:99:7f:66:d1:12:a9:28:7b:6b:19:4c:4d:d1:3f:
53:b8:cc:35:92:a3:c6:6d:d0:5a:56:93:57:5b:a7:
6a:76:6d:17:6c:7a:fc:b4:94:52:bb:c0:c1:a0:99:
69:38:42:38:69:f4:17:49:dc:01:2d:a2:bb:bb:c7:
a3:6c:08:7f:f5:78:5e:9e:77:c7:e4:9c:b4:48:66:
36:ca:f9:f0:1a:1b:22:70:45:87:1d:ba:59:58:a7:
96:f8:99:7c:f7:34:a2:53:5d:d8:c5:95:96:f2:d5:
47:1b:81:cd:a1:3b:29:7d:3b:a9:a6:c7:2a:e8:45:
08:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:84:A4:D5:B1:29:80:B7:BE:DE:45:63:2C:B8:9D:F8:F5:9A:36:F9
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/xoSk1bEpgLe-3kVjLLid-PWaNvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.135.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ee:86:f4:7c:c9:a5:82:b4:bf:fa:ba:49:d3:5b:a6:35:cb:
3e:f4:25:f3:7b:f0:04:47:b5:8f:5c:6e:9a:8c:e9:8c:d9:74:
85:b8:eb:de:2e:90:d2:15:2f:0c:4a:4b:00:fb:c4:7f:fd:fe:
77:4a:7c:1c:46:ca:2c:7a:29:fe:87:7c:59:71:47:2d:ae:dd:
33:bd:38:7d:af:ec:03:66:54:c5:ed:c1:f2:2f:90:5e:f7:19:
d9:be:9d:4a:f3:2a:65:33:c4:9f:f7:7f:11:c9:28:75:43:0e:
f3:52:26:8b:91:ea:97:2b:e8:27:50:e1:c7:ef:43:cc:91:cc:
d0:d8:57:aa:00:43:6b:fd:b5:ff:37:b0:b7:9b:49:9e:8e:69:
2b:65:a6:a3:d6:f1:49:a7:6b:eb:f7:74:68:49:31:7d:aa:99:
f7:b6:b6:4d:a4:a7:2d:68:7c:56:50:fb:d2:6b:73:71:dd:35:
c4:f2:3f:38:c0:ff:d0:75:34:cd:f2:bf:48:b0:0a:28:39:0f:
3e:a1:28:77:fa:fc:55:cf:77:74:6f:4d:2b:70:0a:f3:db:aa:
3d:94:0d:a5:1f:81:78:e7:d3:1b:24:21:d3:e5:71:ed:dd:3d:
50:c0:6f:4f:20:e3:06:d0:12:d4:9f:31:a9:07:3b:e6:57:2c:
42:7c:88:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:06 2024 by rpki-client on console-ams.rpki-client.org