Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/RPiui78xgRrvXfB1lRsnEJDSbuo.roa
File: RPiui78xgRrvXfB1lRsnEJDSbuo.roa (raw, json)
Hash identifier: gi95a5v6yfbge9/TlxbpmljwSH1obTQ6H6NI8oGKsMk=
Subject key identifier: 44:F8:AE:8B:BF:31:81:1A:EF:5D:F0:75:95:1B:27:10:90:D2:6E:EA
Certificate issuer: /CN=3af9ea8bdc371b5a6604200c51717897d60c7d3d
Certificate serial: 0185711E67A2BDB6BA5808DBB6BA44306842
Authority key identifier: 3A:F9:EA:8B:DC:37:1B:5A:66:04:20:0C:51:71:78:97:D6:0C:7D:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/RPiui78xgRrvXfB1lRsnEJDSbuo.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49451
IP address blocks: 185.1.177.0/24 maxlen: 24
2001:7f8:fa::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:67:a2:bd:b6:ba:58:08:db:b6:ba:44:30:68:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af9ea8bdc371b5a6604200c51717897d60c7d3d
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44f8ae8bbf31811aef5df075951b271090d26eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1d:5d:3a:74:6d:e4:d5:24:37:29:31:6a:af:
cb:82:31:b8:0d:39:43:6b:b6:61:73:af:7a:a2:68:
ca:d1:9c:d7:7f:a5:04:90:1e:a6:23:0b:93:08:a3:
d1:6b:e1:ab:94:33:e3:40:bb:ef:14:b4:2d:34:b9:
9e:fa:7b:3c:c7:d5:78:42:64:ef:f2:61:15:d0:60:
8b:45:f0:74:0d:69:7d:41:4f:33:ae:24:61:64:31:
1e:c5:49:2d:8f:89:b2:59:37:4f:5a:c7:db:3d:72:
ab:f9:8e:7e:46:b7:06:7c:ec:75:c0:48:a6:d7:54:
03:4e:16:e2:fa:1d:5c:c2:a1:fa:f3:1a:60:00:1a:
44:18:4d:7e:ba:89:2c:f8:11:e3:67:7c:57:bf:ff:
4f:fc:d8:18:2f:51:5c:d3:ee:7c:11:11:6e:89:92:
76:d6:1e:70:ee:6c:cc:51:de:3e:52:83:ab:32:4d:
11:f2:7b:07:97:b9:02:8a:63:69:13:52:c7:f1:13:
03:55:81:d7:ad:46:4f:fd:e4:f3:4a:a6:9a:ce:9a:
c3:03:4f:b3:af:3a:0b:18:e6:bf:f1:74:d0:a6:43:
a6:74:5a:88:88:14:f3:9d:c5:89:d2:ae:91:fd:56:
78:fd:d1:77:49:d1:33:59:d2:9f:0d:7b:f4:2a:db:
e5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F8:AE:8B:BF:31:81:1A:EF:5D:F0:75:95:1B:27:10:90:D2:6E:EA
X509v3 Authority Key Identifier:
keyid:3A:F9:EA:8B:DC:37:1B:5A:66:04:20:0C:51:71:78:97:D6:0C:7D:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/RPiui78xgRrvXfB1lRsnEJDSbuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.177.0/24
IPv6:
2001:7f8:fa::/48
Signature Algorithm: sha256WithRSAEncryption
77:93:3e:f4:07:55:14:42:2c:99:4c:09:7b:60:dd:1d:e9:93:
f3:de:08:46:07:33:d4:0f:6f:cf:11:56:7e:0a:47:f2:34:3b:
6e:b3:6a:d9:17:b0:78:45:05:94:82:02:12:03:54:19:46:96:
83:91:27:a9:cc:01:2d:43:bb:bb:40:94:1b:13:d5:e7:f6:8c:
0a:cd:47:aa:df:ef:a5:79:46:85:81:5f:02:93:10:30:91:ac:
b0:fd:06:3e:2f:64:3a:81:45:fa:78:95:55:3b:67:a2:70:80:
60:90:d1:0c:20:61:cf:12:e9:68:25:4c:cf:13:4f:c3:07:de:
0d:66:9b:c7:79:a1:3d:61:f0:9a:1d:08:61:88:9e:74:19:9e:
08:34:e2:44:25:2d:b1:da:57:19:14:d0:ba:7f:41:9f:a3:a1:
a9:33:6a:f4:7f:2b:6f:13:99:75:a5:4c:da:2f:f2:a7:9f:30:
7f:3e:2c:0b:af:5e:8a:5d:85:e8:3e:fc:4f:79:5d:3b:9e:55:
0f:72:14:e9:27:97:57:73:5b:b2:9e:0b:2c:0c:3f:5b:e2:e5:
ba:02:56:1e:70:65:19:bc:2d:15:23:0b:87:45:5f:0b:a4:5d:
f2:44:fa:40:5c:7e:9a:4b:2f:70:a6:c9:ac:75:a6:25:6a:ec:
21:0a:56:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org