Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/p4ZsgcvLu7spoDWcdPvYq-pLHSo.roa
File: p4ZsgcvLu7spoDWcdPvYq-pLHSo.roa (raw, json)
Hash identifier: stl7gHRX5NM7vxHicv5rl7gvJ96zh9khsAGXddKFDlc=
Subject key identifier: A7:86:6C:81:CB:CB:BB:BB:29:A0:35:9C:74:FB:D8:AB:EA:4B:1D:2A
Certificate issuer: /CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Certificate serial: 01856B93726BCF4185302B5C0570DFFEABA7
Authority key identifier: 1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/p4ZsgcvLu7spoDWcdPvYq-pLHSo.roa
Signing time: Sun 01 Jan 2023 04:25:03 +0000
ROA not before: Sun 01 Jan 2023 04:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212492
IP address blocks: 185.61.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:72:6b:cf:41:85:30:2b:5c:05:70:df:fe:ab:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Validity
Not Before: Jan 1 04:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7866c81cbcbbbbb29a0359c74fbd8abea4b1d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:bf:43:2f:69:c9:72:f3:12:d7:af:f8:07:
9c:0c:32:8d:3a:69:b2:a9:a3:96:d0:20:e6:4f:fb:
00:a4:1d:9c:5b:4f:46:7a:79:5c:70:3d:06:1f:18:
46:3f:ab:8b:56:dc:36:46:6d:70:82:e6:2f:78:9a:
65:d3:e4:93:ee:49:13:dc:1a:05:ef:a0:23:ae:0f:
2a:f4:7b:a5:8f:9d:b0:19:80:8f:2f:26:29:94:fd:
3a:6e:2c:c9:23:20:ab:14:66:9a:7c:c1:27:c9:eb:
e5:d4:1a:e3:37:57:c1:8b:82:ac:c0:29:5b:c7:f1:
cf:bc:27:c0:3f:1f:97:30:03:fe:42:d2:9c:bb:62:
67:c6:e3:d6:be:92:d5:47:02:9b:b8:48:9b:1f:fe:
87:bf:06:4e:0e:04:64:14:bc:1f:9d:94:a2:ac:f6:
81:1d:64:22:c6:a6:3f:a8:d8:60:1d:61:c9:cb:0f:
32:63:c7:a7:1a:a4:89:71:36:f2:77:43:31:ae:a2:
6d:82:38:a2:cc:48:9b:02:7e:a5:ff:8d:dc:a8:26:
cd:4b:c7:c6:5f:85:c7:ff:1d:b6:02:86:4f:74:2d:
95:77:97:b8:b6:e9:a4:53:36:b6:a1:c5:3f:27:52:
bd:33:71:2d:19:de:a1:e8:fa:1d:63:3f:51:e1:ee:
63:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:86:6C:81:CB:CB:BB:BB:29:A0:35:9C:74:FB:D8:AB:EA:4B:1D:2A
X509v3 Authority Key Identifier:
keyid:1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/p4ZsgcvLu7spoDWcdPvYq-pLHSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.58.0/24
Signature Algorithm: sha256WithRSAEncryption
14:82:1d:f2:d9:03:1e:99:b5:37:73:4a:d8:52:1d:d0:00:aa:
ab:7c:4c:12:2d:a0:74:5e:a7:5d:c5:6a:35:d6:29:d9:25:6f:
9f:5e:ea:ce:df:45:3e:a4:c7:6b:b7:41:62:1c:34:e0:a5:03:
92:e4:83:f5:b8:78:0d:da:14:1c:20:91:6d:a1:f5:5e:7c:95:
8d:9c:43:3a:96:11:1f:b2:90:7f:8c:9f:be:94:e6:8e:12:36:
94:6c:a4:d8:4b:8a:bf:75:77:ae:ad:ae:d8:31:5f:37:83:d9:
ee:41:21:fa:0b:84:79:0b:c7:c2:9b:12:b8:39:a5:9b:1e:15:
86:33:f9:d4:98:cf:bb:ba:67:28:3a:6c:27:80:b8:40:2b:b5:
c7:d3:ac:1b:3c:13:0a:af:c5:dd:17:44:23:6a:3c:dd:5e:6d:
61:56:de:64:86:4e:ea:c3:85:3c:60:97:56:9b:88:9a:ab:ae:
dc:67:17:13:19:77:c2:66:3a:e7:4c:3b:00:81:66:7f:66:e6:
db:a6:11:da:6c:2d:e2:65:e8:9c:32:7d:4f:f1:a4:76:89:fb:
35:75:25:f6:b9:1f:cf:83:3a:f2:c8:e5:59:1a:fe:9e:17:ed:
84:f3:9f:96:23:ec:86:19:0a:43:41:80:ac:73:39:35:a8:5f:
c4:ec:47:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org