Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/sX3daEBUCaGHij3-YaMSY1vQPhw.roa
File: sX3daEBUCaGHij3-YaMSY1vQPhw.roa (raw, json)
Hash identifier: 4jdgieQcjx5uPlVAFm8qQB0pXNeTeCxBMB42rKK00jE=
Subject key identifier: B1:7D:DD:68:40:54:09:A1:87:8A:3D:FE:61:A3:12:63:5B:D0:3E:1C
Certificate issuer: /CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Certificate serial: 01856D7890CD5D9522BD505B07B63E2BB06A
Authority key identifier: 61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/sX3daEBUCaGHij3-YaMSY1vQPhw.roa
Signing time: Sun 01 Jan 2023 13:14:56 +0000
ROA not before: Sun 01 Jan 2023 13:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212253
IP address blocks: 185.222.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:90:cd:5d:95:22:bd:50:5b:07:b6:3e:2b:b0:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Validity
Not Before: Jan 1 13:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b17ddd68405409a1878a3dfe61a312635bd03e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:71:b3:44:6f:5a:75:71:a3:4b:e8:2e:1e:
5e:2b:2b:84:db:54:48:e6:98:b8:a2:bf:21:96:83:
ab:08:fe:4d:d9:02:0c:70:3c:a3:a5:da:98:e4:bd:
ec:86:ad:a3:d2:46:20:6d:14:21:a7:52:bb:ae:2c:
e5:06:68:be:47:45:66:ca:45:bf:ff:dd:bc:c0:b8:
ac:a2:ec:c6:ec:5d:ae:fa:01:d0:d5:45:a0:09:8c:
27:76:fd:a1:47:91:a3:51:22:b9:57:7d:2f:bc:15:
9e:32:7f:eb:a7:79:fc:35:48:b8:57:9c:4d:e2:f2:
90:98:9d:1c:13:19:76:88:8a:4b:62:6c:88:8a:69:
b5:89:85:39:04:b0:fe:16:17:61:ee:95:09:87:dc:
69:42:0b:5e:7e:4a:41:29:b3:fa:c0:89:8e:b9:c3:
c2:24:65:10:80:24:b1:36:95:96:74:30:d1:b8:de:
14:fd:24:b7:52:f0:52:63:4f:92:5a:58:ad:9a:f8:
ea:5e:19:ff:d6:b4:82:73:b8:2c:48:83:5f:fc:df:
48:3f:4b:99:10:00:3f:08:fe:c7:b9:82:d5:54:fb:
e9:bf:a9:45:70:7c:50:52:6c:52:32:13:b8:1f:59:
81:52:d6:23:d6:56:09:e3:f0:a3:48:3a:a4:8a:ba:
53:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7D:DD:68:40:54:09:A1:87:8A:3D:FE:61:A3:12:63:5B:D0:3E:1C
X509v3 Authority Key Identifier:
keyid:61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/sX3daEBUCaGHij3-YaMSY1vQPhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/YdOddLF-aR3RsFIhxgmMr17pOjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.22.0/24
Signature Algorithm: sha256WithRSAEncryption
51:5b:a8:4f:c9:34:76:61:c5:ce:9a:d8:4a:70:4a:f6:26:76:
9d:5c:4c:69:dd:fa:95:c6:a8:53:76:4b:21:5a:ad:9e:47:1f:
66:ba:c0:65:d1:9e:5c:1d:22:81:ef:a9:e7:a9:be:ef:fc:fb:
97:5c:95:a4:5f:1e:b2:9f:4c:74:d7:cb:60:38:66:67:88:22:
8f:0d:63:15:f6:0d:d6:2c:ab:a0:49:17:a5:14:26:26:6f:a4:
ac:9a:f8:12:b4:7b:2f:1e:d2:f5:bd:6c:63:10:73:78:cc:e7:
e1:67:00:d5:18:8f:ff:61:66:5f:ca:10:92:2c:79:69:89:23:
50:94:01:ef:e7:2e:68:87:d3:85:23:77:f7:4c:3a:e6:c3:fd:
64:b9:ee:d5:78:a0:0c:49:fc:4f:4b:43:a1:71:ad:6e:9d:fb:
06:2c:d6:a9:4f:10:93:f5:d2:dd:b0:cb:c8:b9:8f:9f:8f:79:
7f:37:3e:8c:57:ec:5b:a8:2e:39:8b:c1:4c:bc:16:46:55:fb:
c8:a1:cb:5a:b9:9c:94:77:f2:04:bd:02:50:a1:db:3f:f7:17:
d6:a0:8c:88:db:8c:f0:f0:38:b3:d8:74:57:c3:12:cd:a7:c2:
8d:21:c4:6a:a0:63:c7:22:d2:53:c4:45:77:61:2b:ae:1a:3a:
ac:48:fb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:34 2024 by rpki-client on console-fra.rpki-client.org