Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/p_-svyKSoKkcdtHbC0gap21sE2Q.roa
File: p_-svyKSoKkcdtHbC0gap21sE2Q.roa (raw, json)
Hash identifier: 4JP8grRzgKpmJo8MGHr5k0T+RxTBmT13R9FAeTxfFF0=
Subject key identifier: A7:FF:AC:BF:22:92:A0:A9:1C:76:D1:DB:0B:48:1A:A7:6D:6C:13:64
Certificate issuer: /CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Certificate serial: 0185711E342A14F7BFE0F3D4CF265BE3BED4
Authority key identifier: 64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/p_-svyKSoKkcdtHbC0gap21sE2Q.roa
Signing time: Mon 02 Jan 2023 06:14:42 +0000
ROA not before: Mon 02 Jan 2023 06:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201720
IP address blocks: 185.56.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:34:2a:14:f7:bf:e0:f3:d4:cf:26:5b:e3:be:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Validity
Not Before: Jan 2 06:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7ffacbf2292a0a91c76d1db0b481aa76d6c1364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:48:9d:47:2b:60:57:70:24:05:ac:93:3a:e7:
19:f7:8f:ec:d1:d0:00:83:0a:b5:22:64:96:e2:c4:
0e:12:6a:cc:bd:22:93:63:4a:dd:ac:cb:d0:e6:01:
0d:fc:fe:4a:d0:13:08:14:f0:5e:2d:9c:c1:58:4a:
db:3f:33:a4:24:11:f1:55:34:90:25:d3:45:cf:73:
ec:cc:26:ad:a0:ff:35:d7:04:01:1f:ef:43:bf:63:
ee:54:de:00:f8:c5:10:5d:f6:67:65:59:fd:e2:b2:
16:46:f8:43:a3:b3:36:5a:4f:a7:f0:2e:4a:8d:d1:
9e:8f:e6:9e:5c:fc:54:72:f5:bd:2f:fe:b2:57:c7:
3d:40:bf:17:19:6c:73:5c:a4:23:5d:fa:39:42:74:
ed:82:46:3c:a6:16:c4:13:19:9d:61:5f:34:46:32:
1b:bd:d9:35:93:0e:da:51:7b:33:d2:5d:2f:06:2a:
e0:f6:88:81:16:f8:60:66:8d:a2:4e:26:40:9e:9f:
50:34:1d:53:d0:b1:34:fc:6a:7e:be:09:cc:4b:89:
e7:b3:05:96:bd:fa:eb:c9:c2:8f:4c:6c:62:60:7d:
44:2d:63:47:84:72:5d:a7:fd:cf:c4:ff:22:ff:7b:
3a:7f:e2:69:8c:39:4f:59:cb:af:46:03:3b:e1:c2:
46:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FF:AC:BF:22:92:A0:A9:1C:76:D1:DB:0B:48:1A:A7:6D:6C:13:64
X509v3 Authority Key Identifier:
keyid:64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/p_-svyKSoKkcdtHbC0gap21sE2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.164.0/22
Signature Algorithm: sha256WithRSAEncryption
48:e1:c2:06:e7:f2:e2:7c:53:aa:05:45:ba:70:59:c9:d4:a5:
01:e4:74:df:88:f5:7e:24:d0:b2:5a:b9:72:6e:42:6d:00:30:
96:aa:64:0d:14:87:78:52:a5:a8:29:8d:69:32:f3:86:5a:c3:
5d:72:07:6e:2e:68:29:2d:25:7f:df:b7:39:ed:13:16:16:d9:
72:f1:92:81:79:81:f4:6e:dc:13:17:24:3b:44:13:4f:cd:ca:
51:44:e3:7d:5c:c9:0a:96:18:d0:e7:b4:5d:57:01:90:c2:ff:
46:a8:b8:4b:c6:16:23:e5:88:56:89:09:cb:96:c3:cd:80:0f:
2e:59:e3:a0:6d:dc:a3:48:ec:c4:8a:c9:bd:36:72:d8:2f:bb:
4d:cd:17:f9:57:4b:47:67:81:dd:3b:02:be:3f:09:3d:51:1e:
67:bb:3b:f2:b9:29:e6:c8:2e:a0:bc:52:80:e2:8f:8c:57:ca:
bc:49:49:21:36:13:f5:43:23:18:5d:8b:98:5d:5b:e7:00:f6:
c5:60:75:00:9e:3b:6d:dc:16:d7:41:09:dd:e4:b5:bb:ed:5c:
ad:ce:41:be:05:8a:64:5b:37:c6:a3:b8:0d:71:81:5a:cc:8e:
7b:7b:d3:ec:e9:f7:e6:9b:92:8f:4d:a4:27:03:b2:ac:99:46:
27:d2:90:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:00 2024 by rpki-client on console-fra.rpki-client.org