Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/c7O_TzRu1jSh-60mGkt-sgSr_kI.roa
File: c7O_TzRu1jSh-60mGkt-sgSr_kI.roa (raw, json)
Hash identifier: UDtKLhh+R1nnkowLoxw1gEdaxR7xkwAt5ImcDHIBRUY=
Subject key identifier: 73:B3:BF:4F:34:6E:D6:34:A1:FB:AD:26:1A:4B:7E:B2:04:AB:FE:42
Certificate issuer: /CN=2a1e65f8083c859bcd0d2c52a1e061eb5131f5f1
Certificate serial: 018840330250F601530C7717A79C9B25E854
Authority key identifier: 2A:1E:65:F8:08:3C:85:9B:CD:0D:2C:52:A1:E0:61:EB:51:31:F5:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/c7O_TzRu1jSh-60mGkt-sgSr_kI.roa
Signing time: Sun 21 May 2023 21:24:24 +0000
ROA not before: Sun 21 May 2023 21:24:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207934
IP address blocks: 185.156.96.0/22 maxlen: 32
2a03:300::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:40:33:02:50:f6:01:53:0c:77:17:a7:9c:9b:25:e8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a1e65f8083c859bcd0d2c52a1e061eb5131f5f1
Validity
Not Before: May 21 21:24:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73b3bf4f346ed634a1fbad261a4b7eb204abfe42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a6:16:b2:1a:0d:80:b4:53:20:11:71:bb:52:
01:fb:51:f5:46:f2:68:2d:97:90:01:77:e2:18:5e:
a5:3a:aa:8a:05:99:06:5f:32:63:f6:35:23:d7:1e:
b6:9e:b4:f8:42:a3:b8:9c:c3:a2:fd:07:46:10:fe:
b1:39:18:dd:8f:b1:a7:3e:c0:d5:15:72:66:64:1e:
c3:71:eb:25:79:cd:c5:7c:da:ca:74:ef:89:bf:88:
30:15:47:bb:1b:d5:37:70:a7:aa:3e:24:24:ac:4f:
91:51:5e:5d:cc:c1:84:c5:05:4d:63:92:73:82:4b:
05:da:d1:4d:8b:37:dd:ad:f0:98:a2:29:25:ed:5c:
d6:70:ad:84:4c:37:15:bb:40:2b:7a:b9:91:bd:1d:
13:05:b1:b2:a6:3a:1a:49:85:a6:1f:01:07:12:67:
18:5d:08:04:98:85:91:1f:30:80:f0:ea:aa:73:2c:
42:d4:eb:82:6a:91:39:ee:c7:e5:f2:ab:ba:d5:c2:
6a:e1:30:09:e1:0e:ae:43:5b:94:3b:07:a0:12:ff:
ec:be:9b:af:86:6c:41:f0:f1:ca:51:46:9e:af:df:
cf:3d:a6:36:e8:9d:4d:0a:f8:5b:16:ae:2a:1d:72:
a2:4f:60:ff:8d:a2:38:af:1e:00:54:5f:a4:87:b3:
a1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B3:BF:4F:34:6E:D6:34:A1:FB:AD:26:1A:4B:7E:B2:04:AB:FE:42
X509v3 Authority Key Identifier:
keyid:2A:1E:65:F8:08:3C:85:9B:CD:0D:2C:52:A1:E0:61:EB:51:31:F5:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/c7O_TzRu1jSh-60mGkt-sgSr_kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.96.0/22
IPv6:
2a03:300::/29
Signature Algorithm: sha256WithRSAEncryption
9c:d3:97:37:19:b5:51:ee:65:6c:e5:4d:c6:70:ca:db:2a:69:
d3:08:96:c2:c0:c0:e1:cf:c9:10:44:ab:ce:1c:da:f1:45:b6:
d8:06:e5:10:c8:84:10:a5:39:6b:1d:d8:13:3a:b6:10:1c:ef:
16:8d:40:b6:77:b0:91:25:73:25:18:71:90:ca:54:57:01:64:
cc:94:d4:9e:c0:0b:94:10:79:2b:06:b0:2c:2a:bc:40:5d:9a:
b7:d3:c5:85:5e:5e:d3:93:13:c6:33:7c:65:b9:6a:d4:b0:67:
6c:38:60:9d:6d:9d:fa:e7:ee:b7:37:f3:96:44:78:e3:ae:6f:
be:57:30:ab:ae:d6:e2:16:16:58:fb:83:13:e3:7d:db:47:33:
27:5a:3c:c6:3e:66:70:26:13:68:97:07:f1:9b:bf:03:17:e1:
3f:75:2b:4e:0a:5d:77:84:5c:73:c9:23:5b:3f:c3:99:a3:67:
4e:d6:8f:bb:00:b7:9d:ba:00:8d:c9:9c:eb:52:8e:6e:c3:0a:
25:ac:08:3d:bd:4e:f7:92:ef:13:53:b9:30:42:b2:f9:b8:cf:
cb:77:b9:5b:32:2a:60:b8:88:e3:3f:ee:ba:10:f6:55:89:4f:
d7:0d:ca:ec:f1:c2:ab:40:8d:69:e0:88:1c:25:bd:f5:fe:a8:
e6:32:58:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:39 2024 by rpki-client on console-ams.rpki-client.org