Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/6tC2PqxMHiu1K_Rye_ujgE1Pqxs.roa
File: 6tC2PqxMHiu1K_Rye_ujgE1Pqxs.roa (raw, json)
Hash identifier: 6YVHag3ZMmd/vJ8kmLZmsMKFQSwyvja1ahPURyC80EY=
Subject key identifier: EA:D0:B6:3E:AC:4C:1E:2B:B5:2B:F4:72:7B:FB:A3:80:4D:4F:AB:1B
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CD25F7EB67004AB4FB2E673DEA738
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/6tC2PqxMHiu1K_Rye_ujgE1Pqxs.roa
Signing time: Mon 02 Jan 2023 03:35:55 +0000
ROA not before: Mon 02 Jan 2023 03:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8382
IP address blocks: 213.228.120.0/21 maxlen: 21
195.46.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d2:5f:7e:b6:70:04:ab:4f:b2:e6:73:de:a7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead0b63eac4c1e2bb52bf4727bfba3804d4fab1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:48:02:71:cf:d8:a0:4d:38:c5:76:6f:0b:8f:
9a:6f:d1:2f:61:d9:9b:2e:5e:d9:27:bc:e6:12:9f:
84:37:29:47:82:59:98:b9:8a:b3:87:7f:49:12:fe:
d3:67:e8:2a:9b:51:f2:7f:d2:58:96:72:3f:40:39:
d6:39:40:ec:71:c7:1b:f8:f1:f9:bf:95:b8:51:d4:
77:df:14:ee:e1:fc:e3:30:ce:93:68:c6:72:5e:b9:
8b:13:c7:da:30:49:30:58:1d:df:e6:60:bf:d7:86:
21:ed:a3:7e:07:a4:e9:6e:c0:49:39:27:c0:58:17:
81:08:7d:8b:67:30:0c:8b:b7:b5:da:99:af:bd:a5:
9b:ac:91:7a:92:f0:9f:26:fa:84:32:a4:d2:fd:0b:
c9:7b:d3:83:e5:28:6b:0c:e2:f7:55:d6:52:72:7d:
4b:2e:e1:32:fc:58:b7:28:85:bd:27:11:e9:81:45:
13:03:69:17:23:9c:ba:d5:7d:35:a3:ec:8d:8b:e5:
e0:ff:c4:fd:a3:f1:1a:0e:53:6e:57:b9:61:28:0b:
9c:28:a7:8d:ea:79:e4:ff:f8:51:ee:1e:e2:e6:f1:
b7:30:84:e4:f6:6d:5d:17:9a:63:59:18:bf:98:36:
c0:17:64:39:c0:2f:e1:81:fc:0b:ea:eb:21:89:f2:
9d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D0:B6:3E:AC:4C:1E:2B:B5:2B:F4:72:7B:FB:A3:80:4D:4F:AB:1B
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/6tC2PqxMHiu1K_Rye_ujgE1Pqxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.46.126.0/24
213.228.120.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:a9:2f:70:75:4a:c5:d6:69:1c:ea:ed:df:67:0f:84:4d:5f:
b3:ef:53:9a:79:27:c6:81:59:73:2f:1e:ca:7b:42:2d:23:7e:
5f:cf:7a:a8:dc:70:ca:80:1d:e5:39:86:d5:61:7a:e3:2f:42:
a5:40:c3:06:21:43:78:cf:5c:5c:a7:fe:62:33:18:2b:9a:9d:
00:64:ae:06:43:79:16:07:37:79:3d:36:c7:81:d7:d6:fb:52:
ee:40:7b:5a:99:ab:92:83:a5:70:ac:6b:cd:fb:8a:ea:6f:16:
04:93:cb:2f:e2:01:7d:8b:20:66:b1:1f:ea:58:3f:33:e3:78:
bd:c7:70:89:2e:ae:d4:38:6c:00:19:49:4b:ac:73:fe:d3:a5:
01:8e:e5:00:9e:da:07:f3:86:6e:14:2f:6e:af:ec:e3:c0:da:
f6:a1:a5:18:13:99:5a:24:7c:93:bd:c1:cd:af:73:10:52:37:
70:f4:32:7b:c5:d7:44:76:39:23:bc:b2:b4:66:79:a4:65:ca:
e3:be:0f:db:d9:5b:2d:e0:82:fa:a6:95:d2:d5:93:55:22:ca:
e2:a1:a5:7a:06:b7:54:a5:bd:71:b2:2c:8f:17:2a:af:b2:a5:
6d:87:f6:70:6d:d5:f3:f0:74:12:60:5d:9c:f8:9f:9d:34:8e:
51:86:8e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org