Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/00vEQ2-yeFiaKHkGzEftuLaEeFc.roa
File: 00vEQ2-yeFiaKHkGzEftuLaEeFc.roa (raw, json)
Hash identifier: O+m51OUxvvT2SzraC29xVO5eqc0fyt7iF3dqo35pero=
Subject key identifier: D3:4B:C4:43:6F:B2:78:58:9A:28:79:06:CC:47:ED:B8:B6:84:78:57
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018A89D93FB2CBBDEC98D17515084D1A74E9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/00vEQ2-yeFiaKHkGzEftuLaEeFc.roa
Signing time: Tue 12 Sep 2023 14:43:50 +0000
ROA not before: Tue 12 Sep 2023 14:43:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 212.115.42.0/23 maxlen: 24
212.115.40.0/24 maxlen: 24
185.226.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Oct 2023 12:23:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:d9:3f:b2:cb:bd:ec:98:d1:75:15:08:4d:1a:74:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 12 14:43:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d34bc4436fb278589a287906cc47edb8b6847857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:eb:4c:7e:79:78:41:6b:64:bd:aa:90:0b:86:
5c:f5:b6:ee:41:55:8e:00:5c:5f:53:b8:c2:a0:6e:
23:04:d1:54:7a:ac:4c:fd:93:d0:cd:04:c4:2c:e3:
fb:96:46:8d:23:76:7a:23:24:4c:00:f4:08:ef:69:
fd:6f:1e:40:30:8a:57:6b:13:c0:c3:99:78:ea:2b:
d4:32:01:dd:57:79:9a:1c:b7:52:d7:43:51:6c:32:
20:6e:2d:e2:ab:6c:a8:82:e5:0a:07:4f:08:07:f5:
93:03:22:c4:28:21:b8:bf:aa:8f:29:99:e7:88:31:
e8:84:3b:28:5e:cc:0d:fb:b5:3a:3c:65:e5:57:8c:
b9:ba:2b:46:5e:b8:57:32:cf:9e:5b:db:f5:e6:72:
7f:6b:b6:a3:2a:40:54:79:a7:4c:17:57:ef:2a:7f:
15:3f:ef:34:f8:04:2f:3c:95:3d:1e:57:80:b5:dd:
39:4a:8c:e6:aa:79:fe:9d:53:3c:60:be:71:69:94:
48:81:c1:0e:f1:fe:78:7d:46:89:c6:68:25:7b:d3:
e2:25:97:ce:75:2c:d1:e2:9c:ec:bd:b9:49:e6:4b:
5e:3c:be:31:56:a5:80:4f:f3:ad:f1:8d:f8:68:d5:
9f:3b:82:df:b4:97:09:fc:c5:05:70:70:97:00:db:
a6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4B:C4:43:6F:B2:78:58:9A:28:79:06:CC:47:ED:B8:B6:84:78:57
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/00vEQ2-yeFiaKHkGzEftuLaEeFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.172.0/22
212.115.40.0/24
212.115.42.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:c9:00:48:51:be:ae:86:cd:89:4b:b0:fb:2e:dc:cc:c9:fa:
15:c8:cb:ec:33:69:cd:ed:49:d4:8c:89:5a:22:fa:92:f6:50:
72:fc:5f:44:3e:5f:9d:ac:64:1e:49:10:33:7e:49:19:ea:d7:
cf:6b:ae:2d:4b:f2:67:74:c0:8f:db:52:0f:c1:62:ae:5b:14:
b2:ae:12:1f:d1:d6:c5:a3:58:d0:6c:4b:d2:52:d5:2b:6e:fe:
0a:86:4d:58:12:64:01:47:50:ae:4e:a6:e4:56:98:1b:92:47:
30:cc:73:e2:7e:37:eb:0b:1d:e3:a9:bd:3b:d2:0b:d6:cb:a3:
ea:bb:9f:97:a5:d8:94:cf:f8:a0:6e:72:ab:2b:07:62:f0:71:
5d:a0:61:ef:80:7d:18:69:a8:28:a6:91:23:28:f9:d9:bc:22:
83:1e:1f:57:d5:b1:27:bb:2c:8c:57:53:ce:a9:5b:93:0b:7f:
76:7b:b1:2e:7f:0c:cd:22:a6:37:ee:a7:f1:df:dd:46:f0:88:
5b:9f:32:6d:8a:b3:74:31:c9:3e:aa:e0:de:9d:b6:c4:64:4e:
f0:b8:9c:dc:bc:57:18:8a:77:79:41:d8:4a:5a:ba:ab:57:ce:
08:98:89:10:d7:53:79:3c:a3:a9:97:33:c7:50:69:55:89:02:
84:71:b6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:21 2024 by rpki-client on console-ams.rpki-client.org