Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/5EMYJuNPsdt7lSfcX1BwQEFzwtI.roa
File: 5EMYJuNPsdt7lSfcX1BwQEFzwtI.roa (raw, json)
Hash identifier: N6NFh0sNo9VPVmx4A6oMqbRncmKmBVBTLKlvpx8ins0=
Subject key identifier: E4:43:18:26:E3:4F:B1:DB:7B:95:27:DC:5F:50:70:40:41:73:C2:D2
Certificate issuer: /CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Certificate serial: 0185708CA571B37A23493347B875ED944956
Authority key identifier: B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/5EMYJuNPsdt7lSfcX1BwQEFzwtI.roa
Signing time: Mon 02 Jan 2023 03:35:43 +0000
ROA not before: Mon 02 Jan 2023 03:35:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.144.16.0/22 maxlen: 24
2a04:2f81::/42 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:a5:71:b3:7a:23:49:33:47:b8:75:ed:94:49:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Validity
Not Before: Jan 2 03:35:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4431826e34fb1db7b9527dc5f5070404173c2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4d:39:ea:ba:e0:dc:5b:ca:95:f4:1d:88:9b:
43:82:38:c7:c3:ce:41:f2:87:02:aa:ad:12:c7:95:
1f:1e:ee:38:46:f8:07:2b:61:ac:da:ad:aa:d3:18:
6e:8e:02:5e:77:0e:e9:fb:3f:5a:74:0f:2b:5d:2a:
bd:ac:c2:ab:bd:9f:e1:9a:90:89:a6:55:3a:00:c7:
65:85:21:88:c4:8c:e2:85:ef:2a:0f:fa:46:4c:8e:
d6:d2:1e:c2:0e:0a:99:15:a8:38:b9:06:e2:94:09:
07:21:0c:97:56:cd:ba:f9:f8:a1:a6:e8:92:a0:d8:
ea:f1:32:18:31:3c:95:44:6b:e3:2e:8e:74:a8:30:
6f:d3:5d:49:e3:7a:84:19:ae:52:c4:f4:08:2d:32:
67:3d:ac:ae:e2:f4:30:d9:ac:46:79:32:24:ef:c7:
33:ba:32:00:08:9b:53:76:16:d1:da:df:15:64:cc:
01:e1:76:4b:df:10:4a:59:1b:a5:14:ed:a7:c0:23:
07:8d:dc:df:12:ce:bd:64:94:ad:a7:eb:18:d5:5c:
f0:1b:b3:6e:7b:9d:8b:c6:33:3a:21:9b:ea:55:c3:
35:50:36:11:5f:59:d3:53:af:a9:17:e2:94:68:6b:
56:3a:17:06:d1:a1:3b:6d:fb:62:21:20:62:52:93:
2c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:43:18:26:E3:4F:B1:DB:7B:95:27:DC:5F:50:70:40:41:73:C2:D2
X509v3 Authority Key Identifier:
keyid:B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/5EMYJuNPsdt7lSfcX1BwQEFzwtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/sf_ufb9_RWbqnjBUaywqLnM28vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.16.0/22
IPv6:
2a04:2f81::/42
Signature Algorithm: sha256WithRSAEncryption
4b:74:04:ff:6f:9e:0c:5e:af:82:52:c1:aa:17:13:7d:b5:c2:
08:ab:66:a6:d3:ee:00:e5:f2:b1:9a:27:9d:51:33:cc:e3:ef:
72:f1:67:00:43:36:ff:ff:c3:bc:c6:59:9a:96:06:96:6c:d5:
a6:72:43:67:24:c3:e6:38:f7:17:d5:77:03:bd:d5:de:d1:7c:
07:61:d0:bb:03:26:c2:f4:bd:b3:86:13:48:86:c6:73:c5:1b:
a8:eb:f7:f8:ee:1c:72:d1:a4:8f:98:9c:6b:80:50:9e:62:1e:
77:33:76:47:ce:e4:3c:fb:16:10:94:64:91:d8:e0:90:f5:75:
fe:95:72:8c:66:b1:5b:3a:12:03:3d:c9:43:6b:a5:de:c0:de:
b0:a9:dd:6d:1c:9d:f8:d6:71:1a:14:c8:3f:51:96:a7:95:8b:
9a:5a:0b:09:a7:be:78:9f:c6:ac:fb:02:70:ef:42:a4:91:7f:
6f:91:18:6f:d1:6f:00:78:09:9b:32:2a:db:d0:a4:f8:23:1e:
22:21:85:5f:fb:55:90:3b:a7:a7:ff:8b:bd:d2:5e:c8:bb:9f:
87:9a:35:c5:8f:ee:9c:7b:a9:fe:eb:9e:56:13:38:28:cb:4c:
51:40:e4:db:06:7c:7f:17:42:38:b6:3c:37:bf:e0:87:18:70:
6f:82:8b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:26 2024 by rpki-client on console-fra.rpki-client.org