Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/cEK1T4rvPrv-y-RJGQQZYwDNty4.roa
File: cEK1T4rvPrv-y-RJGQQZYwDNty4.roa (raw, json)
Hash identifier: VCw/TnaQc8zL7ytkU75IvGC65N09dyRp8w2isRdyiFM=
Subject key identifier: 70:42:B5:4F:8A:EF:3E:BB:FE:CB:E4:49:19:04:19:63:00:CD:B7:2E
Certificate issuer: /CN=65c920a27e3e53a367f9ea96db7baf7bd65a83ea
Certificate serial: 0185727103A8423DBE7269C1834A99A6250C
Authority key identifier: 65:C9:20:A2:7E:3E:53:A3:67:F9:EA:96:DB:7B:AF:7B:D6:5A:83:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zckgon4-U6Nn-eqW23uve9Zag-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/cEK1T4rvPrv-y-RJGQQZYwDNty4.roa
Signing time: Mon 02 Jan 2023 12:24:47 +0000
ROA not before: Mon 02 Jan 2023 12:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41960
IP address blocks: 185.252.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:03:a8:42:3d:be:72:69:c1:83:4a:99:a6:25:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65c920a27e3e53a367f9ea96db7baf7bd65a83ea
Validity
Not Before: Jan 2 12:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7042b54f8aef3ebbfecbe4491904196300cdb72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:62:aa:d4:b8:8a:46:75:aa:ec:a7:14:32:e9:
35:d8:4b:b3:4d:75:53:7a:93:40:7d:85:19:b4:cf:
a9:ea:b8:27:f5:3f:fd:00:6a:1b:22:c7:75:e7:18:
37:2d:da:63:4f:b0:7b:d9:82:63:f5:62:22:61:6b:
37:ea:e6:99:80:24:db:d1:00:7a:bb:d2:72:f1:81:
8f:40:75:62:07:ff:c7:6d:4a:20:a2:62:f8:fc:d7:
e6:97:05:d8:2a:cb:2a:de:b1:ab:a1:2a:56:2b:06:
ad:8f:f7:42:fa:25:ec:39:63:b0:9c:cb:6f:33:4e:
e6:f5:bf:e4:74:ac:c1:21:73:ea:96:79:9e:e5:ab:
7c:79:0a:44:94:3b:58:e6:4a:74:ca:71:06:c5:f2:
7f:7f:ab:9c:98:76:ff:17:cc:73:11:5c:be:0e:9b:
f9:98:c4:63:af:b5:bc:05:b3:68:c4:2c:26:c3:92:
f8:85:65:e6:69:9a:f6:44:29:57:69:23:ff:9c:84:
b7:3c:e1:58:87:14:47:c5:98:52:b4:84:74:51:36:
49:ad:92:18:a4:44:25:66:a0:37:bf:89:59:ec:6d:
7c:ef:60:a8:3f:21:1b:d6:ac:b6:cf:b4:c9:51:6b:
bc:58:b4:4f:51:36:5d:c3:ae:26:25:9f:0b:28:e5:
3a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:42:B5:4F:8A:EF:3E:BB:FE:CB:E4:49:19:04:19:63:00:CD:B7:2E
X509v3 Authority Key Identifier:
keyid:65:C9:20:A2:7E:3E:53:A3:67:F9:EA:96:DB:7B:AF:7B:D6:5A:83:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zckgon4-U6Nn-eqW23uve9Zag-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/cEK1T4rvPrv-y-RJGQQZYwDNty4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/Zckgon4-U6Nn-eqW23uve9Zag-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.194.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:66:19:30:69:35:10:48:19:a6:f5:40:72:78:47:ca:0b:0e:
16:99:4e:23:c4:7f:eb:ec:30:df:8b:24:c8:72:cb:87:cc:11:
46:ff:3a:26:dc:fa:1c:df:ae:de:5d:b2:0b:e3:58:7a:c7:81:
c4:6f:25:b2:0a:c9:44:f8:91:dd:95:69:95:a0:81:2f:d1:24:
4c:14:81:35:b8:6b:ee:7c:9d:c7:17:71:ea:6f:06:52:43:ff:
c2:4a:fc:57:b4:cd:e1:20:c1:3e:30:1a:b9:22:f9:8b:30:46:
38:d9:65:b8:35:ba:5a:c6:8b:40:10:ea:51:cf:21:ef:e8:2e:
b3:94:44:1a:ca:3e:49:ad:01:92:e2:28:19:26:f0:5a:93:e7:
c8:b7:e9:47:89:8e:c7:48:ab:86:02:3e:2a:81:16:5c:57:6c:
03:bd:41:69:c4:6c:b7:b5:ab:9e:c8:67:e2:78:98:12:fc:59:
bf:38:f1:d3:2a:86:c7:44:b2:ba:c3:a9:93:e7:a5:b6:f5:c2:
ac:82:2b:75:2e:f0:49:2c:e1:6c:84:b7:8d:d3:bf:d3:b9:dc:
0b:19:ed:96:07:52:ed:65:b1:7b:96:e1:e7:de:a1:30:10:cb:
8a:af:f2:9c:d1:5d:a1:8a:f6:ef:32:3d:fa:41:2b:af:78:e8:
30:f0:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:13 2024 by rpki-client on console-ams.rpki-client.org