Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/00c6c4-ab28-4405-b694-c3d57e2387ca/1/AeCcBi8-y56MZakKdtCUYjDVfv0.roa
File: AeCcBi8-y56MZakKdtCUYjDVfv0.roa (raw, json)
Hash identifier: uRWsG2/0HaiJOhwdQ4X/4g7q/jG8qVNX1zTKpTZShYc=
Subject key identifier: 01:E0:9C:06:2F:3E:CB:9E:8C:65:A9:0A:76:D0:94:62:30:D5:7E:FD
Certificate issuer: /CN=3fe14329b6c1e695011a82406f7af48f4bb10ad4
Certificate serial: 018C686B86DC8BA10E32EC0D0F1DB03180BE
Authority key identifier: 3F:E1:43:29:B6:C1:E6:95:01:1A:82:40:6F:7A:F4:8F:4B:B1:0A:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-FDKbbB5pUBGoJAb3r0j0uxCtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/00c6c4-ab28-4405-b694-c3d57e2387ca/1/AeCcBi8-y56MZakKdtCUYjDVfv0.roa
Signing time: Thu 14 Dec 2023 13:02:06 +0000
ROA not before: Thu 14 Dec 2023 13:02:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204697
IP address blocks: 185.246.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:6b:86:dc:8b:a1:0e:32:ec:0d:0f:1d:b0:31:80:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fe14329b6c1e695011a82406f7af48f4bb10ad4
Validity
Not Before: Dec 14 13:02:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01e09c062f3ecb9e8c65a90a76d0946230d57efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:53:79:05:73:2a:ca:6d:20:ba:a9:c6:9c:
32:8e:4f:f0:ce:ed:d6:66:d8:29:2a:d3:03:10:c1:
9b:34:a4:57:01:1b:95:80:2d:44:af:40:0b:e5:3d:
43:88:40:e9:49:36:bb:35:9c:7e:fe:32:08:15:35:
bc:d3:01:44:bd:8a:31:a0:c5:fe:48:9b:65:e7:b1:
6e:18:4a:c3:9d:b7:77:88:d2:1d:94:97:c3:98:9c:
9c:be:75:d9:72:dd:1a:b0:aa:6b:1d:84:b1:a2:47:
e9:e9:a0:ad:18:71:94:4f:22:89:1c:f8:2d:59:4c:
61:d6:f4:44:a1:04:9d:10:c9:45:84:1c:23:0a:e2:
4e:55:bb:8d:52:fc:4c:61:d6:ba:17:55:d3:70:1e:
0f:dc:83:fb:6d:a6:d3:74:74:38:0f:9e:7d:89:15:
1d:bc:25:e7:5d:00:cd:6d:e0:98:15:f3:ff:a4:b9:
11:97:4a:c3:fe:73:ac:e6:d9:b5:41:76:1c:7e:07:
49:14:38:fc:2d:f2:01:c3:96:46:d7:11:71:52:80:
44:ea:11:f3:a8:ae:7b:c0:79:8f:5f:9c:b0:73:47:
6f:73:22:16:b9:3e:79:de:d7:c2:a8:d7:c5:9e:2f:
c7:d4:3d:7a:af:cb:a6:96:a5:8f:f1:e8:69:5a:50:
55:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E0:9C:06:2F:3E:CB:9E:8C:65:A9:0A:76:D0:94:62:30:D5:7E:FD
X509v3 Authority Key Identifier:
keyid:3F:E1:43:29:B6:C1:E6:95:01:1A:82:40:6F:7A:F4:8F:4B:B1:0A:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-FDKbbB5pUBGoJAb3r0j0uxCtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/00c6c4-ab28-4405-b694-c3d57e2387ca/1/AeCcBi8-y56MZakKdtCUYjDVfv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/00c6c4-ab28-4405-b694-c3d57e2387ca/1/P-FDKbbB5pUBGoJAb3r0j0uxCtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.171.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5a:31:22:88:18:16:c6:39:1a:b1:0f:ce:5a:bc:79:5e:10:
b7:cc:da:1a:bb:af:00:ab:6d:b2:70:5e:9f:89:66:b4:05:b9:
f9:6a:b8:e2:7a:dc:4c:eb:91:e2:62:8b:3e:c7:03:bf:9b:b9:
df:3d:59:ab:41:27:ff:a6:0d:ff:86:ec:1c:6d:f4:3c:4e:a6:
b6:cf:e0:fe:f7:f1:35:14:d8:ed:96:06:8e:36:0d:3c:5b:21:
8c:1a:32:10:c8:fe:93:38:bd:e7:c2:bb:97:cf:04:39:9c:ec:
b3:f3:cd:93:d3:1e:bd:e6:8c:12:ca:29:08:87:a6:a0:39:74:
dd:1c:40:6a:9a:4f:56:5b:97:ba:4a:5d:f0:d9:98:84:ba:d9:
ff:25:2c:8c:6d:00:b5:6b:9e:4e:2e:a3:55:75:e1:09:0a:e2:
f9:8d:76:7c:8c:6c:89:24:62:e9:0d:ee:d2:d2:e9:18:28:08:
48:fe:99:23:c1:af:ab:fb:22:2d:22:b8:6b:8e:fc:c6:7b:4f:
b0:d2:7f:00:fa:73:63:d6:ff:bc:5b:3e:3e:98:09:71:6a:9d:
ac:69:bc:c9:72:ea:94:ae:6c:a5:10:3c:44:38:33:b8:de:ec:
59:3a:49:1d:3a:07:e4:38:8f:06:2b:be:e8:3e:bd:c4:1c:36:
0d:66:f1:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:46 2024 by rpki-client on console-fra.rpki-client.org