Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/5mQIgk9W36jBq-qkmzCW4WZt_Bo.roa
File: 5mQIgk9W36jBq-qkmzCW4WZt_Bo.roa (raw, json)
Hash identifier: ZOFMvxcdTK7//E/Kpu1L05at5EjNFrLaocF9EEPVmP0=
Subject key identifier: E6:64:08:82:4F:56:DF:A8:C1:AB:EA:A4:9B:30:96:E1:66:6D:FC:1A
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 0186A88B8660C15C0827470FAE8A8A06C8D6
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/5mQIgk9W36jBq-qkmzCW4WZt_Bo.roa
Signing time: Fri 03 Mar 2023 17:36:01 +0000
ROA not before: Fri 03 Mar 2023 17:36:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 185.192.212.0/22 maxlen: 22
185.192.213.0/24 maxlen: 24
185.192.212.0/24 maxlen: 24
185.192.215.0/24 maxlen: 24
185.192.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 18:37:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:8b:86:60:c1:5c:08:27:47:0f:ae:8a:8a:06:c8:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Mar 3 17:36:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e66408824f56dfa8c1abeaa49b3096e1666dfc1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fa:77:07:03:30:0e:cc:da:38:05:ac:de:a6:
b4:90:fa:4b:55:d4:58:a5:59:77:45:76:f6:80:1c:
a7:4a:77:f8:0d:ad:a5:45:b0:66:ed:08:10:a8:fd:
2a:a9:1e:3d:ef:e4:2c:25:13:d1:a5:7d:03:f6:df:
40:e2:32:2a:a3:3d:30:5c:7d:7c:32:4b:bf:06:0b:
d8:87:8c:30:d4:76:3c:0d:e6:87:e9:2b:d2:c7:d3:
a9:bf:c3:65:1f:37:8f:68:b5:50:b8:6e:80:6a:ce:
6a:8d:01:c2:e0:6a:2b:19:b6:80:c5:53:95:ed:d1:
3e:be:bc:62:8b:92:71:7a:96:b9:9b:b4:38:f8:3e:
ac:93:51:da:5c:40:89:57:fa:00:be:ee:74:15:1b:
ea:1a:24:4c:e2:01:34:32:6a:6d:cd:23:99:cb:d4:
5a:05:35:4c:3d:ca:ba:c2:ec:53:42:30:60:4f:f3:
19:f7:f3:db:72:40:02:87:08:f7:15:2b:35:84:bc:
92:28:13:8d:1b:28:dd:71:6e:59:4d:9c:6d:1a:9f:
ba:77:06:07:86:df:0c:5e:c8:8f:a7:47:5c:b8:26:
45:7a:8c:1f:25:3f:ae:14:a2:20:77:5c:d1:bb:3d:
e2:d5:b5:07:91:d2:3e:a6:b0:04:c5:44:44:df:82:
33:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:64:08:82:4F:56:DF:A8:C1:AB:EA:A4:9B:30:96:E1:66:6D:FC:1A
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/5mQIgk9W36jBq-qkmzCW4WZt_Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.212.0/22
Signature Algorithm: sha256WithRSAEncryption
17:66:f6:75:12:4f:24:0d:98:35:c7:78:a5:fe:8a:50:d8:58:
52:3a:e8:5e:4f:5c:74:06:aa:e9:4e:79:af:75:a4:40:5e:c8:
41:05:6c:dc:ca:16:2b:fe:42:ad:70:25:05:fa:6d:80:23:e5:
3e:e2:ff:ce:2b:31:c1:61:79:7b:66:99:a4:e2:e6:58:3c:7c:
ce:41:97:bb:90:83:28:90:43:e2:73:03:53:95:f1:f3:61:fd:
74:eb:c4:ae:ac:56:91:82:d0:a4:ce:35:5b:6f:a8:95:b2:bf:
51:c0:53:a5:ae:03:e0:bb:0b:68:bd:4c:81:88:de:e6:5d:e0:
05:98:89:84:d7:cb:91:cb:06:96:4d:c7:d1:70:97:eb:10:35:
48:a1:e1:0c:8e:7d:ea:f1:10:29:7f:aa:80:c2:9e:6c:92:f6:
a1:c1:8d:66:b6:bb:03:d6:07:a1:33:c5:bc:fe:91:3d:c8:9a:
43:24:92:a1:c7:8f:a1:47:b6:83:95:a7:88:c5:1b:b9:68:9e:
62:bc:91:9c:4f:66:38:15:37:f5:a6:5e:3c:b4:cf:ce:b1:25:
f8:ca:db:d4:cc:48:ca:4f:8e:6c:b8:3d:e3:28:ab:8e:fe:ca:
22:38:90:c3:66:36:1c:9a:d2:30:32:8d:80:74:7c:d9:43:02:
c5:10:2b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org