Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/EccLtxV6PPIKlxMhCqh76EgGePg.roa
File: EccLtxV6PPIKlxMhCqh76EgGePg.roa (raw, json)
Hash identifier: T+90BKbwDJhLoVf0E0+sZlNufAbY3evmoS6BStVh0i8=
Subject key identifier: 11:C7:0B:B7:15:7A:3C:F2:0A:97:13:21:0A:A8:7B:E8:48:06:78:F8
Certificate issuer: /CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Certificate serial: 018CC3B70FE0B454908A1CDC97C51F6F4610
Authority key identifier: 4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/EccLtxV6PPIKlxMhCqh76EgGePg.roa
Signing time: Mon 01 Jan 2024 06:30:03 +0000
ROA not before: Mon 01 Jan 2024 06:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216408
IP address blocks: 185.87.216.0/24 maxlen: 24
2a13:85c0:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 27 Feb 2024 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:0f:e0:b4:54:90:8a:1c:dc:97:c5:1f:6f:46:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Validity
Not Before: Jan 1 06:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11c70bb7157a3cf20a9713210aa87be8480678f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:68:58:fe:47:6d:e0:71:47:53:bd:6e:bb:0a:
1c:66:89:ad:79:ce:4b:a3:be:29:67:9b:e9:be:8c:
e1:86:67:e6:68:24:48:1e:0b:09:45:a7:c9:0f:db:
06:26:13:10:7e:33:c4:19:4a:7a:d9:03:a2:4c:ba:
ae:bd:55:b2:29:cd:2b:7f:53:fd:7f:da:a7:0f:7e:
79:cd:b1:8f:19:46:04:68:30:d8:db:cc:24:12:51:
f9:94:15:e9:c5:b1:77:23:53:33:d9:89:a8:1a:3f:
74:0d:02:65:b5:0d:a4:7d:55:f1:63:c9:23:c9:88:
e2:09:75:62:05:c5:b4:1f:e1:ff:a0:b6:04:35:1e:
3f:44:a7:26:11:79:ec:aa:6b:df:2e:40:92:f9:ae:
37:21:56:96:be:13:b9:57:42:7b:66:72:a8:60:bc:
82:24:01:99:ba:e7:bd:4c:7a:2f:a8:ef:cf:a8:21:
7d:5b:f2:73:ce:6b:a8:2a:7f:e3:d8:a9:e7:ae:48:
3e:32:f9:ad:26:ba:48:99:ea:40:c4:0b:63:12:13:
b1:e1:51:0c:19:1f:9d:e7:69:aa:51:91:68:e4:52:
f1:27:85:5b:3f:d0:4f:54:7d:1c:93:f3:2f:7e:41:
4e:fc:6a:b4:76:81:5c:86:4f:29:c7:69:a7:57:54:
6f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C7:0B:B7:15:7A:3C:F2:0A:97:13:21:0A:A8:7B:E8:48:06:78:F8
X509v3 Authority Key Identifier:
keyid:4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/EccLtxV6PPIKlxMhCqh76EgGePg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/TIEnPcsDw0V7eSUL4Qnhml508P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.216.0/24
IPv6:
2a13:85c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
5a:be:94:bb:29:a2:81:75:a5:83:2e:f8:e2:38:c0:ae:7b:f2:
d7:02:40:9f:5c:4f:a8:6e:7f:83:29:0a:a4:11:aa:7a:a8:bb:
81:41:32:5b:6e:5d:3a:8d:d2:bf:3b:80:20:47:ca:06:9c:7e:
8f:c8:70:fe:bd:a1:b0:e4:d1:bf:5b:29:b6:be:20:27:f9:c4:
e4:e4:21:55:2a:ac:55:f4:1a:e2:c5:97:8b:f0:e9:19:e8:f8:
9b:15:07:01:bc:27:70:a2:87:95:e8:d9:61:bc:a7:b9:30:e1:
f6:f2:59:0b:ba:38:58:da:4d:31:76:c1:3d:b0:cb:d1:0e:09:
f0:7f:64:2c:c9:12:03:63:12:67:3b:26:a3:72:81:0d:41:9e:
29:df:3c:ff:4e:79:db:d5:f0:e5:ec:f4:e9:ad:ef:1c:bc:3f:
8b:80:8c:5d:8b:ac:37:fc:98:57:e8:c6:e8:60:6a:c6:b8:5c:
a3:05:b9:d5:82:da:f6:83:b9:0b:de:68:e0:aa:fe:cf:c7:47:
ba:93:90:17:de:02:e5:ce:79:1b:ba:a1:ae:1d:10:27:8f:a3:
6a:69:61:63:5d:90:66:7f:2c:14:5e:ec:79:31:11:a3:89:d8:
ae:6d:16:ef:31:f6:e6:56:8b:f8:3c:20:c9:30:8a:d5:09:a4:
b4:d7:75:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 06:29:26 2024 by rpki-client on console-fra.rpki-client.org