Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3623e5-342e-4c9f-9183-0d3ad36eb161/1/jiGJ7C9n3nt3UY8rR1uvFe3KyQ4.roa
File: jiGJ7C9n3nt3UY8rR1uvFe3KyQ4.roa (raw, json)
Hash identifier: zZTTeVVe9+AYZL1bAm2UneyW4Lt52dq8E5rBdTu4QJk=
Subject key identifier: 8E:21:89:EC:2F:67:DE:7B:77:51:8F:2B:47:5B:AF:15:ED:CA:C9:0E
Certificate issuer: /CN=5465ad2b4e738f542fa0e68138f36266441e29a0
Certificate serial: 0185733139CD751543FF4FF9ABF9B940D566
Authority key identifier: 54:65:AD:2B:4E:73:8F:54:2F:A0:E6:81:38:F3:62:66:44:1E:29:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGWtK05zj1QvoOaBOPNiZkQeKaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3623e5-342e-4c9f-9183-0d3ad36eb161/1/jiGJ7C9n3nt3UY8rR1uvFe3KyQ4.roa
Signing time: Mon 02 Jan 2023 15:54:43 +0000
ROA not before: Mon 02 Jan 2023 15:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57722
IP address blocks: 185.248.172.0/22 maxlen: 22
185.248.172.0/24 maxlen: 24
185.248.174.0/24 maxlen: 24
185.248.175.0/24 maxlen: 24
185.248.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:39:cd:75:15:43:ff:4f:f9:ab:f9:b9:40:d5:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5465ad2b4e738f542fa0e68138f36266441e29a0
Validity
Not Before: Jan 2 15:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e2189ec2f67de7b77518f2b475baf15edcac90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b6:89:1b:75:cf:16:6e:5e:8b:ca:a7:48:8f:
6e:30:64:b4:a8:76:77:df:eb:91:42:6d:6c:b8:30:
7a:71:c3:5d:74:5b:39:21:27:9e:c2:a4:da:9c:24:
dc:6f:1d:ba:f8:b6:8e:ae:0d:8f:94:e3:7b:d6:33:
c5:63:46:ab:d0:26:35:71:98:79:fc:4c:68:f9:0f:
85:ba:57:75:49:f0:2e:4b:bd:5a:d2:66:3c:27:31:
7c:7d:0c:0a:a4:bb:dc:96:fa:01:05:6a:96:0d:1a:
30:bf:2c:c9:73:ea:d0:71:fb:21:09:c9:95:67:46:
2b:5a:6b:02:cd:cc:f6:0c:a2:96:9e:bd:11:01:c0:
ab:8a:9d:c7:97:22:ae:9c:7d:6c:47:4f:40:d4:1c:
4a:6b:02:e6:b1:d0:4d:9f:a0:e5:e4:0e:07:36:bb:
2a:a1:01:81:73:1e:5f:b9:ca:24:7e:36:08:c9:a8:
a2:64:ae:dc:94:35:cb:3d:7c:80:91:be:f5:da:93:
7f:91:20:db:2b:35:b6:14:99:79:a4:cb:6c:88:0b:
fb:8b:de:39:0e:31:cb:34:25:ed:ac:d6:e2:2c:3b:
78:f0:2d:e5:da:b2:11:39:62:2a:97:f9:d1:81:94:
10:e0:9a:bc:5b:e1:2b:39:29:8c:8d:c3:28:83:cf:
e6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:21:89:EC:2F:67:DE:7B:77:51:8F:2B:47:5B:AF:15:ED:CA:C9:0E
X509v3 Authority Key Identifier:
keyid:54:65:AD:2B:4E:73:8F:54:2F:A0:E6:81:38:F3:62:66:44:1E:29:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGWtK05zj1QvoOaBOPNiZkQeKaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3623e5-342e-4c9f-9183-0d3ad36eb161/1/jiGJ7C9n3nt3UY8rR1uvFe3KyQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3623e5-342e-4c9f-9183-0d3ad36eb161/1/VGWtK05zj1QvoOaBOPNiZkQeKaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.172.0/22
Signature Algorithm: sha256WithRSAEncryption
49:e7:9c:80:59:67:d5:79:0e:a2:73:d5:eb:41:13:af:cc:0f:
aa:19:7d:b1:b3:46:f5:d0:6f:0d:e8:04:6f:54:df:ba:8a:a6:
f2:13:45:96:2b:69:0a:b6:09:de:0d:d5:d0:fd:d5:4a:90:9c:
b8:69:36:55:11:86:cd:57:87:71:f6:d6:fa:9c:33:9d:e3:6d:
79:aa:7d:dc:be:4c:de:20:ca:83:4a:49:9d:9d:f8:4c:51:2c:
fd:6c:a5:54:5e:b7:5b:42:f2:41:49:08:1d:1a:ad:a1:1f:bd:
87:e1:6b:e3:48:9d:51:18:5f:0d:60:35:df:a9:ae:8f:d7:35:
ff:5f:ed:69:21:20:6a:0a:9f:68:7d:36:c0:0c:8b:59:5d:e3:
f7:d9:1e:9a:c3:fb:12:f4:0d:74:24:8c:a2:3e:c2:9c:09:1c:
e5:d9:66:9c:0c:68:45:a9:75:67:bc:9e:e2:87:cb:e8:df:32:
12:8f:9a:11:d8:a7:7d:71:6f:7e:12:1a:c1:06:97:be:de:2b:
42:5a:86:bf:80:bb:f4:ca:20:bd:2c:2f:3e:d0:34:19:a2:ad:
33:3c:25:c9:c2:36:2e:64:ed:e3:a4:99:f3:1f:1a:31:40:95:
84:fe:92:ff:06:a4:f6:1c:4d:90:c2:1a:96:d8:55:42:7b:35:
eb:4f:bf:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:36 2024 by rpki-client on console-fra.rpki-client.org