Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/1BnS60qZqTL1oFHlgG01XIeETGk.roa
File: 1BnS60qZqTL1oFHlgG01XIeETGk.roa (raw, json)
Hash identifier: //PuGdFkPBobFCdgdLqpPylox71m7pwCYNOsMh2NdhE=
Subject key identifier: D4:19:D2:EB:4A:99:A9:32:F5:A0:51:E5:80:6D:35:5C:87:84:4C:69
Certificate issuer: /CN=6cf96a7c01d62e37acecf0786f64978905121647
Certificate serial: 0185730CAF1FC520E89986A625B4B880AC1D
Authority key identifier: 6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/1BnS60qZqTL1oFHlgG01XIeETGk.roa
Signing time: Mon 02 Jan 2023 15:14:49 +0000
ROA not before: Mon 02 Jan 2023 15:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209180
IP address blocks: 185.117.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:af:1f:c5:20:e8:99:86:a6:25:b4:b8:80:ac:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf96a7c01d62e37acecf0786f64978905121647
Validity
Not Before: Jan 2 15:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d419d2eb4a99a932f5a051e5806d355c87844c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:af:62:9c:12:3c:95:d4:26:1b:e8:94:fc:e6:
10:f2:90:a9:67:4c:f8:ee:bc:94:99:36:f5:c3:06:
93:b0:28:9a:23:4c:64:6a:83:e2:85:a2:3d:13:e1:
13:d7:78:fa:da:ec:99:48:8e:a3:08:c7:fe:f5:58:
d0:51:e0:f2:f8:c8:95:2f:b1:ba:76:63:59:3e:d0:
47:58:d4:c9:61:ef:5e:3e:70:1a:cd:f9:47:c3:d6:
e6:84:da:f7:48:e2:6d:e7:4a:f2:09:76:c8:89:3f:
ff:1b:8e:b4:b4:83:0d:da:eb:69:c6:83:a1:d2:d8:
2a:40:07:a2:59:0a:86:1a:37:87:fb:e1:eb:69:a4:
73:80:d6:df:e2:7b:3d:52:a4:57:24:a7:a6:36:00:
ac:04:89:d3:22:3d:16:c8:6d:42:69:60:4f:5c:ce:
fb:ea:9f:2f:d9:6c:7b:c7:75:a3:59:45:9e:14:83:
4d:84:c2:97:d7:79:a2:78:c4:36:c0:6f:02:c1:3b:
96:dd:0b:1c:2b:81:6e:72:b3:94:28:de:56:78:fa:
03:08:36:a4:1f:0f:7c:86:99:04:cb:50:e5:63:f1:
57:fa:af:d8:14:1d:0b:4d:e2:b7:6d:15:a0:e7:2f:
31:31:f2:a1:75:8c:64:22:72:a2:17:6c:cb:98:e0:
1b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:19:D2:EB:4A:99:A9:32:F5:A0:51:E5:80:6D:35:5C:87:84:4C:69
X509v3 Authority Key Identifier:
keyid:6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/1BnS60qZqTL1oFHlgG01XIeETGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/bPlqfAHWLjes7PB4b2SXiQUSFkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.132.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:29:a3:bc:89:67:ca:1c:6a:8a:06:69:e7:9c:f3:23:9d:f8:
a7:4d:7d:4c:31:5f:95:89:3d:1d:50:f6:17:27:c4:5d:e8:68:
67:38:de:d3:46:03:88:b0:ce:e0:ad:44:39:ee:03:d3:13:35:
89:fd:7a:a3:63:15:40:79:3a:36:35:96:c9:08:b2:e2:80:03:
ba:a6:e4:72:48:6e:b3:94:81:c3:cc:02:d4:f8:24:f5:5f:d3:
05:92:83:39:31:26:1d:99:50:8e:81:0b:35:28:fd:fd:51:45:
bf:30:82:07:e2:69:13:1c:98:3c:90:47:2b:99:17:92:76:45:
ac:99:1e:0a:02:5c:22:45:c3:55:f7:6a:c7:e4:30:d7:63:86:
f4:a8:49:44:e2:a6:3a:3a:ad:10:7f:6c:78:c1:93:34:5c:3b:
5e:4e:64:6e:09:7a:04:bf:81:3a:79:6b:19:9b:d0:64:9d:7f:
2b:e8:f4:5a:7a:fd:2b:51:ab:aa:fb:c6:35:48:54:fb:51:b1:
8c:e2:7a:df:30:17:ab:f9:47:f0:36:4c:7c:58:41:4e:77:09:
fa:1e:8a:69:58:93:0a:b2:99:de:92:61:5f:7a:41:8e:3b:e0:
01:1b:be:65:d4:9f:21:82:00:42:61:44:f2:f4:40:9f:d5:30:
29:07:a7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org