Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/__2qFlhk_KXWlq39JIvUiq0Hgas.roa
File: __2qFlhk_KXWlq39JIvUiq0Hgas.roa (raw, json)
Hash identifier: 9Y59bTlheB/VvNXt5nij04TmT/HBBTgP11zkjGly1mI=
Subject key identifier: FF:FD:AA:16:58:64:FC:A5:D6:96:AD:FD:24:8B:D4:8A:AD:07:81:AB
Certificate issuer: /CN=01e7c30459356a900dc63369764a754c5c1f3319
Certificate serial: 01879A3CAC3D44AC7AF4444B56D5C42D3A18
Authority key identifier: 01:E7:C3:04:59:35:6A:90:0D:C6:33:69:76:4A:75:4C:5C:1F:33:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AefDBFk1apANxjNpdkp1TFwfMxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/__2qFlhk_KXWlq39JIvUiq0Hgas.roa
Signing time: Wed 19 Apr 2023 15:58:00 +0000
ROA not before: Wed 19 Apr 2023 15:58:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48213
IP address blocks: 185.135.236.0/22 maxlen: 22
2a07:980::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 20 Apr 2023 07:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:3c:ac:3d:44:ac:7a:f4:44:4b:56:d5:c4:2d:3a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01e7c30459356a900dc63369764a754c5c1f3319
Validity
Not Before: Apr 19 15:58:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fffdaa165864fca5d696adfd248bd48aad0781ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ef:aa:7b:7c:f2:38:0d:3d:e8:fc:da:80:8e:
fb:f1:25:06:07:05:ad:ed:c5:ed:57:24:3e:da:d3:
de:e7:54:b0:40:0c:79:4f:76:f1:af:c5:85:15:57:
7a:c2:6a:0b:69:a7:e9:69:70:88:e2:1c:45:44:68:
f9:f6:90:f7:ac:6a:89:1b:2a:a7:ff:4e:5d:52:27:
19:04:16:88:b6:d4:30:9a:48:e9:bb:2b:af:75:d4:
96:de:6b:06:9b:4b:a7:8a:d2:8a:7d:ac:f7:2b:36:
2c:73:a1:76:d2:d0:85:a0:de:f8:fe:2f:c6:bc:d5:
ba:85:58:76:1c:52:89:01:86:62:b2:64:88:9d:58:
8a:18:78:ce:e3:a3:ec:5c:6b:af:bd:8e:50:72:fe:
12:65:17:7e:ca:00:45:39:37:97:d9:3d:33:40:46:
93:ca:8f:51:ad:fb:dd:23:6f:c0:eb:ab:9a:9a:da:
fe:07:18:cf:3e:4d:d3:bc:41:1e:b8:77:0c:6c:b7:
0c:5d:b9:54:d3:01:dc:85:9d:73:aa:0a:09:c8:4e:
29:a6:82:30:5b:81:28:fa:47:77:89:3a:fc:a0:dc:
3f:8a:95:c8:16:60:b5:ef:5c:70:2a:88:e9:4d:16:
2b:37:e9:dd:ae:9c:b9:05:90:9d:a1:2e:1c:e1:7d:
3c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FD:AA:16:58:64:FC:A5:D6:96:AD:FD:24:8B:D4:8A:AD:07:81:AB
X509v3 Authority Key Identifier:
keyid:01:E7:C3:04:59:35:6A:90:0D:C6:33:69:76:4A:75:4C:5C:1F:33:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AefDBFk1apANxjNpdkp1TFwfMxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/__2qFlhk_KXWlq39JIvUiq0Hgas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/AefDBFk1apANxjNpdkp1TFwfMxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.236.0/22
IPv6:
2a07:980::/29
Signature Algorithm: sha256WithRSAEncryption
5f:a1:e7:7c:80:f3:4b:b1:23:b8:1a:fb:d0:a2:37:3b:47:ad:
24:f7:1d:a1:99:e3:15:8b:34:74:87:7e:83:8e:7c:58:ec:b7:
17:dd:ae:18:aa:be:1a:ca:06:82:2c:38:a2:0d:f8:2c:02:33:
25:07:1d:f3:95:80:b4:dd:38:dd:3a:f2:3f:3a:0f:8e:b6:a8:
40:84:5a:00:7f:4e:86:c6:42:11:74:9e:bd:17:c2:dc:40:48:
b6:0a:2c:bd:f0:12:83:36:b1:e0:57:7c:6c:98:d8:82:d5:3f:
97:31:44:9f:ea:a0:38:01:ef:3a:88:1f:d1:86:89:58:3a:6c:
4d:85:74:38:10:76:ba:34:27:ac:ab:1f:7d:9c:16:7c:69:31:
f6:eb:ec:80:be:82:33:fc:27:fe:05:cc:d5:90:5d:c9:dd:94:
10:86:df:c4:0e:55:c3:76:28:64:47:b6:11:52:2c:81:85:bb:
84:57:21:d6:4d:ff:8e:69:d9:fe:81:60:b2:68:6d:a0:98:32:
13:d1:87:9c:4e:44:96:64:e3:f3:59:e8:e9:d5:6c:f2:e3:d3:
0b:ae:0b:dd:ef:eb:97:80:e2:68:8f:56:67:7c:12:9c:28:77:
75:73:ff:a6:f5:03:d8:37:04:2f:be:e4:01:8f:0f:ce:71:fa:
30:42:06:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:47 2024 by rpki-client on console-fra.rpki-client.org