Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/SaN7V1xMXFFs4MqpY-nrIIwgYa8.roa
File: SaN7V1xMXFFs4MqpY-nrIIwgYa8.roa (raw, json)
Hash identifier: /Mdu96TwxxLmJbhfAl5/qyES1Y/ezUI5CecTw8BYN7M=
Subject key identifier: 49:A3:7B:57:5C:4C:5C:51:6C:E0:CA:A9:63:E9:EB:20:8C:20:61:AF
Certificate issuer: /CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Certificate serial: 018572F12E418D3D2884F516CEDDAA6CD9E9
Authority key identifier: 62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/SaN7V1xMXFFs4MqpY-nrIIwgYa8.roa
Signing time: Mon 02 Jan 2023 14:44:46 +0000
ROA not before: Mon 02 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49173
IP address blocks: 185.141.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:2e:41:8d:3d:28:84:f5:16:ce:dd:aa:6c:d9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Validity
Not Before: Jan 2 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49a37b575c4c5c516ce0caa963e9eb208c2061af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4e:b2:e8:da:55:67:80:ae:3b:15:2b:bf:c2:
a7:e7:89:cc:2a:14:24:24:e4:ec:41:43:1a:d7:3c:
6c:46:5b:fc:4f:b0:73:c9:66:30:2f:16:49:3d:57:
90:74:9d:5a:84:a8:31:a1:a7:28:b6:03:b6:a6:28:
f6:7d:d7:b8:c3:97:63:f4:72:e8:30:a8:49:3e:08:
53:21:05:53:77:7d:2b:25:f7:65:58:07:2f:bb:d4:
e6:9c:83:be:ab:43:35:1c:31:19:07:38:77:04:1e:
bd:f1:9b:2b:0b:22:da:b5:ee:c2:2f:4f:4e:b3:e3:
35:04:67:83:49:22:a7:77:29:34:0f:92:29:d0:ff:
54:7c:fe:67:76:d4:fe:92:97:92:e0:fa:5a:a6:10:
f8:99:bc:0e:e5:19:25:4b:98:c3:3f:a6:a4:cb:d3:
83:61:8c:a6:63:78:b4:04:5b:09:e9:e0:f2:3a:2d:
2b:b6:af:38:bf:e3:8d:72:9f:8c:73:c3:70:89:f7:
1a:b6:82:91:cb:0d:b8:bc:6b:a3:4a:3d:70:59:ca:
cb:0e:01:d8:0e:0e:97:52:50:40:75:fb:21:df:b1:
12:f9:c9:af:32:65:dc:22:47:d7:c4:6c:43:66:c1:
e4:3a:03:92:3b:b8:d0:9c:ec:22:13:db:d8:21:f3:
74:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A3:7B:57:5C:4C:5C:51:6C:E0:CA:A9:63:E9:EB:20:8C:20:61:AF
X509v3 Authority Key Identifier:
keyid:62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/SaN7V1xMXFFs4MqpY-nrIIwgYa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.240.0/22
Signature Algorithm: sha256WithRSAEncryption
41:10:a1:7f:33:6e:e1:3e:1e:91:bc:de:95:53:1e:b4:76:29:
0b:23:0b:9a:87:0e:93:67:6a:3f:4f:ee:38:4e:4e:8e:f8:35:
e0:3e:1d:e6:87:85:1b:95:27:7b:30:56:0b:7f:22:6f:93:9c:
19:50:17:31:dc:49:d8:6a:c9:11:eb:4d:f8:46:a8:8d:9d:a1:
dd:bc:83:58:2b:2c:e2:2d:7c:6d:81:63:f4:5f:85:0c:96:90:
e1:eb:8d:f5:eb:7f:3e:d8:3b:8a:e4:e9:40:9d:54:1b:ee:94:
0c:4d:c6:82:28:44:82:a9:24:a6:95:5e:dc:1b:f3:d7:db:96:
6a:8f:52:c8:fd:f8:b1:1c:b2:e7:a1:b7:94:82:7b:1f:85:4f:
c6:53:ac:30:94:eb:eb:8b:da:f4:97:43:4c:52:4f:70:b2:ac:
33:8b:24:63:dc:e9:53:27:23:8b:3e:7a:c0:72:ed:a6:25:e5:
94:d2:ee:eb:f4:72:68:08:29:3f:4d:b9:69:e8:b3:99:49:8c:
df:2a:bb:f5:6c:86:da:ae:56:38:bc:e2:26:80:67:d2:17:54:
bf:20:60:be:5b:26:55:3b:7b:3a:cf:c0:49:e8:37:88:c5:e9:
a4:3d:23:76:1a:49:67:91:e0:52:83:b4:5e:e4:bc:2a:f9:22:
0b:e9:05:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:42 2024 by rpki-client on console-fra.rpki-client.org