Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/t-dvhz4SGIReL6BEUPrV64Arl7k.roa
File: t-dvhz4SGIReL6BEUPrV64Arl7k.roa (raw, json)
Hash identifier: 6Dc17kzgMOLZl3jTlKNS/28Vh/X/MmUbn7E5MrS9oxI=
Subject key identifier: B7:E7:6F:87:3E:12:18:84:5E:2F:A0:44:50:FA:D5:EB:80:2B:97:B9
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FF9C43D56FF5952C5596A59205051
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/t-dvhz4SGIReL6BEUPrV64Arl7k.roa
Signing time: Mon 02 Jan 2023 17:38:13 +0000
ROA not before: Mon 02 Jan 2023 17:38:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202418
IP address blocks: 185.242.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:f9:c4:3d:56:ff:59:52:c5:59:6a:59:20:50:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7e76f873e1218845e2fa04450fad5eb802b97b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ba:a0:d0:ad:b2:cc:bc:54:49:72:84:73:eb:
6c:a8:e4:f0:63:90:73:84:12:74:e4:00:9a:83:07:
27:6f:5c:f7:6c:45:d1:6a:33:04:5f:e8:e1:b6:b5:
83:8e:1a:70:e0:d6:29:6e:d1:42:52:03:c7:2c:ca:
c7:a0:4c:94:b0:89:9f:31:18:c6:8f:43:66:f8:0a:
ac:76:8e:7c:bf:24:f2:d3:be:0d:6d:5d:84:1f:df:
3d:4d:6a:38:6d:b7:a1:96:07:e6:a3:bb:1a:0f:67:
99:93:14:cb:99:09:6c:90:fa:c4:2d:42:9f:06:9b:
72:ec:f7:99:5c:f9:c2:02:4f:33:77:9e:57:86:3b:
9e:70:32:7c:61:67:f5:86:c6:5c:20:cb:b4:43:00:
a3:39:bc:d6:c7:c9:35:14:ea:39:d5:52:2d:a7:e0:
f5:9c:96:6f:bb:6f:58:2b:c1:85:6d:22:e8:4c:85:
0d:82:16:08:09:c0:de:d8:5b:7a:4f:ad:e2:69:c7:
b0:ed:8c:31:3a:09:18:55:b4:26:e7:1f:99:af:72:
0e:af:3e:1d:d4:f9:bf:22:ef:5d:8c:df:f0:9c:3c:
dc:a3:8b:6f:72:56:58:3a:23:e1:a1:50:46:09:a6:
b8:45:d9:76:e3:59:6f:2a:32:cb:0d:b7:b3:5b:b0:
6c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E7:6F:87:3E:12:18:84:5E:2F:A0:44:50:FA:D5:EB:80:2B:97:B9
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/t-dvhz4SGIReL6BEUPrV64Arl7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.227.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3e:25:41:a1:b0:94:6d:d7:a1:92:7c:03:57:73:bd:b6:96:
78:e7:36:4b:f9:1b:61:6a:42:7f:e9:03:2e:e2:e9:03:31:f7:
d7:17:a6:7e:06:bf:ce:fb:51:9d:90:1c:63:e0:89:70:e8:3c:
2f:a3:4b:38:d6:53:e2:14:75:e8:05:84:0e:0e:fb:cf:3a:c0:
52:9e:da:34:b6:56:be:c2:93:5b:f6:17:0c:35:58:13:ee:d3:
49:00:02:01:00:a2:97:2b:57:11:33:5e:0c:f1:19:f5:9e:39:
5a:1b:51:46:c1:b8:a9:f9:73:64:b1:d9:a2:cf:a0:3b:f6:b0:
0b:44:49:72:12:c5:44:36:15:f9:aa:8b:06:d5:f3:f7:11:df:
1c:b9:31:47:47:f8:5a:5b:79:b2:ef:59:57:65:f6:c7:48:37:
ce:ba:d4:99:ef:0a:5c:ec:f3:d8:f6:86:90:23:f3:56:8c:24:
d0:d0:a7:96:5e:32:09:14:b9:58:82:3b:e7:8f:52:65:d7:67:
f1:79:4f:d9:fb:28:35:fa:ec:6d:01:91:0f:d1:41:42:1a:84:
45:82:7e:ec:47:bf:c4:f7:07:5e:96:8c:3d:72:0c:4f:5b:9c:
14:92:cb:85:7f:75:90:b5:51:af:94:95:59:39:78:67:d7:eb:
ae:9d:7f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org