Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/Pu5p2b06eYPLgEYGBVISsids1mo.roa
File: Pu5p2b06eYPLgEYGBVISsids1mo.roa (raw, json)
Hash identifier: ov0tBAmXTN2P7is7YtqZlvu8WHLw69ATwprLEklUXh4=
Subject key identifier: 3E:EE:69:D9:BD:3A:79:83:CB:80:46:06:05:52:12:B2:27:6C:D6:6A
Certificate issuer: /CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Certificate serial: 01856EF42CEEAB626381345E9F35C862C04B
Authority key identifier: A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/Pu5p2b06eYPLgEYGBVISsids1mo.roa
Signing time: Sun 01 Jan 2023 20:09:34 +0000
ROA not before: Sun 01 Jan 2023 20:09:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43948
IP address blocks: 185.201.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:2c:ee:ab:62:63:81:34:5e:9f:35:c8:62:c0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8dff01f56e3419d027be7591ceef62851ce0f6b
Validity
Not Before: Jan 1 20:09:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eee69d9bd3a7983cb804606055212b2276cd66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:46:a3:67:ba:de:91:b4:96:ba:e2:83:e9:53:
e3:de:0d:a3:b6:d7:77:0b:06:a8:bd:21:43:7f:49:
59:ef:73:5c:7b:b3:17:58:59:a6:39:6e:f9:00:e6:
97:b4:34:30:36:28:e2:e5:d6:0d:f0:e3:26:8b:3c:
8a:43:05:97:b5:9a:ab:0f:ba:a1:f1:22:ab:12:36:
e4:32:77:92:35:d8:e9:50:75:de:59:56:e4:18:ba:
1f:61:72:51:d9:47:7e:bb:b5:32:ed:b1:ce:08:e8:
d4:82:e2:f9:d0:de:a9:e8:c1:98:09:5c:99:50:88:
d4:19:fd:75:b2:f3:2d:98:df:22:bc:f9:72:93:2c:
2f:54:49:ec:f3:9f:23:06:71:ff:40:00:43:36:0a:
2e:44:28:17:07:c5:59:b3:34:8b:02:f9:bf:08:94:
91:79:49:82:47:a0:2d:19:b7:83:99:f4:fa:ba:2f:
dc:2e:a4:90:66:22:02:47:35:31:c9:5b:de:c0:ee:
77:06:65:5f:f8:5e:5e:1e:e2:75:37:37:5a:83:0a:
ae:2b:f7:24:cb:24:4f:c0:ab:c1:48:20:9f:2b:d7:
46:58:3e:b4:b1:24:7a:1e:3c:9c:c1:42:88:f2:c7:
85:90:f4:a4:8d:4b:d3:6c:f4:b0:25:13:d5:90:ef:
c6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EE:69:D9:BD:3A:79:83:CB:80:46:06:05:52:12:B2:27:6C:D6:6A
X509v3 Authority Key Identifier:
keyid:A8:DF:F0:1F:56:E3:41:9D:02:7B:E7:59:1C:EE:F6:28:51:CE:0F:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/Pu5p2b06eYPLgEYGBVISsids1mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/473366-702d-473f-bfbe-882c448e2ef6/1/qN_wH1bjQZ0Ce-dZHO72KFHOD2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.172.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:86:7e:a3:cc:ca:9b:73:3f:04:f6:b5:91:e2:99:13:87:f9:
92:b9:ab:e2:3c:58:a3:5e:cc:d8:f1:91:0f:1a:08:bf:2b:0a:
ee:41:35:d1:b6:e8:6c:b6:24:83:ab:49:f0:b4:0b:4b:7d:df:
cd:d3:e1:0d:75:68:97:46:e4:46:27:6e:a9:ff:02:af:5d:48:
5f:6c:75:0a:ce:32:9e:7b:73:d1:59:40:2f:c7:7d:31:5a:75:
6d:9c:90:12:56:45:bb:fe:1c:3e:e4:62:3e:88:e5:fd:2b:68:
a4:34:f5:76:09:d8:c4:c2:db:ca:23:c3:9e:58:c9:81:78:81:
3b:59:cd:45:08:46:83:8a:3c:68:99:22:86:09:de:e0:94:96:
a4:5e:85:26:59:cb:a3:e4:6a:ce:6f:39:88:ab:17:bc:25:e2:
27:89:c1:3a:59:00:f1:6c:23:8c:c4:e9:f2:35:49:f2:3f:3b:
b6:74:bf:9e:d6:0a:41:24:6e:0d:74:d0:fd:cc:06:c8:38:c1:
c0:b9:86:08:be:14:20:a3:c4:2c:ab:89:da:5c:4a:9e:aa:8f:
37:24:4a:21:a9:da:1a:09:cc:7d:78:43:88:bf:66:58:87:f6:
23:46:88:66:6f:89:d1:2e:b7:9e:c0:95:eb:6f:b7:cb:ca:b2:
b8:25:83:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org