Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/iX7Sa5u85RtkmxsbYo3eWp8nelc.roa
File: iX7Sa5u85RtkmxsbYo3eWp8nelc.roa (raw, json)
Hash identifier: /gr9nJhwYazdfktgExRIqNqfoMLbgMYIpWcomvO4Udc=
Subject key identifier: 89:7E:D2:6B:9B:BC:E5:1B:64:9B:1B:1B:62:8D:DE:5A:9F:27:7A:57
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 018571F101EB16D0ACAD22E9A0B43D6C1379
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/iX7Sa5u85RtkmxsbYo3eWp8nelc.roa
Signing time: Mon 02 Jan 2023 10:04:58 +0000
ROA not before: Mon 02 Jan 2023 10:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60619
IP address blocks: 185.249.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:01:eb:16:d0:ac:ad:22:e9:a0:b4:3d:6c:13:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: Jan 2 10:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=897ed26b9bbce51b649b1b1b628dde5a9f277a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:f3:49:dc:70:8e:fa:1b:6f:84:83:54:41:
ce:36:6b:13:57:57:fc:a2:21:da:1c:9a:f9:51:5d:
cb:a3:5d:16:18:62:e9:f8:f1:df:3c:e4:4e:22:72:
60:1e:1d:6d:ce:ea:22:cf:e5:03:28:bf:1d:5a:b5:
8b:d5:e7:39:fe:e2:eb:7b:f7:d8:a6:cb:e4:15:c2:
ec:89:be:e0:33:09:8a:64:7e:36:5e:e2:64:13:21:
20:4b:74:50:6e:12:a8:2c:27:ea:58:70:1b:97:83:
01:4b:76:95:0c:c0:24:8d:97:b4:f5:5b:bb:4b:9a:
1c:5b:7e:92:ae:92:a6:c8:68:21:76:39:81:2c:06:
43:db:56:a4:2e:4c:d0:18:8a:2f:29:ee:cc:4d:05:
b2:55:b6:92:36:9d:0f:e3:53:7d:79:bb:ce:b7:d6:
d5:10:f5:fc:61:ed:9c:05:e9:62:f3:da:ca:59:c6:
07:6f:0f:60:a5:7d:6a:57:7a:90:d9:bd:f5:82:49:
a0:b1:b6:2e:5a:29:83:eb:50:9d:8a:58:79:5b:e5:
00:ea:84:ab:5f:cc:d2:72:f8:fd:2c:ba:e7:d1:fa:
a0:c1:56:a4:77:9d:4d:2e:78:6b:b0:6a:3c:41:eb:
99:6f:be:52:c2:f5:5e:c4:ed:20:e8:f7:1d:21:87:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7E:D2:6B:9B:BC:E5:1B:64:9B:1B:1B:62:8D:DE:5A:9F:27:7A:57
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/iX7Sa5u85RtkmxsbYo3eWp8nelc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.144.0/22
Signature Algorithm: sha256WithRSAEncryption
66:d7:88:88:22:bd:8f:68:0b:6b:f5:19:68:58:1e:dc:31:e9:
5c:7b:61:7d:db:a2:b7:62:07:2e:14:d5:ef:25:a9:ee:34:cf:
f3:96:a9:3e:50:14:c7:27:8e:09:46:3d:12:6c:04:7a:a2:80:
78:c1:19:de:0e:48:69:04:93:5a:c9:dc:f8:8e:d1:8f:7a:b6:
ff:ee:94:8b:23:a7:8c:70:22:9c:0b:ec:0d:b1:0f:3b:35:a2:
36:3b:c4:12:75:72:7e:76:47:0d:06:be:e4:90:6d:e6:10:73:
c8:33:44:f3:4d:53:38:8d:38:72:a0:42:8e:32:dc:a0:e1:29:
a5:9b:51:55:c3:aa:e3:90:77:1c:8d:ad:40:2a:b9:f0:5e:4f:
ba:c9:a5:f9:1d:65:d0:68:c0:28:c7:68:03:ef:a7:bd:28:71:
ab:a2:60:f3:96:8c:1b:29:bd:76:1f:a1:cf:90:93:3f:74:ad:
a0:9b:fd:ab:c2:69:75:dd:95:1c:80:1d:97:ad:57:c0:a6:f7:
64:f3:89:7d:fc:89:77:cd:c3:1c:48:01:08:28:09:db:4c:f2:
d5:72:4c:e3:08:9c:5a:32:9f:f2:4a:d8:75:3f:d3:3d:f1:60:
17:49:49:9e:6b:7a:8b:72:ab:2d:a0:9f:dd:5e:09:a3:fc:65:
d9:08:90:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org