Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/RpL1NrsI4aI_U4ow8TSSn6BJPRc.roa
File: RpL1NrsI4aI_U4ow8TSSn6BJPRc.roa (raw, json)
Hash identifier: pLp3WxOzvRkkAP/0XGebTjcfk2ZA8CqBdZIQWUM1fSs=
Subject key identifier: 46:92:F5:36:BB:08:E1:A2:3F:53:8A:30:F1:34:92:9F:A0:49:3D:17
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 01856C78109F302D3281FD8ED6A945B4FCE6
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/RpL1NrsI4aI_U4ow8TSSn6BJPRc.roa
Signing time: Sun 01 Jan 2023 08:34:46 +0000
ROA not before: Sun 01 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60558
IP address blocks: 185.219.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 11:38:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:10:9f:30:2d:32:81:fd:8e:d6:a9:45:b4:fc:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Jan 1 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4692f536bb08e1a23f538a30f134929fa0493d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:96:65:e0:23:8a:73:d0:a5:aa:90:54:11:d9:
42:a7:81:7a:bc:e9:7c:74:4c:4c:a4:bd:22:f5:3b:
96:6b:cd:02:3c:20:2b:d1:03:e6:34:72:85:4c:70:
b1:dd:d0:9f:bf:d4:89:8f:5d:7e:da:7e:db:9a:55:
55:25:43:7f:0f:a1:ea:1e:d5:c0:ae:a8:52:00:6d:
30:64:aa:20:e9:f9:41:01:86:a3:b8:2e:fd:55:9c:
15:cb:85:ce:e2:08:ba:fa:4c:d4:19:3b:58:77:6c:
03:94:41:32:df:dd:66:00:0c:84:50:6b:1f:b2:af:
b5:c4:cd:65:d3:00:3f:9d:0a:6b:aa:aa:b3:95:73:
0f:f7:e4:ed:02:8d:c5:40:71:78:4d:06:6c:26:70:
a7:2c:8a:c8:de:ba:d1:b2:9c:8e:20:0a:48:9f:6f:
dc:61:76:1c:4b:49:a5:20:12:2c:04:d8:97:82:a4:
83:92:02:ae:e2:d9:25:d1:57:1d:d5:6d:9a:e2:8f:
9a:db:8e:d1:08:24:3f:dc:19:72:29:1d:0e:19:05:
f8:df:8e:29:c2:5f:ef:8f:e3:35:2c:9b:8c:e1:a6:
b3:f8:15:6b:4f:e7:3c:70:ea:86:b1:3e:5f:bc:d0:
ba:8d:1e:2c:cb:a3:6d:a0:9d:fd:59:44:4d:1d:b2:
56:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:92:F5:36:BB:08:E1:A2:3F:53:8A:30:F1:34:92:9F:A0:49:3D:17
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/RpL1NrsI4aI_U4ow8TSSn6BJPRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.161.0/24
Signature Algorithm: sha256WithRSAEncryption
97:62:3f:20:4d:96:9d:ad:e5:55:93:d8:31:a3:29:c4:53:ad:
7d:4f:a6:e8:9c:e6:a0:21:8f:d5:5f:2d:c2:a6:83:27:c0:83:
2b:ad:59:72:45:50:aa:01:ce:5b:c9:f6:8c:c3:86:93:92:ec:
1a:60:74:d3:e9:37:c4:d6:22:ed:0f:24:cb:b8:ca:be:2c:47:
bf:c4:d5:cc:54:d3:d4:fd:e5:02:f7:e6:4d:f2:74:a0:12:9d:
22:4d:97:96:55:83:aa:2b:09:93:45:75:fe:99:6d:ac:9e:46:
30:26:5e:53:81:e5:10:10:9c:fa:4f:ba:17:11:ae:f7:4e:c2:
67:6c:17:07:87:60:63:7f:0a:f7:f3:4b:9a:26:f5:47:c3:7a:
69:b0:e0:db:80:a7:94:c0:1d:8f:6f:a5:45:dd:b7:45:86:c6:
a3:75:0d:ad:a1:2e:2b:1d:9a:5e:37:d0:1a:ab:04:b0:8b:b9:
0b:b7:66:43:6a:4d:b5:16:82:7a:9c:85:11:7d:29:59:32:28:
cc:98:d7:fc:5b:82:c6:a9:7c:35:ae:10:74:8e:a4:32:ad:3f:
2d:0c:ab:43:61:b0:4f:e2:e9:23:37:2b:21:cc:7f:61:e8:c3:
1c:ff:6d:ea:b5:94:a4:12:82:b2:c3:19:b9:af:7f:be:3e:c5:
be:c0:18:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:36 2024 by rpki-client on console-ams.rpki-client.org