Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/SIV2XiVJR5YJfvOlcrt6gDWvqr0.roa
File: SIV2XiVJR5YJfvOlcrt6gDWvqr0.roa (raw, json)
Hash identifier: sH2fP45zISJIllfnZFzs6L8mxuIiVjO7axFRdMd1nTA=
Subject key identifier: 48:85:76:5E:25:49:47:96:09:7E:F3:A5:72:BB:7A:80:35:AF:AA:BD
Certificate issuer: /CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e
Certificate serial: 01857295B06222D73124FD49B6886AF7AEAD
Authority key identifier: 41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/SIV2XiVJR5YJfvOlcrt6gDWvqr0.roa
Signing time: Mon 02 Jan 2023 13:04:50 +0000
ROA not before: Mon 02 Jan 2023 13:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12302
IP address blocks: 185.190.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:b0:62:22:d7:31:24:fd:49:b6:88:6a:f7:ae:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e
Validity
Not Before: Jan 2 13:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4885765e25494796097ef3a572bb7a8035afaabd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bc:c7:b7:1d:a0:49:65:92:72:83:21:10:70:
f5:26:bb:af:bd:84:b3:85:3c:99:cf:a9:b4:80:31:
b0:15:ff:26:a0:9b:3f:ff:57:dd:4e:9e:14:16:ce:
84:07:fd:93:27:f2:24:7c:b6:f7:fd:06:56:df:f2:
f0:ce:11:88:3a:ff:f4:d1:78:d1:19:3f:8f:91:55:
d2:d6:9d:58:09:7e:57:fa:fe:a4:72:1d:13:60:80:
8f:84:a5:8f:a3:8f:35:c0:e3:04:35:71:a8:da:69:
00:12:93:0d:bb:63:92:c7:d0:5c:1b:d5:15:4f:e8:
14:40:1e:6d:ca:26:37:7a:85:10:9d:69:c1:23:71:
23:69:09:ca:3a:48:36:0c:d8:3a:2f:46:bc:bc:bc:
48:b3:df:7c:89:02:86:63:89:81:ef:e7:2b:d5:f7:
88:76:f5:6c:b6:bc:24:5f:79:bf:6e:3f:4d:5c:42:
89:bd:b6:eb:ad:55:c4:f3:8c:c5:dd:f1:8c:50:72:
f9:d4:8a:35:83:9d:47:c4:cf:b2:57:57:ab:b1:c2:
52:63:5d:5f:b4:fb:4c:ed:8f:be:2a:86:93:c2:26:
05:1a:10:8f:09:5a:bd:9d:68:7c:ac:c8:94:c6:05:
3c:7f:29:91:81:95:e1:54:64:b1:7b:1a:a7:fe:9b:
2d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:85:76:5E:25:49:47:96:09:7E:F3:A5:72:BB:7A:80:35:AF:AA:BD
X509v3 Authority Key Identifier:
keyid:41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/SIV2XiVJR5YJfvOlcrt6gDWvqr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/QdELiOsk9iYtkxU2il0B4eCGDE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.212.0/24
Signature Algorithm: sha256WithRSAEncryption
34:68:ef:72:5e:65:c5:fb:49:e1:2a:38:5d:7a:b1:42:fe:bd:
63:a8:21:1b:2c:2f:28:94:c9:61:a2:10:33:60:be:3e:18:cf:
54:ec:58:7c:bc:ff:a3:c6:c6:93:fe:9c:28:35:7c:ed:d8:20:
49:37:13:ec:55:c5:10:99:32:6b:71:ea:14:b3:ae:75:c4:8c:
fe:fb:51:f8:3b:f5:36:41:d1:06:1d:28:21:73:85:cd:b8:af:
b5:07:e6:28:a2:46:21:fc:bc:68:ee:7e:d8:ca:aa:d2:3d:73:
84:5d:cb:46:10:ab:40:24:29:6d:79:c3:9e:db:9a:90:20:07:
7d:69:9a:e3:76:be:91:e8:e5:b1:6b:3d:be:37:df:ef:c9:3b:
e5:40:ac:24:54:2c:b6:51:10:de:7c:b3:e3:10:eb:7b:9a:a3:
85:38:8e:65:66:73:cb:b8:58:fe:79:3f:6a:52:15:b4:42:78:
61:01:9b:b0:ff:5e:ae:70:ab:7e:4d:cc:51:7c:26:ad:85:07:
dd:26:09:bb:76:8f:0f:53:88:2d:b5:e9:33:ca:6b:82:42:76:
8b:77:9c:be:1d:e3:58:a0:d5:19:53:ef:1b:37:10:c7:39:4d:
d6:08:3b:40:60:45:a5:cb:e4:7f:87:ef:49:e2:db:6d:44:77:
36:20:09:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:18 2024 by rpki-client on console-fra.rpki-client.org