Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/RaFeOJIlXfcHIY-Fwh9lrpO0WWQ.roa
File: RaFeOJIlXfcHIY-Fwh9lrpO0WWQ.roa (raw, json)
Hash identifier: xLsdt2MHiawzE78v2FVXWIIwUw9tHViVGUhHPdtxs90=
Subject key identifier: 45:A1:5E:38:92:25:5D:F7:07:21:8F:85:C2:1F:65:AE:93:B4:59:64
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 01856ED4B26DE24D16DB3AD3404A72EB9463
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/RaFeOJIlXfcHIY-Fwh9lrpO0WWQ.roa
Signing time: Sun 01 Jan 2023 19:35:11 +0000
ROA not before: Sun 01 Jan 2023 19:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60845
IP address blocks: 185.113.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:b2:6d:e2:4d:16:db:3a:d3:40:4a:72:eb:94:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Jan 1 19:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45a15e3892255df707218f85c21f65ae93b45964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d5:01:36:2d:ba:11:86:7f:f1:99:85:63:63:
27:fd:33:d1:89:41:90:a5:2d:88:68:7e:ed:00:4c:
37:f1:b1:3f:b1:51:1b:6b:91:48:73:a6:ca:56:3c:
9c:24:63:0f:dc:33:5f:9c:b9:b8:1e:1a:66:fa:3a:
e6:d9:28:d0:00:94:98:3a:e1:6b:8b:90:a9:52:7d:
62:14:4c:a4:78:8e:d6:32:9d:b4:3d:e6:81:95:85:
f0:42:0f:d4:db:ca:cb:d6:c4:bc:5a:22:81:8a:63:
6f:0d:5d:30:f7:dd:5c:58:98:59:f6:d0:09:a8:2a:
a8:f6:34:35:63:b6:ea:aa:4c:d2:c9:28:04:5c:5c:
2e:58:18:76:d2:98:6f:a9:c3:b8:5c:93:06:d2:4c:
9a:17:15:f5:bb:3c:e8:96:9a:db:b8:33:fb:18:8a:
da:fb:84:0d:5b:99:7f:e7:50:08:49:95:1a:37:a4:
84:cc:db:19:65:c7:b4:c1:5c:60:21:55:9f:dd:df:
52:95:09:21:c4:15:9c:52:c7:bf:05:69:fb:60:81:
df:d4:56:a2:35:ea:ae:05:15:86:d7:fd:b0:7c:3b:
c1:ab:49:16:0b:67:27:cd:85:95:48:a0:63:83:94:
11:d5:4e:2f:0d:51:a8:95:c5:b1:db:26:c6:ef:93:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A1:5E:38:92:25:5D:F7:07:21:8F:85:C2:1F:65:AE:93:B4:59:64
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/RaFeOJIlXfcHIY-Fwh9lrpO0WWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.164.0/22
Signature Algorithm: sha256WithRSAEncryption
78:bd:09:31:15:1c:10:09:7c:9b:7a:a1:ce:8e:d9:0b:6a:76:
f7:ab:73:71:ef:85:ac:7b:14:f8:02:b8:4a:6c:18:43:1f:df:
20:08:4f:2d:fc:6b:fa:68:6a:86:db:5e:94:e5:1b:b4:9b:d5:
5a:5f:aa:56:ae:62:46:e1:2f:0b:6a:b0:d8:f5:91:53:f7:f1:
6d:7a:87:31:41:0d:c8:f3:70:30:bc:ad:dd:0e:99:e8:89:a0:
a1:3c:3e:93:8b:c5:09:6b:a1:4b:ca:2a:0b:70:41:c1:e9:32:
11:be:cb:ba:ff:b2:dd:9a:e8:4a:c3:85:36:25:00:98:bf:24:
2f:17:38:33:8e:27:cf:9b:1c:24:25:fd:af:e7:a6:78:f2:9a:
ec:01:13:4b:2d:9f:31:01:8d:54:bf:76:e4:80:d6:2d:26:60:
23:ba:94:0c:e7:c0:06:ba:d7:e6:2d:12:e7:53:35:90:f2:8b:
06:22:1b:80:bb:63:dd:3e:9e:a8:be:fa:4e:29:e7:24:3b:87:
9d:22:8c:54:88:b5:8a:e9:b1:fc:6a:b9:c5:64:c9:a6:bd:a7:
8c:11:9f:fe:8b:9b:16:ec:28:39:ad:aa:73:28:20:3e:ec:9f:
d6:5a:61:ae:b0:92:08:7f:40:9b:66:ad:4d:2f:54:87:9a:4e:
12:39:81:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:40 2024 by rpki-client on console-ams.rpki-client.org