Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/tIkDqpu2Dh6Hn38XPRW7rDeuPgA.roa
File: tIkDqpu2Dh6Hn38XPRW7rDeuPgA.roa (raw, json)
Hash identifier: 3+0ONOyDhQqutrFi65BiCPKNexFD8uAgvZqFtHXHCt8=
Subject key identifier: B4:89:03:AA:9B:B6:0E:1E:87:9F:7F:17:3D:15:BB:AC:37:AE:3E:00
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 018CC801552CF99384B45DA3192B6E17A96F
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/tIkDqpu2Dh6Hn38XPRW7rDeuPgA.roa
Signing time: Tue 02 Jan 2024 02:29:39 +0000
ROA not before: Tue 02 Jan 2024 02:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198504
IP address blocks: 185.204.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 09:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:55:2c:f9:93:84:b4:5d:a3:19:2b:6e:17:a9:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Jan 2 02:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b48903aa9bb60e1e879f7f173d15bbac37ae3e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:20:fb:83:ea:45:bc:c3:87:ca:8b:da:a4:a8:
0e:97:e4:83:88:65:37:cd:81:ec:4b:9f:06:63:ab:
c6:2d:59:b0:b7:7f:0c:f5:a8:20:c3:33:11:dd:69:
6e:3c:74:c7:91:a8:3d:b9:39:cd:a3:86:da:bb:05:
49:8d:5f:a4:35:df:ab:98:d2:bf:6e:59:1f:36:a5:
a8:99:64:6d:31:57:18:5a:66:64:bf:89:3b:92:9e:
29:46:b3:a0:fd:01:8c:18:ee:2b:4e:2a:4c:8f:b0:
76:58:c6:6c:8f:3b:17:f7:5b:fb:f5:bb:3a:58:85:
c5:1f:03:45:ba:13:3e:72:b1:10:48:aa:d9:0a:4c:
04:26:21:d4:c2:77:63:94:6e:aa:3e:6d:50:22:fb:
02:e5:fb:1a:88:52:42:e2:60:5b:70:f9:69:cb:13:
28:53:dc:d0:90:f4:0d:ca:6d:40:dc:cb:ca:ff:54:
5f:c3:60:f4:20:77:a3:86:b0:bc:4d:16:f1:45:98:
82:06:e6:9f:d3:91:75:5b:ce:e5:4e:cf:34:c8:9a:
39:53:5f:77:67:6f:f4:15:5c:f5:6b:27:3c:59:9f:
b2:01:f7:11:df:be:5e:f6:28:d9:ee:cd:2e:c5:fd:
c1:26:f8:f9:3b:fd:69:bd:54:99:98:fc:cc:c5:3f:
da:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:89:03:AA:9B:B6:0E:1E:87:9F:7F:17:3D:15:BB:AC:37:AE:3E:00
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/tIkDqpu2Dh6Hn38XPRW7rDeuPgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.228.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f2:17:2b:3e:0c:f3:96:01:67:cb:5b:01:51:8f:65:8b:dd:
0e:51:93:2c:8e:ba:77:b9:be:fb:e0:b6:9c:33:23:53:68:9f:
e5:7a:8a:5f:86:34:25:6f:db:73:10:ae:d6:4b:35:2c:3b:8b:
85:12:99:4d:d7:d9:3b:13:a1:7b:11:2c:a0:98:e3:e4:99:46:
c6:ef:84:9a:91:15:12:d3:0e:88:a2:39:7c:64:71:bc:15:a5:
24:24:26:df:a3:20:82:ba:ba:f3:d6:7e:2f:83:63:8e:4c:0f:
61:97:39:15:35:bf:a2:05:04:2e:c3:1b:ab:72:c7:45:c8:27:
74:c7:6d:fb:83:f4:01:67:fb:b4:32:79:22:1d:4b:75:dd:2d:
be:82:ed:59:30:6c:69:61:67:d9:22:9b:af:7a:30:99:58:42:
81:b6:c1:1e:36:ad:0c:5e:90:72:22:7d:ae:18:fe:40:95:55:
fa:b0:51:e3:e4:04:65:93:81:92:6e:5a:a2:44:9b:40:0e:7d:
58:b6:60:6b:67:50:a5:a5:8a:1f:04:48:96:53:d9:7f:36:0a:
19:e8:3f:bd:c5:e0:f6:ca:17:6e:a6:ed:47:59:5d:9f:1b:ae:
f8:15:f0:8e:93:e3:1d:b7:3a:4e:c4:6a:71:b2:74:57:15:7a:
b2:4a:0d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:53 2024 by rpki-client on console-ams.rpki-client.org