Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/hRtvyrfNAoOIi8TIrDRqQS-wbyY.roa
File: hRtvyrfNAoOIi8TIrDRqQS-wbyY.roa (raw, json)
Hash identifier: pQi9HwBfvgHd7CfoiYUxdqBARNdHifAhlwLPx7v+tHw=
Subject key identifier: 85:1B:6F:CA:B7:CD:02:83:88:8B:C4:C8:AC:34:6A:41:2F:B0:6F:26
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01857247002493489F203BC0DEDA935DB8B2
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/hRtvyrfNAoOIi8TIrDRqQS-wbyY.roa
Signing time: Mon 02 Jan 2023 11:38:53 +0000
ROA not before: Mon 02 Jan 2023 11:38:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39556
IP address blocks: 185.232.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:00:24:93:48:9f:20:3b:c0:de:da:93:5d:b8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=851b6fcab7cd0283888bc4c8ac346a412fb06f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e8:98:3f:6b:f8:c5:c5:16:c2:bb:99:9e:6f:
40:4d:08:3c:b8:94:c8:9e:32:64:12:23:2c:a0:9b:
c4:75:3c:2b:02:14:47:30:32:2c:24:96:61:28:6f:
54:3a:71:f8:78:44:68:5d:fd:ac:03:bc:77:61:10:
8b:2a:46:31:2f:32:57:8f:7d:fa:6e:0f:40:d9:29:
ac:20:47:dc:08:d8:db:da:92:52:e1:1e:49:39:a9:
d4:82:b3:4e:0e:02:3d:1b:94:81:7f:fe:6a:50:5b:
8e:55:e8:18:c9:5b:f4:4b:81:b0:d5:de:54:e7:67:
52:9c:e0:82:d0:d8:41:04:15:63:fa:d9:54:d4:ea:
d5:54:a1:2c:35:8a:d3:d0:5e:b6:6c:21:e8:dc:03:
68:71:ae:de:55:10:b0:d6:72:dd:49:2b:5a:c1:e2:
c3:b2:a2:4e:f5:ab:95:01:50:0e:e7:16:c4:74:5e:
e0:28:8d:5d:f6:e6:79:e6:e1:27:1d:34:1c:51:bf:
b6:24:2f:0e:4b:a2:b2:85:58:fb:da:10:4b:10:7e:
37:ac:ed:76:19:35:5b:2e:74:1b:67:3c:4b:5d:ea:
65:6f:8a:62:52:9e:38:26:35:b5:1a:5c:02:73:07:
d1:7b:24:37:2f:f1:ee:36:5c:fe:0b:80:9b:7d:cb:
9d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1B:6F:CA:B7:CD:02:83:88:8B:C4:C8:AC:34:6A:41:2F:B0:6F:26
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/hRtvyrfNAoOIi8TIrDRqQS-wbyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.28.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:43:f0:0f:4a:96:5b:66:84:c2:54:65:93:9b:04:10:55:81:
09:49:41:2c:fa:f8:8c:de:dd:b4:a6:23:b2:7c:97:b6:2f:90:
39:56:96:25:5f:28:e8:61:7a:9d:ab:1e:3c:d0:8b:96:de:52:
21:ba:e1:95:a3:ea:64:84:86:54:e3:c2:85:7e:e1:01:5e:bc:
f2:65:cd:6a:24:a5:69:9a:ef:8e:d6:80:57:3c:02:85:2a:2c:
4b:91:b9:52:fe:59:fa:06:7e:72:d4:fa:f0:27:08:60:44:eb:
c7:2f:85:a3:e4:ee:8d:95:24:a7:01:f6:31:49:70:ba:3b:01:
d0:13:a9:53:98:54:e6:bc:b8:b8:4f:96:23:60:90:ca:1c:f0:
81:1b:ab:c5:3b:cd:19:4c:e4:03:9a:52:0f:f1:91:41:cd:a4:
18:15:02:9a:38:a4:ba:3d:d2:8c:cc:54:82:82:8b:64:3a:8d:
2f:d0:9a:5c:8f:40:06:ef:5a:00:d2:dc:06:cc:f3:c5:f0:c2:
79:63:61:71:db:6f:8c:f8:a2:e4:e3:55:2a:29:20:67:aa:32:
2f:14:64:cf:93:ea:34:67:55:e4:b9:e4:7e:89:18:b1:ba:05:
14:43:f6:76:97:09:34:fc:86:b1:42:20:90:31:6f:38:51:2a:
14:ce:55:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:29 2024 by rpki-client on console-fra.rpki-client.org