Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/7TnJa64HS5HublN1VBlI5lLqVvc.roa
File: 7TnJa64HS5HublN1VBlI5lLqVvc.roa (raw, json)
Hash identifier: mHFS9C3t+Z30QBO/pIb9RwESEtLwly9bOaVjFufk0z0=
Subject key identifier: ED:39:C9:6B:AE:07:4B:91:EE:6E:53:75:54:19:48:E6:52:EA:56:F7
Certificate issuer: /CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Certificate serial: 018572A80310BCD60304E5FD51DD4EE38F6D
Authority key identifier: 99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/7TnJa64HS5HublN1VBlI5lLqVvc.roa
Signing time: Mon 02 Jan 2023 13:24:51 +0000
ROA not before: Mon 02 Jan 2023 13:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44243
IP address blocks: 185.178.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:03:10:bc:d6:03:04:e5:fd:51:dd:4e:e3:8f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Validity
Not Before: Jan 2 13:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed39c96bae074b91ee6e5375541948e652ea56f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c9:b7:eb:a0:f2:b3:c3:3f:9e:90:fe:57:51:
d3:c0:6d:2b:09:fd:7f:3b:31:5b:3d:9e:d9:fc:53:
36:e1:fb:87:b1:9a:70:24:ee:91:71:72:92:91:86:
ad:7e:e2:2b:88:b6:ee:18:70:06:87:af:07:3b:73:
3c:80:45:9e:f2:ab:1b:b5:0b:ea:f8:03:ee:bd:0b:
f9:fc:50:75:e3:6b:a0:4a:ce:3b:30:dc:66:33:75:
0a:b1:39:9c:7f:87:7e:c1:10:c9:9d:a8:e7:e7:4e:
e3:ad:07:b5:ec:7a:ab:2b:02:3a:04:d7:c9:04:ac:
a8:2c:66:be:e3:33:4f:eb:e7:5c:a4:db:b0:b0:aa:
67:0d:cf:ca:9a:cb:ab:72:c7:d3:c6:78:07:24:e9:
53:17:93:e9:5d:b2:fe:90:8f:73:18:e0:31:b2:6e:
1a:8e:a9:3c:e6:1b:b7:a0:2e:59:88:be:68:8a:06:
75:f1:11:bf:cd:9d:85:0a:33:24:cd:54:ce:48:ab:
32:59:af:4c:d6:9d:cc:b2:e4:b1:f5:c0:ae:1b:36:
51:08:31:24:c2:76:b9:5a:3f:d9:18:80:9d:96:68:
f3:6c:c5:59:89:4c:cc:a4:2b:70:11:f2:2b:8d:06:
95:c5:6d:4b:dd:47:35:03:98:b8:e9:bd:67:f6:a7:
c6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:39:C9:6B:AE:07:4B:91:EE:6E:53:75:54:19:48:E6:52:EA:56:F7
X509v3 Authority Key Identifier:
keyid:99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/7TnJa64HS5HublN1VBlI5lLqVvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/mRf3d-caw0Ei7bNe3WDPFNdbnvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.104.0/22
Signature Algorithm: sha256WithRSAEncryption
74:b2:92:a9:2c:31:75:f7:6d:91:e3:c9:ca:d6:5e:1a:7a:46:
2b:c2:31:10:c4:a4:86:ed:60:3a:dc:69:0b:14:b0:58:c6:f5:
04:49:60:73:a9:a0:b8:95:40:18:e4:77:12:c0:9d:5e:bc:16:
34:43:7d:a1:9d:ff:85:19:c8:2b:9e:f4:c8:d4:53:1e:78:c1:
d4:12:4d:78:2f:46:39:55:7e:4f:60:bb:bc:a0:43:17:e9:0f:
67:70:31:83:1c:28:84:9c:be:55:3c:43:4d:3f:78:44:e8:16:
b4:a3:b5:a7:ce:95:00:70:f7:63:42:d4:78:bf:e9:79:20:be:
0d:10:63:5e:d0:ea:d3:9b:17:73:31:c4:cc:77:67:9b:66:cc:
6f:e2:6f:1c:67:9b:2b:be:56:a6:eb:cb:ec:da:f9:73:f2:7c:
c3:34:c2:5f:9f:ed:78:e7:92:54:84:75:33:8a:e1:09:91:03:
8f:76:c2:29:f2:dd:91:8c:61:9c:d0:db:6f:77:18:01:5a:89:
cc:12:f4:90:e2:f3:e9:57:19:53:df:37:39:bb:fb:ec:c6:8b:
fe:2a:9a:3c:e4:33:43:09:ea:c7:a1:20:19:35:4f:09:41:de:
11:44:53:c6:85:d8:70:a5:74:a0:7c:bd:f1:9a:16:46:00:0b:
73:07:9c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:16 2024 by rpki-client on console-ams.rpki-client.org