Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/_CBvNQDO3behzj3RED0wSmkGEcU.roa
File: _CBvNQDO3behzj3RED0wSmkGEcU.roa (raw, json)
Hash identifier: DFxQfCqvBjzk95n0r6bSqtoGRSDzda+MEbNEox4L8U8=
Subject key identifier: FC:20:6F:35:00:CE:DD:B7:A1:CE:3D:D1:10:3D:30:4A:69:06:11:C5
Certificate issuer: /CN=e6135d639768a3a63ed9c5ff40af5ed01df741cb
Certificate serial: 0185728CACFA2B0D27EDF8B9D5C3F4C63327
Authority key identifier: E6:13:5D:63:97:68:A3:A6:3E:D9:C5:FF:40:AF:5E:D0:1D:F7:41:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hNdY5doo6Y-2cX_QK9e0B33Qcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/_CBvNQDO3behzj3RED0wSmkGEcU.roa
Signing time: Mon 02 Jan 2023 12:55:00 +0000
ROA not before: Mon 02 Jan 2023 12:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203714
IP address blocks: 176.53.180.0/23 maxlen: 23
176.53.182.0/23 maxlen: 23
185.207.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:ac:fa:2b:0d:27:ed:f8:b9:d5:c3:f4:c6:33:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6135d639768a3a63ed9c5ff40af5ed01df741cb
Validity
Not Before: Jan 2 12:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc206f3500ceddb7a1ce3dd1103d304a690611c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e3:e5:ec:08:7a:ac:83:aa:ee:38:d6:c8:3d:
9b:44:1f:60:98:41:9e:db:2b:2a:a5:c1:fa:eb:c7:
35:23:7a:04:89:76:13:fe:cc:01:1c:a6:e5:11:4d:
5c:0a:96:fd:55:d2:2c:42:2d:4f:61:27:a4:67:47:
18:15:9f:1b:dd:6e:c9:3e:ac:23:46:76:25:19:27:
f9:c6:58:77:17:85:77:8c:7d:6b:99:30:45:3e:df:
4e:c8:d7:9a:40:18:c2:b8:7c:7d:75:19:db:2d:f0:
10:44:06:4b:73:52:27:51:17:ef:d0:b5:29:8a:6d:
ad:63:d2:8b:46:7e:65:37:7f:02:b0:5f:ae:bd:6c:
04:65:f6:40:2b:81:73:71:af:19:98:1f:fd:3c:31:
af:ba:a6:6a:2d:9a:00:36:c2:af:54:ff:8f:e5:ae:
54:fc:85:ff:bd:5b:da:80:91:bd:c3:e1:c5:04:ce:
36:da:ad:ac:a0:f0:8c:6c:22:6e:a4:9a:0f:31:a4:
b1:53:27:28:0a:95:b6:6b:ce:ce:ee:50:93:59:c1:
a3:ce:c2:04:3d:17:93:a6:50:4a:99:5e:fc:83:9a:
95:05:e1:57:12:47:09:06:74:e1:07:69:81:81:72:
28:6d:29:cc:01:74:11:02:4f:08:82:06:04:5f:6e:
d1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:20:6F:35:00:CE:DD:B7:A1:CE:3D:D1:10:3D:30:4A:69:06:11:C5
X509v3 Authority Key Identifier:
keyid:E6:13:5D:63:97:68:A3:A6:3E:D9:C5:FF:40:AF:5E:D0:1D:F7:41:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hNdY5doo6Y-2cX_QK9e0B33Qcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/_CBvNQDO3behzj3RED0wSmkGEcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/5hNdY5doo6Y-2cX_QK9e0B33Qcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.180.0/22
185.207.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:62:3b:19:20:7b:dd:c1:20:33:22:01:3c:9c:a4:5d:a2:21:
36:e2:66:6e:30:7a:41:85:13:93:19:e8:6e:00:be:cb:27:3c:
95:1b:9b:44:5c:ce:8e:b9:2b:46:46:6b:5d:b1:44:f1:a4:f1:
b2:50:a1:81:06:05:7b:be:84:0a:f9:32:5e:48:8d:44:c5:f4:
c4:06:37:76:96:10:c5:29:42:9a:72:9b:9a:6a:dc:ed:03:a2:
73:d7:07:c1:fb:f7:b8:ad:40:99:b2:9e:5e:f7:04:f5:96:56:
5d:f5:7a:73:c7:be:42:1f:22:f2:bd:be:bd:dc:43:5e:85:d6:
67:c1:79:f1:2d:01:3f:7a:bd:85:c3:32:40:4e:ff:16:52:c1:
93:f8:37:b7:a9:cc:80:2e:55:8d:c9:11:a5:30:4b:82:33:c2:
ee:2f:20:5c:d1:41:d1:12:44:ba:be:2c:38:3b:2d:e2:09:c9:
59:ea:3d:a1:3e:96:b8:f3:86:f0:34:c4:0f:8c:04:0f:8c:2b:
b6:5f:0b:79:db:1b:ff:21:af:73:b1:54:f2:f3:7c:ee:a7:cc:
67:36:05:ae:0a:02:29:2a:a5:31:7a:08:68:dc:02:be:0a:a0:
c1:37:f2:85:e0:cf:8a:e1:80:4a:b7:98:44:64:14:76:c8:ae:
1a:94:83:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:46 2024 by rpki-client on console-fra.rpki-client.org