Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/PPgWxcVm2tFkUBLyBrewuMRVcuY.roa
File: PPgWxcVm2tFkUBLyBrewuMRVcuY.roa (raw, json)
Hash identifier: 9k2opWvG7LyjJCk8Eux9ZzqTbFlSa4XNoPkGt3r1EEM=
Subject key identifier: 3C:F8:16:C5:C5:66:DA:D1:64:50:12:F2:06:B7:B0:B8:C4:55:72:E6
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 018C20301344AE3BCFF8585B8C5DF8AF14A3
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/PPgWxcVm2tFkUBLyBrewuMRVcuY.roa
Signing time: Thu 30 Nov 2023 12:24:30 +0000
ROA not before: Thu 30 Nov 2023 12:24:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48551
IP address blocks: 185.161.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:30:13:44:ae:3b:cf:f8:58:5b:8c:5d:f8:af:14:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Nov 30 12:24:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cf816c5c566dad1645012f206b7b0b8c45572e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:93:9a:30:b1:a7:bb:53:26:62:40:aa:24:41:
d7:83:bd:2a:cb:8d:f1:a5:cf:b8:85:b0:bf:cf:f5:
0a:1b:98:34:2b:63:eb:64:2b:67:46:b0:dc:54:47:
48:a7:36:7b:d3:d1:81:da:e6:7e:24:86:fe:54:e7:
11:a0:7c:98:1f:40:96:53:67:a5:45:c1:79:fa:1e:
1e:d5:eb:06:1c:7c:0a:2d:2d:0e:a5:e1:07:ba:db:
37:2b:54:9c:03:7f:a2:0a:84:af:c3:a3:3f:7e:b3:
1b:26:aa:a9:29:5d:d2:42:a4:92:a7:c1:2d:8f:b3:
50:f1:f5:31:c4:7d:01:2c:e3:1a:8a:b9:cd:36:28:
77:a5:ba:1b:4e:6c:5a:51:cf:19:26:a3:a8:24:f3:
58:6a:f8:a6:bd:c5:e5:32:74:3b:5f:77:a7:38:df:
b3:f8:18:14:2c:89:22:c6:2e:c1:c0:cc:3b:b2:dc:
0c:cb:62:ce:3b:a1:b1:fb:e5:f4:2b:85:76:af:91:
15:67:84:da:a8:31:3e:2d:0f:20:3a:6f:49:20:2d:
e3:68:aa:45:24:a4:60:05:96:30:31:15:85:02:d8:
61:cc:c7:3c:cc:f5:48:ee:15:9e:50:b3:09:b4:24:
49:09:92:28:f5:e0:43:16:18:99:f0:af:38:3b:58:
e4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F8:16:C5:C5:66:DA:D1:64:50:12:F2:06:B7:B0:B8:C4:55:72:E6
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/PPgWxcVm2tFkUBLyBrewuMRVcuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.121.0/24
Signature Algorithm: sha256WithRSAEncryption
92:06:39:70:ed:02:3b:8c:39:bb:3b:ca:0d:5c:fb:da:7b:eb:
81:d8:bf:dd:d1:54:ce:d7:c4:22:ab:cd:d9:ca:fb:78:af:b3:
e4:69:2e:26:f1:e8:c0:2b:96:0b:21:8f:10:cc:dc:5c:b0:c3:
92:04:76:db:e2:d4:6d:c9:c3:af:40:3a:41:05:6c:00:79:a5:
5f:f1:04:9f:aa:49:2f:88:30:90:94:e5:8f:7d:97:08:1f:82:
68:5e:1d:eb:9f:4c:5b:c8:a0:15:4d:2a:47:e6:3e:76:70:2e:
8f:25:12:e0:41:88:70:aa:9e:fc:81:aa:0a:a0:a2:9d:49:7d:
c6:1c:77:cf:a2:a5:2e:8b:30:70:ec:57:fc:4d:ee:97:bb:ca:
5b:4d:55:ce:15:87:a3:3c:35:8e:df:56:3e:08:dc:3a:73:79:
c8:a8:40:68:3e:1c:52:24:62:9f:3f:ef:59:3a:ee:af:7f:83:
f7:c6:97:b6:b5:70:56:96:d9:5f:c8:44:2c:7e:88:63:1c:8d:
ce:1d:ec:d9:3b:29:a5:3c:ff:a9:38:fa:37:26:d6:a7:4c:87:
f8:f2:44:93:71:40:95:d5:e6:b3:9d:6e:42:96:aa:d2:98:75:
a7:00:9f:0c:41:ad:0b:44:8d:89:ec:97:b6:eb:d0:4c:9a:e1:
ca:47:d7:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:17 2024 by rpki-client on console-fra.rpki-client.org