Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/y0rtq1NzrXNySU22nokIWgj9cGE.roa
File: y0rtq1NzrXNySU22nokIWgj9cGE.roa (raw, json)
Hash identifier: Xc4P/wERAn+d8w+lCZJF09ekfbl5FqlRqjeEKZoPOVo=
Subject key identifier: CB:4A:ED:AB:53:73:AD:73:72:49:4D:B6:9E:89:08:5A:08:FD:70:61
Certificate issuer: /CN=dc6baa601236ab9bea29f807a66920ed5656a196
Certificate serial: 01856C0A58ABE3A2A2B0803A2F5244461B0D
Authority key identifier: DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/y0rtq1NzrXNySU22nokIWgj9cGE.roa
Signing time: Sun 01 Jan 2023 06:34:55 +0000
ROA not before: Sun 01 Jan 2023 06:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51580
IP address blocks: 185.180.182.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:58:ab:e3:a2:a2:b0:80:3a:2f:52:44:46:1b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6baa601236ab9bea29f807a66920ed5656a196
Validity
Not Before: Jan 1 06:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb4aedab5373ad7372494db69e89085a08fd7061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:b5:4e:11:95:36:03:d6:1f:8d:58:5d:1d:
8c:37:6a:31:73:96:21:df:3c:7e:ef:f6:a4:e9:bc:
43:1c:09:11:92:42:54:24:43:ef:de:38:d2:a6:f0:
37:f0:10:e2:23:47:f2:50:e0:55:28:c6:02:46:a7:
d2:42:44:ae:a6:f0:88:e7:a6:65:0d:5a:d8:47:49:
1a:2f:db:b5:55:32:da:ea:d1:09:98:69:19:c6:35:
5f:ff:c9:10:32:0f:d0:3f:e8:fd:9f:3d:61:6e:8a:
34:80:33:03:52:b0:a4:80:8c:c6:ae:ce:e2:15:37:
9f:66:d7:a6:10:9d:9c:7e:f7:0d:39:a0:7e:91:65:
54:8f:a3:8b:f1:64:70:77:1b:2d:d7:ea:b9:f9:e1:
06:ff:15:ef:64:b4:b5:1b:e5:65:4c:ed:f7:f5:7c:
99:9c:59:b4:ef:f6:40:26:59:a8:92:6f:6d:dd:8a:
27:14:62:81:46:8b:51:7d:55:5f:0a:b1:02:86:c3:
12:6d:87:f5:3e:da:a9:60:bb:a5:34:70:85:ac:05:
e4:40:5f:69:02:f4:e0:52:c6:b1:2b:89:bf:5a:71:
06:7d:04:19:ee:fe:0e:1f:47:90:35:b2:0e:1f:ab:
2b:78:f4:e6:d7:c9:58:c9:8c:1c:dd:ca:5f:65:53:
86:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4A:ED:AB:53:73:AD:73:72:49:4D:B6:9E:89:08:5A:08:FD:70:61
X509v3 Authority Key Identifier:
keyid:DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/y0rtq1NzrXNySU22nokIWgj9cGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.182.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:bc:b9:05:e9:d8:37:3e:e1:ca:0f:30:cb:df:7b:c5:b6:7d:
37:2a:94:d3:56:51:00:73:00:e2:ed:d4:c6:b1:9d:da:a5:b3:
40:ff:d2:7b:63:f4:bd:76:34:b6:bf:45:9b:92:23:01:8b:cb:
4d:2f:b0:da:82:09:3c:8e:65:4a:f0:5d:7f:3d:7b:42:7b:bd:
26:53:f9:7b:f1:0a:7f:04:8c:4e:ac:89:13:c7:88:2b:db:cb:
09:17:97:4c:85:68:69:80:4a:e6:b6:20:74:80:f4:fb:6b:6b:
ca:6e:ea:fa:90:69:8b:d8:00:ca:a1:0a:eb:e0:d1:bf:9d:ed:
37:63:72:9a:9d:2c:97:24:d5:10:6d:98:a3:82:5a:ea:e8:4e:
da:e9:ae:88:f6:76:c3:12:41:63:9b:80:2c:26:42:2e:b2:99:
24:da:f5:1b:d1:cc:78:34:1e:45:fc:d2:ec:cf:11:ff:56:ab:
04:d7:4c:99:ca:8d:6c:3a:fc:1b:a8:1f:fb:ac:bc:be:e9:32:
89:aa:cc:fd:12:c7:43:da:25:fa:3c:9f:12:ea:8d:8e:88:d4:
a2:7b:2c:dc:20:fe:05:a8:b6:ab:0c:a5:4f:a1:e6:4b:d2:34:
ec:54:e3:d0:54:8c:74:e4:84:81:e4:c5:1e:4c:1c:de:d3:6b:
50:65:ac:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org