Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/c9db52-ac91-406a-9f95-080ee0a97f6a/1/tAXpegPaHufLuk8sU_vYSxtkdBs.roa
File: tAXpegPaHufLuk8sU_vYSxtkdBs.roa (raw, json)
Hash identifier: wn+BT9nx6ycaerI+IPoaS1lKitOCVp9dQckWRP0OadU=
Subject key identifier: B4:05:E9:7A:03:DA:1E:E7:CB:BA:4F:2C:53:FB:D8:4B:1B:64:74:1B
Certificate issuer: /CN=f85d004446182d51fd38f7f75fe2a5c8608bc86d
Certificate serial: 01856F54991324CC93A19C8804D31C24FD47
Authority key identifier: F8:5D:00:44:46:18:2D:51:FD:38:F7:F7:5F:E2:A5:C8:60:8B:C8:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-F0AREYYLVH9OPf3X-KlyGCLyG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/c9db52-ac91-406a-9f95-080ee0a97f6a/1/tAXpegPaHufLuk8sU_vYSxtkdBs.roa
Signing time: Sun 01 Jan 2023 21:54:53 +0000
ROA not before: Sun 01 Jan 2023 21:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 185.57.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:99:13:24:cc:93:a1:9c:88:04:d3:1c:24:fd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f85d004446182d51fd38f7f75fe2a5c8608bc86d
Validity
Not Before: Jan 1 21:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b405e97a03da1ee7cbba4f2c53fbd84b1b64741b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b6:58:f0:74:5a:f2:5e:f5:54:56:10:0b:d5:
f3:d6:98:3c:f0:a9:ca:c3:e9:17:51:5a:dc:0e:95:
60:16:11:c1:9c:09:af:62:f2:cc:a2:5c:c3:ae:87:
d2:7f:e2:7c:e3:5b:16:82:f2:b7:b4:e5:2b:1a:59:
a3:6e:a5:10:c5:d2:54:67:b8:6f:81:1d:24:6d:91:
98:1b:68:fe:72:9b:4b:26:69:2e:9c:6b:01:5d:c5:
f8:55:15:9e:26:92:b9:32:0c:8f:7a:b8:89:30:83:
71:a3:4c:ba:41:70:a3:31:07:a8:cd:cf:45:74:f9:
f1:c4:a9:f1:55:a0:14:9b:c7:6b:f3:be:f1:28:0c:
bd:4b:07:3b:8f:01:a0:ee:c0:73:3b:a4:ff:6e:40:
8e:3f:3b:04:05:f3:28:65:aa:a8:88:3f:24:8c:e0:
46:6d:ee:d2:7a:83:b3:82:b9:b7:fa:b7:d1:de:7e:
d1:53:f0:8b:7e:d1:30:b8:73:23:a5:30:26:3b:86:
a2:9f:e5:3f:0a:08:24:90:4a:70:8b:98:c9:d9:88:
2d:fe:3b:96:44:81:d4:1b:57:4a:00:d1:1e:a4:9a:
bc:78:77:86:7c:8f:7d:c4:88:c9:88:67:91:9b:c1:
63:30:25:4b:08:b0:44:be:c4:16:d9:9a:00:aa:3f:
47:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:05:E9:7A:03:DA:1E:E7:CB:BA:4F:2C:53:FB:D8:4B:1B:64:74:1B
X509v3 Authority Key Identifier:
keyid:F8:5D:00:44:46:18:2D:51:FD:38:F7:F7:5F:E2:A5:C8:60:8B:C8:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-F0AREYYLVH9OPf3X-KlyGCLyG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/c9db52-ac91-406a-9f95-080ee0a97f6a/1/tAXpegPaHufLuk8sU_vYSxtkdBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/c9db52-ac91-406a-9f95-080ee0a97f6a/1/1-F0AREYYLVH9OPf3X-KlyGCLyG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.51.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:41:3d:db:be:e3:2f:6f:ac:27:b5:99:3a:1c:ce:06:a1:18:
02:8f:88:71:61:2f:bc:18:6f:bf:cb:be:92:cf:c2:3f:66:b0:
01:a3:72:24:68:41:93:ac:02:3a:fe:98:07:b8:99:7b:7f:79:
0d:26:0b:a7:30:fc:89:f1:1f:d6:47:69:b8:86:86:18:50:77:
18:de:9e:12:80:d9:3e:86:9f:d8:cf:14:bb:89:f8:eb:4f:d5:
2a:6f:c2:d5:f9:86:95:ef:95:ea:d9:97:64:4a:72:6b:93:51:
a1:2e:0c:06:72:71:76:fc:10:db:8e:8b:d2:69:ad:58:35:ed:
fc:65:8f:5f:35:ed:89:e5:1e:90:7c:08:8b:ac:e9:f4:27:fb:
62:4f:94:d4:c0:3b:0e:b5:6b:18:7a:76:9e:d8:a0:05:6a:00:
71:a8:4d:0e:1c:72:a6:fd:d0:ab:7e:97:2f:a0:0c:bd:02:a6:
b4:45:10:29:2b:ac:c5:15:9a:87:84:5a:0b:7d:10:00:95:3c:
11:5f:d3:23:19:70:6b:b9:cc:53:16:d4:69:2f:b9:f7:8c:7a:
62:bc:9e:47:71:1e:ac:d7:7f:5f:00:83:09:7e:43:f6:bf:a8:
2a:42:61:c0:cd:91:1c:4a:7c:02:66:9f:0d:a0:98:7d:82:7d:
fb:92:8a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:36 2024 by rpki-client on console-fra.rpki-client.org