Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/6omjQ15YQoqPHqqPWLXDD1B3ffs.roa
File: 6omjQ15YQoqPHqqPWLXDD1B3ffs.roa (raw, json)
Hash identifier: OTyFylPwD8aMgdxc+aNUJh9j+sU435ubKt6yh5puv78=
Subject key identifier: EA:89:A3:43:5E:58:42:8A:8F:1E:AA:8F:58:B5:C3:0F:50:77:7D:FB
Certificate issuer: /CN=2bcee4d9523f15291c57675fd26dc950a7cd5550
Certificate serial: 01856F1DAF65B4FBF8AC526DD0935DCD0BB5
Authority key identifier: 2B:CE:E4:D9:52:3F:15:29:1C:57:67:5F:D2:6D:C9:50:A7:CD:55:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K87k2VI_FSkcV2df0m3JUKfNVVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/6omjQ15YQoqPHqqPWLXDD1B3ffs.roa
Signing time: Sun 01 Jan 2023 20:54:54 +0000
ROA not before: Sun 01 Jan 2023 20:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206606
IP address blocks: 185.177.160.0/22 maxlen: 22
2a0a:3e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:af:65:b4:fb:f8:ac:52:6d:d0:93:5d:cd:0b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bcee4d9523f15291c57675fd26dc950a7cd5550
Validity
Not Before: Jan 1 20:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea89a3435e58428a8f1eaa8f58b5c30f50777dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:67:83:1e:53:b5:d9:68:06:bb:41:99:c9:3d:
b1:64:57:30:57:99:56:41:77:a2:5a:f6:fa:f1:3b:
cb:a5:a3:c7:0f:38:33:ce:32:a8:60:a9:bf:13:fa:
97:4e:6c:ec:e5:69:94:32:e3:44:b2:29:50:80:f6:
a6:8d:1e:2a:d7:09:cd:e0:ac:56:c5:15:52:9f:6e:
0b:3d:25:f4:c5:4c:f3:64:fe:ec:d1:d8:7e:6d:b2:
e0:55:b0:10:b9:58:bc:e7:9f:aa:a8:20:68:2f:43:
72:1e:d9:69:61:60:47:ea:80:d7:e6:4a:ff:f7:f5:
7e:01:2f:9b:76:93:51:2f:37:a6:61:a1:77:d0:ca:
3f:b7:e3:e2:d0:79:af:22:98:72:7f:3d:19:44:e4:
ca:18:fc:77:65:d7:f2:1d:33:2f:9b:54:33:43:ed:
24:eb:d8:22:0e:d0:b7:45:41:cb:a3:a8:64:32:18:
5a:2c:f2:7e:cf:d5:dd:bd:c1:b7:cb:22:99:76:85:
63:dd:5f:45:03:96:22:3a:dd:8b:5b:98:39:fe:99:
7b:05:8e:d7:3a:24:6c:2c:b8:b7:d8:67:f3:2c:20:
d3:a4:9e:2f:13:b3:aa:98:09:d4:d6:23:1d:eb:fc:
e0:16:0e:7d:0c:59:8d:f8:32:70:ea:d4:a4:7b:e5:
d0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:89:A3:43:5E:58:42:8A:8F:1E:AA:8F:58:B5:C3:0F:50:77:7D:FB
X509v3 Authority Key Identifier:
keyid:2B:CE:E4:D9:52:3F:15:29:1C:57:67:5F:D2:6D:C9:50:A7:CD:55:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K87k2VI_FSkcV2df0m3JUKfNVVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/6omjQ15YQoqPHqqPWLXDD1B3ffs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/K87k2VI_FSkcV2df0m3JUKfNVVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.160.0/22
IPv6:
2a0a:3e80::/29
Signature Algorithm: sha256WithRSAEncryption
93:f5:52:61:dc:91:a2:ba:62:0a:88:63:90:60:67:ea:a8:88:
21:57:a1:52:87:1f:c7:02:b4:65:6d:ad:df:bd:3c:54:78:a2:
71:23:b7:47:4f:e3:18:9b:fd:5c:d5:2a:76:ca:22:d6:d5:e1:
4f:b0:94:e1:ec:51:18:ff:6c:c6:83:9f:0a:be:8f:f5:66:42:
06:09:30:e7:b2:d5:5f:0a:fd:1d:dc:07:9e:86:ea:05:12:07:
c5:e3:1a:00:27:f7:5d:6d:c1:40:41:70:b8:31:b6:f1:f9:3a:
62:c0:84:1a:12:c6:53:6d:06:ee:bc:04:2d:65:1f:51:cd:d5:
1b:e5:15:bb:b6:7f:e3:dd:97:54:01:e4:1e:3f:36:23:6e:9c:
a8:3b:6c:46:e2:7b:d0:85:75:b2:af:99:bc:46:cb:13:e1:94:
26:d8:7a:63:7a:ab:25:5c:5a:cd:ea:4a:5b:02:3c:fd:46:ab:
c4:87:1b:2e:59:a6:88:52:a7:91:e3:de:df:49:d1:77:3f:08:
63:bb:c3:88:f0:8d:e2:5a:0e:48:11:d6:81:8b:72:da:9b:8e:
a2:96:08:3d:fa:4c:1e:81:5e:1a:ed:2d:69:e2:36:40:30:73:
b3:2c:d4:7e:13:3d:1f:8d:50:d9:8d:b2:19:4c:3a:0b:0b:a5:
a1:69:4e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:55 2024 by rpki-client on console-fra.rpki-client.org