Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/_tXvH59wPWpcX4j9-1qCEtqccJk.roa
File: _tXvH59wPWpcX4j9-1qCEtqccJk.roa (raw, json)
Hash identifier: UTVd0qzK+FDa+Do5mDulQhnr4wqjBkekYlICmV/BTSM=
Subject key identifier: FE:D5:EF:1F:9F:70:3D:6A:5C:5F:88:FD:FB:5A:82:12:DA:9C:70:99
Certificate issuer: /CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Certificate serial: 018572F12C119C1A46938428E464CB1361F8
Authority key identifier: 7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/_tXvH59wPWpcX4j9-1qCEtqccJk.roa
Signing time: Mon 02 Jan 2023 14:44:46 +0000
ROA not before: Mon 02 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61094
IP address blocks: 185.187.136.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:2c:11:9c:1a:46:93:84:28:e4:64:cb:13:61:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Validity
Not Before: Jan 2 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fed5ef1f9f703d6a5c5f88fdfb5a8212da9c7099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3f:9b:09:4b:26:94:76:b4:c0:a6:ca:37:fb:
23:e6:dd:e6:10:e7:7e:d4:86:09:fb:1d:4f:65:ae:
1f:8f:fb:9f:00:97:6b:ec:6b:6f:53:55:b4:f9:8f:
4c:6b:56:44:d6:eb:3e:7c:19:4c:c8:b8:5e:80:06:
e4:1e:37:fe:ce:72:21:c2:d9:78:a6:60:9b:65:dc:
99:70:26:5b:f6:46:e7:09:ea:2e:64:44:48:70:fc:
1c:aa:c3:79:a7:a3:fb:95:61:a2:36:0a:1b:12:0d:
96:c5:a2:4d:eb:73:b8:9f:f7:2d:4e:62:f9:c9:78:
fe:e0:07:8f:d1:39:f4:7e:4b:4b:01:b6:5e:19:f3:
7c:2a:7e:c6:b6:50:61:47:f6:e4:92:ad:c5:3b:b3:
eb:43:df:a5:00:5b:cc:90:6a:03:73:1e:ac:eb:08:
1b:c9:41:28:43:f4:8b:c8:e9:ea:33:e1:00:6f:8d:
d2:dc:d4:d1:64:cf:84:e2:be:92:a2:3f:2d:72:0d:
6b:b7:25:50:6c:d4:87:45:6f:55:85:94:06:03:8c:
e9:59:94:a1:c1:94:e7:5e:56:83:35:30:97:be:c0:
18:5e:59:03:52:ca:fd:d8:94:c5:d4:90:5d:ec:1f:
50:d8:9d:2b:bd:97:be:db:48:47:53:7a:1a:0b:10:
7b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D5:EF:1F:9F:70:3D:6A:5C:5F:88:FD:FB:5A:82:12:DA:9C:70:99
X509v3 Authority Key Identifier:
keyid:7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/_tXvH59wPWpcX4j9-1qCEtqccJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/fSoBIksdqGSAz-y8tsUt-YEpaOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.136.0/23
Signature Algorithm: sha256WithRSAEncryption
46:e1:46:c5:21:28:d5:11:3d:3a:b3:79:64:fc:35:dc:23:36:
86:87:af:c1:72:49:03:0e:cb:ab:1a:68:da:9b:1e:1a:81:c0:
61:86:68:bb:b5:17:94:65:48:4a:8b:b6:06:c2:a1:91:25:c4:
d1:56:04:87:10:23:44:34:64:d9:d5:e8:07:da:08:f1:6a:9a:
58:0c:73:0e:b2:40:70:d3:b8:29:95:2b:45:fe:4e:50:f2:13:
ba:29:80:39:fd:f7:41:67:c1:1f:1c:c6:af:5a:78:02:e9:72:
b3:a3:82:22:5b:c1:73:8e:23:1f:c2:66:8f:2a:df:b9:b0:b9:
9c:18:cc:70:b1:bc:ec:31:e6:4a:f1:4c:e8:da:06:f8:72:6f:
e3:0e:d6:9c:74:d8:c0:d2:fd:2d:36:61:a8:06:39:fb:bc:e4:
86:cb:91:8c:8b:1b:93:8c:5d:28:2e:45:fa:43:0a:49:dd:6d:
29:2e:18:99:1e:7a:bb:d0:59:c9:a6:48:fd:30:9d:8c:54:c7:
bd:0d:38:3c:bc:32:68:1c:ec:64:d8:f7:ea:96:07:08:b6:e0:
dc:99:4f:79:3c:88:a6:9b:75:33:b0:96:f7:01:31:f0:c4:74:
79:ce:d8:21:72:70:29:15:65:9c:11:17:17:e2:28:a8:f4:34:
02:c5:9c:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:37 2024 by rpki-client on console-fra.rpki-client.org