Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/fTacoJ2t0VrtQaf_6RgBbtaaQ0I.roa
File: fTacoJ2t0VrtQaf_6RgBbtaaQ0I.roa (raw, json)
Hash identifier: RT7Qib+cnQxRpGlzUmN1OmkbUd66QeVReZxsfGGCF6I=
Subject key identifier: 7D:36:9C:A0:9D:AD:D1:5A:ED:41:A7:FF:E9:18:01:6E:D6:9A:43:42
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 018570427F697D69FDF99CEE51C66E639E08
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/fTacoJ2t0VrtQaf_6RgBbtaaQ0I.roa
Signing time: Mon 02 Jan 2023 02:14:44 +0000
ROA not before: Mon 02 Jan 2023 02:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133480
IP address blocks: 185.54.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:7f:69:7d:69:fd:f9:9c:ee:51:c6:6e:63:9e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: Jan 2 02:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d369ca09dadd15aed41a7ffe918016ed69a4342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fb:2b:0e:cb:75:ac:19:d6:c2:97:5e:3b:53:
2f:30:5b:e7:cd:77:cf:fe:6a:f3:c5:d6:b4:0a:e3:
9a:ff:d8:76:6c:05:cf:ba:5c:58:7a:90:3e:7d:39:
1e:2d:01:b8:12:14:cb:58:37:15:f3:fb:fd:7c:06:
36:47:24:5c:30:8b:67:d7:24:d8:97:cd:fb:05:1f:
7f:c1:a1:57:bb:a5:96:46:db:34:88:e1:ec:d3:b2:
02:63:29:7e:2d:af:77:22:d4:71:0c:ad:fb:b5:bd:
a4:32:dd:23:56:3e:b8:76:5e:b8:d2:a0:74:80:81:
6d:29:01:98:55:57:66:b9:d0:69:a0:95:2e:f9:79:
ea:5f:89:cd:f7:ac:78:81:5c:f2:c5:09:5a:98:e8:
1b:69:de:9d:e6:81:a5:1b:f4:56:81:61:84:af:58:
17:63:24:a7:f1:e8:89:58:f5:3f:6a:14:7b:3c:14:
bc:4d:71:c9:86:06:3f:2b:a4:3d:ff:7a:20:c6:35:
5c:06:48:c6:01:34:90:78:51:38:6d:22:a9:0a:88:
f3:04:fe:56:a0:0b:bc:ce:1e:02:ef:ec:87:5c:b8:
ab:cd:96:d1:f9:64:2d:e1:b6:a9:eb:d8:38:44:93:
73:65:02:2b:48:32:c8:09:ce:e1:4d:34:5a:15:a7:
65:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:36:9C:A0:9D:AD:D1:5A:ED:41:A7:FF:E9:18:01:6E:D6:9A:43:42
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/fTacoJ2t0VrtQaf_6RgBbtaaQ0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.228.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f3:90:1c:40:6c:55:b0:50:5d:e6:c4:cd:dc:dc:b6:58:88:
b3:80:85:b8:82:9b:10:98:2b:66:b1:4f:e5:30:c5:30:da:b0:
f7:b1:ba:b7:c4:9e:30:65:44:f7:39:f7:dc:6f:9a:45:cc:c6:
df:5c:f1:a9:03:68:ca:3b:32:82:57:12:3c:1c:83:5c:da:db:
d1:95:cb:0b:b5:85:d0:09:0d:8a:fe:7b:6e:a7:c9:a4:45:2b:
a0:64:1f:d4:12:7a:b2:3a:bf:1e:18:6a:2e:89:6e:7b:8d:19:
d5:45:0c:2d:9a:0e:e1:1e:bf:51:ad:fe:4f:32:c9:0f:b6:b9:
78:58:1a:2f:5c:2b:bd:1c:8b:05:35:20:53:a3:4a:a5:f0:9d:
77:4d:2b:6a:da:b7:86:74:66:1d:5b:f8:b8:c2:8c:c0:8a:24:
ba:af:dd:35:85:0a:8f:9e:69:5f:f2:87:44:0d:1a:54:20:c1:
9b:bd:e9:86:e8:1c:00:68:37:59:a1:52:65:81:19:d0:c5:1b:
22:a8:eb:fe:a5:6a:cf:7c:af:12:1c:4a:35:4d:27:09:38:5f:
c4:68:6d:02:ef:8a:34:00:17:38:4c:05:a4:ee:e7:19:8e:d0:
06:25:4e:14:59:91:9b:f6:55:38:ee:6b:96:f4:34:0e:7a:4f:
10:7b:ed:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org