Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/1-lvSwn8DRdEJWlCeFdFrETmdouo.roa
File: 1-lvSwn8DRdEJWlCeFdFrETmdouo.roa (raw, json)
Hash identifier: dU2n9BK6wALjmkcBiRx/Fa+N+PNakjtahLhDK/KGtHY=
Subject key identifier: FA:5B:D2:C2:7F:03:45:D1:09:5A:50:9E:15:D1:6B:11:39:9D:A2:EA
Certificate issuer: /CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Certificate serial: 01857227D1122C3E594D69BA5DF5F0E9ABD7
Authority key identifier: 6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/1-lvSwn8DRdEJWlCeFdFrETmdouo.roa
Signing time: Mon 02 Jan 2023 11:04:49 +0000
ROA not before: Mon 02 Jan 2023 11:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202513
IP address blocks: 185.249.148.0/22 maxlen: 24
185.98.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:d1:12:2c:3e:59:4d:69:ba:5d:f5:f0:e9:ab:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Validity
Not Before: Jan 2 11:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa5bd2c27f0345d1095a509e15d16b11399da2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:47:8b:88:ff:a2:84:0d:2e:ae:20:7c:b5:98:
df:fb:5b:0e:17:a3:8f:86:7d:c1:eb:1c:6f:0a:23:
8f:cd:69:81:f5:cc:53:cd:c1:29:2c:37:94:0f:7b:
23:b8:2f:4c:ae:a3:4d:32:ad:c7:16:67:ba:af:44:
28:e1:1f:21:e0:c6:70:a0:9d:27:3e:d8:b3:17:a9:
b1:59:eb:2f:f7:2d:e7:01:d8:a9:0e:29:58:cb:0d:
b6:9a:36:f4:eb:67:90:07:80:3d:f5:cb:16:b8:3d:
02:5f:c9:63:d7:8d:9f:fc:66:2e:d4:c3:03:04:75:
80:57:5b:84:aa:63:af:2f:7d:4b:7b:4f:6f:01:95:
61:11:b8:7b:a3:9e:ae:20:fc:98:a9:1c:65:59:20:
15:3d:45:63:06:3b:43:93:dc:38:28:0f:97:c1:03:
42:78:bb:5d:72:5d:c6:04:d6:9b:d2:70:8f:a1:6a:
cd:5f:b6:4a:a3:7d:d4:99:d9:9f:c6:05:db:1d:3c:
e8:0d:ad:57:2e:8c:3b:37:46:b9:46:1a:54:89:14:
b5:16:f8:52:4c:0f:99:d9:9b:47:e7:26:b9:a1:1e:
ba:17:11:fe:d2:08:c8:e7:d6:7b:46:4c:a3:2a:76:
a9:16:39:e8:aa:cf:d3:15:1c:bb:6a:ba:73:0e:33:
9b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:5B:D2:C2:7F:03:45:D1:09:5A:50:9E:15:D1:6B:11:39:9D:A2:EA
X509v3 Authority Key Identifier:
keyid:6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/1-lvSwn8DRdEJWlCeFdFrETmdouo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/bYUGE2GxnyEu_pDC2M8-7mF_IOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.16.0/22
185.249.148.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:ea:60:b8:fd:50:77:7f:41:77:5f:15:1f:12:d0:cb:13:76:
07:b0:cf:3c:8f:12:7c:da:cf:fd:b2:61:a7:59:2d:ae:7a:ff:
4d:d1:d2:30:a9:c9:2b:a0:5b:5b:e7:eb:c8:4d:c4:c9:32:c7:
09:a6:cc:1d:a9:79:ef:4f:a5:03:e9:a5:08:77:76:6f:15:f9:
55:1f:ed:19:2f:6c:b4:cd:ae:3e:de:1d:2d:83:a2:65:37:44:
ef:67:17:1b:55:87:2c:9e:09:17:ce:a4:97:b3:b7:55:c3:70:
d3:c9:47:ab:e7:2c:2f:c5:60:d2:37:6f:e0:ec:6c:0c:16:66:
53:db:fb:81:e4:81:23:35:e4:e9:2b:e1:c4:fa:e0:51:15:6c:
35:28:27:1b:97:85:12:df:9c:88:21:32:1a:90:4a:dd:41:fe:
24:ea:6b:75:cb:dc:10:bf:4a:32:d7:4e:75:a7:f1:ea:41:4b:
1f:bd:4f:4f:34:f4:b2:50:8d:72:a8:de:9a:9c:3a:ee:69:d0:
9a:75:a6:a4:38:85:04:fd:69:22:2d:ae:35:66:38:be:38:fe:
bc:1b:4d:4e:af:7d:aa:93:5e:01:d6:4e:bf:44:b0:c1:c7:85:
0a:f9:7d:02:8b:b2:33:cc:0e:d4:24:61:7c:5d:80:a6:82:e0:
a0:04:7a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:19 2024 by rpki-client on console-ams.rpki-client.org