Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/cRXVzwCY27hTFDurog6ko2fYpTM.roa
File: cRXVzwCY27hTFDurog6ko2fYpTM.roa (raw, json)
Hash identifier: BfGF/icylhqibxuXYS9ZS3SLOe07At3dlbV1K02dbps=
Subject key identifier: 71:15:D5:CF:00:98:DB:B8:53:14:3B:AB:A2:0E:A4:A3:67:D8:A5:33
Certificate issuer: /CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Certificate serial: 018CC6B92761F0466235BCEB1DD851AE0E70
Authority key identifier: AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/cRXVzwCY27hTFDurog6ko2fYpTM.roa
Signing time: Mon 01 Jan 2024 20:31:12 +0000
ROA not before: Mon 01 Jan 2024 20:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.120.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 16 Jan 2024 09:38:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:27:61:f0:46:62:35:bc:eb:1d:d8:51:ae:0e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Validity
Not Before: Jan 1 20:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7115d5cf0098dbb853143baba20ea4a367d8a533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:59:7b:32:46:2a:e5:e0:ed:d6:9d:2e:2b:f8:
f3:a2:01:27:41:02:94:3c:1d:4f:0d:f0:f6:72:de:
d7:4e:4f:60:8a:19:6f:9b:9a:aa:46:e1:0e:25:56:
09:13:50:fd:b6:80:33:af:a5:84:33:5c:83:11:41:
1f:26:3a:98:37:02:3d:d3:04:ce:13:a3:b8:bb:1c:
29:63:46:82:58:0a:40:05:26:b1:aa:59:77:fe:ab:
9d:a4:8e:80:3d:c9:17:20:e5:87:e1:ba:c6:1f:a6:
84:5c:63:a6:76:e5:cc:51:83:9b:0f:10:4e:fc:95:
b7:13:92:6f:a5:d2:50:b7:55:16:ba:4f:2a:05:18:
e8:b6:17:6d:ac:1a:8a:39:b1:8f:c7:eb:fc:93:af:
83:c6:46:5a:78:21:21:69:67:29:44:84:68:62:e1:
5b:9a:e8:66:ef:4d:9d:c0:c8:56:f9:a7:02:e3:47:
05:9a:cd:5a:f2:c7:3b:ce:c6:c5:55:5e:0b:1f:27:
99:8b:fb:6e:51:93:fd:f6:44:9c:c8:d4:9b:6d:c4:
b2:62:72:72:97:94:d1:67:c4:39:fe:76:62:fd:9f:
1a:e3:5c:eb:7b:eb:c2:4f:24:40:79:84:b3:ab:b7:
62:5e:17:b0:2d:82:11:76:4c:78:17:0f:76:98:41:
78:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:15:D5:CF:00:98:DB:B8:53:14:3B:AB:A2:0E:A4:A3:67:D8:A5:33
X509v3 Authority Key Identifier:
keyid:AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/cRXVzwCY27hTFDurog6ko2fYpTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/qzCSHSjHjt6BhC9xLmz3K95aYIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.92.0/22
Signature Algorithm: sha256WithRSAEncryption
af:89:c2:73:0d:d0:39:fd:cc:8a:42:95:84:88:a5:58:ef:49:
d8:09:54:b2:15:7c:e9:80:09:84:c4:a9:5e:86:b5:f0:b4:85:
35:7d:34:c2:dc:31:51:23:a5:72:26:12:b8:06:7c:29:54:da:
a8:8e:6e:80:35:b9:35:70:f1:ae:ad:a2:2f:26:8d:da:b2:41:
f7:bf:59:19:1d:77:db:fd:56:2b:35:59:8b:81:dc:1d:58:b9:
be:a4:61:3d:fc:3a:99:be:24:88:01:57:34:2f:d9:c5:38:71:
63:8e:34:c4:d0:44:77:18:48:80:89:96:a9:20:44:e8:c6:a3:
f8:ae:82:95:39:05:c9:af:70:d8:28:df:f8:58:ba:44:2e:14:
b7:8f:0c:73:fd:18:8d:53:57:09:d3:e6:b6:dc:97:9d:e5:c3:
34:50:39:74:4e:00:a2:c1:47:b3:87:fc:a8:90:8f:21:c3:c0:
ea:e7:17:26:18:d3:94:96:2a:6f:48:07:ce:a2:2d:4c:cd:23:
97:00:6e:ce:2b:d5:6d:90:20:a4:31:0e:d2:79:71:29:35:12:
70:93:e6:ad:55:2d:bf:f7:cf:b5:9e:ae:0d:45:52:3b:80:f9:
f2:3e:28:00:f9:ed:48:6a:b2:6a:f0:59:22:21:c2:a3:d5:40:
69:18:ee:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 16 13:17:13 2024 by rpki-client on console-fra.rpki-client.org