Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/4lkwu-OH3zYtN2hvUDKTWITQrek.roa
File: 4lkwu-OH3zYtN2hvUDKTWITQrek.roa (raw, json)
Hash identifier: PHfBk2GLzt8tEF7ujlj/rvbEtgMMkIGIawK0OrGVXuw=
Subject key identifier: E2:59:30:BB:E3:87:DF:36:2D:37:68:6F:50:32:93:58:84:D0:AD:E9
Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Certificate serial: 0188F30E2E0FA99EF2F83B691B2DFFF3F787
Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/4lkwu-OH3zYtN2hvUDKTWITQrek.roa
Signing time: Sun 25 Jun 2023 14:56:12 +0000
ROA not before: Sun 25 Jun 2023 14:56:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55933
IP address blocks: 85.208.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f3:0e:2e:0f:a9:9e:f2:f8:3b:69:1b:2d:ff:f3:f7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Validity
Not Before: Jun 25 14:56:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e25930bbe387df362d37686f5032935884d0ade9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ab:0d:96:ef:6c:ad:8b:92:b7:34:a4:46:1a:
65:dc:1b:91:29:62:d9:5a:f6:74:63:35:3f:4b:52:
57:04:ab:3e:ae:b9:ed:4f:6d:00:5a:f5:3e:00:29:
42:00:78:aa:54:9d:c0:03:28:e6:ff:56:c7:cf:f1:
cc:57:19:04:60:3f:49:da:bf:5d:31:f9:a2:01:c6:
29:61:74:c7:e5:c7:34:3b:43:f9:35:91:00:8d:59:
2f:0d:a3:17:ce:fb:b1:93:05:25:d8:f3:24:b9:80:
8b:7f:51:42:ff:68:74:99:85:f0:ef:11:36:0a:64:
ec:8f:ca:2b:bb:1e:76:e6:16:5a:47:ae:1c:80:eb:
bf:67:31:ee:04:97:60:9c:35:64:0c:3b:71:84:c9:
36:88:eb:7b:87:e8:02:90:31:b5:e7:0b:27:2b:0b:
de:28:bb:f9:18:55:ac:61:41:59:f1:21:5a:e3:bb:
47:4f:a5:91:6f:c0:87:09:73:47:37:1d:54:b9:b8:
21:55:44:df:ee:82:21:86:8b:b9:bf:cb:53:29:6d:
d6:6e:a3:18:fd:2f:dd:e2:2a:36:c6:4d:ac:39:63:
9e:b5:c6:d8:b1:47:a2:8a:0c:33:e3:04:ca:aa:8c:
8a:06:21:fa:a6:35:fc:9d:5e:04:0d:37:fa:ae:e4:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:59:30:BB:E3:87:DF:36:2D:37:68:6F:50:32:93:58:84:D0:AD:E9
X509v3 Authority Key Identifier:
keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/4lkwu-OH3zYtN2hvUDKTWITQrek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.212.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:c1:80:3f:24:97:93:23:dd:01:00:67:c5:82:9e:94:65:1c:
70:7c:6a:b1:24:7e:0f:a3:6e:ef:41:40:ce:e6:aa:40:ce:11:
a1:85:12:d0:2c:3a:fe:e6:d7:65:de:7d:46:41:4d:bf:63:7e:
5e:b8:72:62:02:44:21:c3:db:6c:ba:13:b7:22:e5:a3:d8:ce:
88:60:7c:47:60:fc:43:87:e2:72:e0:bb:02:7b:c6:b9:bf:00:
f2:c7:ed:d8:b4:55:da:36:3f:ad:5a:77:ed:cb:48:bd:4e:6d:
77:95:38:2c:90:77:0d:3d:d6:82:1e:27:2d:9f:fe:f8:06:c7:
97:e9:ad:68:b9:b9:0b:88:94:61:95:80:4d:81:29:64:de:4c:
88:ba:4e:d8:6d:58:14:62:03:3b:61:82:bf:be:3b:1e:61:6a:
cf:58:aa:28:61:18:01:42:2b:53:a2:10:7e:9c:49:b7:f0:be:
ee:4c:88:f0:6c:47:52:3f:ba:72:ae:b9:a7:81:63:47:84:41:
9b:89:cd:db:3c:15:bf:4f:7e:42:f4:07:5c:53:da:c0:c2:f9:
34:4d:3a:a4:f7:36:89:6d:41:2e:8f:8f:6d:d5:85:79:30:a5:
31:43:27:2c:80:c4:88:7f:61:cf:32:21:65:17:57:b3:61:99:
2a:6e:00:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:20 2024 by rpki-client on console-fra.rpki-client.org