Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/7pd4iR3NWSb7E-jxPtGDsrgcuww.roa
File: 7pd4iR3NWSb7E-jxPtGDsrgcuww.roa (raw, json)
Hash identifier: /RsDRII8SUEmDuE1RNJG5Z6TuCpszjc1QaUtO5Zyl1s=
Subject key identifier: EE:97:78:89:1D:CD:59:26:FB:13:E8:F1:3E:D1:83:B2:B8:1C:BB:0C
Certificate issuer: /CN=706b7fea8ad35111ca687a9cd00a49f9a4f0459b
Certificate serial: 01856D7899CEB6ACAB7867F4333EB05926CB
Authority key identifier: 70:6B:7F:EA:8A:D3:51:11:CA:68:7A:9C:D0:0A:49:F9:A4:F0:45:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cGt_6orTURHKaHqc0ApJ-aTwRZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/7pd4iR3NWSb7E-jxPtGDsrgcuww.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56902
IP address blocks: 185.87.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:99:ce:b6:ac:ab:78:67:f4:33:3e:b0:59:26:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706b7fea8ad35111ca687a9cd00a49f9a4f0459b
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee9778891dcd5926fb13e8f13ed183b2b81cbb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:5c:a1:37:4f:ad:0c:0a:c0:72:6b:e7:9e:
cb:00:fa:b0:61:df:fc:01:63:09:37:22:b1:f7:fe:
c4:da:c9:b7:45:44:e5:f4:bd:b6:3e:8d:72:df:27:
2e:c2:c3:e3:b7:d9:c6:72:28:30:60:35:11:7e:ab:
14:e1:93:75:6b:c5:12:a2:8e:56:81:6e:0c:34:ae:
71:b1:9b:01:bc:0e:37:e0:cc:e3:7c:fd:54:ca:19:
83:a4:e1:03:0a:4f:3c:8a:e0:92:63:18:2c:10:40:
e8:95:e1:28:d9:83:01:f2:ef:d2:09:1c:87:1a:e4:
42:7c:6e:9c:e4:77:b7:9d:37:12:a6:2a:64:4c:00:
d9:2e:c4:89:b7:d4:23:b9:5d:e7:af:60:21:04:15:
ec:68:70:fe:24:e5:9d:d5:b0:2d:02:3d:97:a3:33:
d0:b1:52:b6:f3:1b:b8:b5:ed:9a:5a:3f:3e:63:56:
38:ea:a3:67:d5:c7:3a:4b:8b:d5:df:87:8d:73:55:
32:55:fd:35:96:1f:2b:fa:e7:65:71:72:82:9d:99:
44:ec:72:85:c5:8e:3b:d7:36:03:6c:92:07:f3:e7:
1a:f0:a9:df:a1:6b:b1:e2:12:b5:86:b7:29:ca:3b:
91:db:f9:10:19:57:5a:06:91:a5:2c:76:33:7a:d2:
98:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:97:78:89:1D:CD:59:26:FB:13:E8:F1:3E:D1:83:B2:B8:1C:BB:0C
X509v3 Authority Key Identifier:
keyid:70:6B:7F:EA:8A:D3:51:11:CA:68:7A:9C:D0:0A:49:F9:A4:F0:45:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cGt_6orTURHKaHqc0ApJ-aTwRZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/7pd4iR3NWSb7E-jxPtGDsrgcuww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/cGt_6orTURHKaHqc0ApJ-aTwRZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.171.0/24
Signature Algorithm: sha256WithRSAEncryption
63:aa:de:e5:91:95:1b:a1:03:3d:80:94:35:d2:91:4d:58:0c:
30:0e:77:09:48:a1:d2:3d:2e:68:a2:c0:a6:1d:59:50:8e:c1:
f4:02:bf:f9:be:e6:d0:82:c2:8e:77:0a:cf:20:f2:83:5b:34:
4b:3b:41:6d:0e:74:f6:11:0e:f0:00:6e:78:87:38:a8:99:3a:
6a:0e:74:fc:80:49:f9:77:84:df:40:28:7c:c7:23:13:a4:11:
6d:1c:55:77:a4:1a:70:32:d4:57:10:71:2c:05:83:8b:6e:dd:
18:31:0a:43:e5:d3:98:0a:64:3d:d3:ec:1b:a6:87:9e:ff:21:
97:b9:4c:9b:43:2b:05:5f:fc:f2:96:bb:57:1b:3b:4f:72:2f:
f9:2b:8c:32:d0:26:a4:50:ae:87:e4:c5:3f:74:94:49:88:b8:
02:4c:4a:76:f3:9e:70:2b:12:4d:65:e3:a9:59:1c:0c:9b:2a:
6d:61:c3:7d:11:25:a0:96:27:f1:0c:eb:9f:7e:47:c8:b1:46:
62:35:3c:63:b2:f1:dd:9e:e0:fd:a5:17:76:fd:2b:7e:2f:74:
d9:46:7c:e6:34:79:f4:72:8d:91:7c:09:a7:e0:3a:5e:99:d2:
94:8d:ec:98:85:c1:90:03:d8:84:c0:a1:97:af:08:3c:4b:31:
9f:2b:56:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:34 2024 by rpki-client on console-fra.rpki-client.org