Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/iFEHdPeseHN1Lz8r3y-eMPm85wM.roa
File: iFEHdPeseHN1Lz8r3y-eMPm85wM.roa (raw, json)
Hash identifier: FiLKrpD7dMDbK73Wu3EmIlHn4lXwkX72ShlJQBUf844=
Subject key identifier: 88:51:07:74:F7:AC:78:73:75:2F:3F:2B:DF:2F:9E:30:F9:BC:E7:03
Certificate issuer: /CN=ffa41d3413ddacc91fe0f4426a828681cf30e0fc
Certificate serial: 01856BC11D1B7F1397B45911DD105208B4CD
Authority key identifier: FF:A4:1D:34:13:DD:AC:C9:1F:E0:F4:42:6A:82:86:81:CF:30:E0:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/iFEHdPeseHN1Lz8r3y-eMPm85wM.roa
Signing time: Sun 01 Jan 2023 05:14:56 +0000
ROA not before: Sun 01 Jan 2023 05:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39224
IP address blocks: 185.253.252.0/22 maxlen: 22
2a05:fec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:1d:1b:7f:13:97:b4:59:11:dd:10:52:08:b4:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffa41d3413ddacc91fe0f4426a828681cf30e0fc
Validity
Not Before: Jan 1 05:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88510774f7ac7873752f3f2bdf2f9e30f9bce703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:af:03:af:7f:f7:6c:a2:0d:ef:37:fb:14:20:
43:b0:7a:19:56:75:45:1d:37:cf:e6:5b:76:83:7b:
bc:0b:c1:20:71:4f:91:5f:95:c2:9e:08:54:b1:14:
b3:c0:bf:d2:6a:53:36:0f:96:22:d8:ac:a8:21:ea:
f7:a1:01:23:ae:b0:c9:82:a6:c4:32:6f:99:6d:30:
05:31:ed:2d:83:de:4f:24:33:4a:f0:a2:1e:fc:f1:
9b:a6:0e:96:52:88:c9:54:2e:8a:80:46:cf:8f:72:
37:cc:8e:22:42:92:0a:6e:6d:4e:12:01:73:8a:b2:
29:ce:8b:5a:e1:55:8f:59:89:29:04:0c:c4:fb:f9:
e8:1e:62:09:09:18:08:f9:8b:cc:fe:95:3e:98:2e:
2e:21:a1:79:8c:68:aa:3a:ea:56:3d:4c:0d:d5:dc:
b5:4a:7f:d6:0f:df:ba:3c:de:b8:77:c6:b0:73:ce:
4a:ea:47:bc:f6:fd:89:62:85:eb:77:f0:27:8d:ac:
62:a0:e3:b3:cb:41:68:d4:36:8c:3c:84:14:7c:66:
42:25:5b:03:3f:e5:ae:ba:42:26:e9:32:fa:00:b3:
87:bb:49:aa:ca:81:32:9b:9d:a8:58:3d:40:73:8b:
02:91:83:c3:5d:0d:e7:e7:47:27:0a:bd:7f:3b:62:
f0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:51:07:74:F7:AC:78:73:75:2F:3F:2B:DF:2F:9E:30:F9:BC:E7:03
X509v3 Authority Key Identifier:
keyid:FF:A4:1D:34:13:DD:AC:C9:1F:E0:F4:42:6A:82:86:81:CF:30:E0:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/iFEHdPeseHN1Lz8r3y-eMPm85wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.252.0/22
IPv6:
2a05:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
1e:5a:e8:fb:f1:b2:73:c2:f8:79:f4:7f:8d:29:4e:1f:0e:77:
23:b7:de:35:99:a5:03:a4:0b:47:0f:70:b3:b8:05:3d:10:ef:
ba:6f:0f:55:a1:30:db:9f:7c:73:f5:69:de:b0:34:08:85:29:
ef:7b:8e:ab:ea:67:26:6f:10:d3:ef:ff:f5:0b:d4:5b:54:9e:
61:2c:35:22:25:6c:40:fe:2a:74:96:64:a1:47:c8:a0:9d:02:
0d:e5:4e:41:c8:a9:8d:ab:3e:eb:8f:ca:6f:f2:38:0b:a5:72:
f0:60:21:d9:7e:f6:b4:5f:0d:da:0f:12:20:16:74:fb:fc:55:
4c:09:16:e2:3d:b0:8c:2b:1a:c5:b3:c6:bc:36:7f:8e:9e:0f:
b0:e5:3c:6a:e1:b3:19:44:39:fa:82:5a:f0:05:31:4c:a4:fb:
52:c6:05:f5:12:ba:9d:ba:b3:56:e6:6a:04:53:aa:d0:d5:ae:
a5:c8:a2:d7:98:6d:40:a7:65:85:8a:12:8c:d3:68:fb:d8:ff:
4d:8e:b0:c4:1b:1c:ef:c4:db:4a:6b:72:cf:c3:aa:69:a9:47:
99:55:f9:b1:87:1f:c5:b3:a3:1a:0c:70:86:16:13:2f:f7:03:
2f:6f:18:e8:8c:0e:84:37:dc:09:02:44:1a:d3:6d:b2:8c:71:
9f:02:84:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:45 2024 by rpki-client on console-fra.rpki-client.org