Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/ku4mfK0pMDEw-Cd6QryGkXifOsE.roa
File: ku4mfK0pMDEw-Cd6QryGkXifOsE.roa (raw, json)
Hash identifier: ObhR0kP23h+mIS4BwGP+dK9+gVywtXcePbJcC44PjRI=
Subject key identifier: 92:EE:26:7C:AD:29:30:31:30:F8:27:7A:42:BC:86:91:78:9F:3A:C1
Certificate issuer: /CN=2d676a61dcf4d222ba66cda19430f61e611d8aae
Certificate serial: 01856F796C931F680DF5E3138D9629ABF748
Authority key identifier: 2D:67:6A:61:DC:F4:D2:22:BA:66:CD:A1:94:30:F6:1E:61:1D:8A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LWdqYdz00iK6Zs2hlDD2HmEdiq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/ku4mfK0pMDEw-Cd6QryGkXifOsE.roa
Signing time: Sun 01 Jan 2023 22:35:06 +0000
ROA not before: Sun 01 Jan 2023 22:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33011
IP address blocks: 185.235.236.0/22 maxlen: 24
2a0d:8100::/32 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:6c:93:1f:68:0d:f5:e3:13:8d:96:29:ab:f7:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d676a61dcf4d222ba66cda19430f61e611d8aae
Validity
Not Before: Jan 1 22:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92ee267cad29303130f8277a42bc8691789f3ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ac:2e:3d:f5:6e:33:6e:93:7d:81:88:34:c1:
bc:4b:88:2d:1e:21:a4:15:90:9d:38:77:10:a3:da:
09:cc:4f:4f:1e:bf:25:c9:8f:c5:ff:bd:12:4e:e1:
06:b4:ea:a2:30:87:ff:38:db:74:ce:77:84:aa:84:
5a:22:1a:91:6b:71:80:53:6b:a0:3a:c4:9a:e8:d0:
82:5b:95:14:9c:c3:d9:cc:d1:ac:d0:1d:4b:20:85:
f6:aa:a0:04:86:ed:80:bc:dd:70:23:6a:43:e2:29:
3f:b4:cc:98:7d:b4:60:22:09:14:14:4f:40:de:a3:
7b:e9:ba:5c:76:29:ae:b2:33:37:fa:ac:97:bb:c6:
35:c7:79:54:ec:db:3b:71:95:6d:25:fb:ae:f8:ca:
11:ef:d0:1c:63:4d:bb:24:7a:b8:f4:43:09:0d:39:
ba:4b:a2:dc:f1:95:6e:51:1a:5e:c3:4b:57:bb:77:
96:01:f2:02:1b:9b:4c:9f:f2:34:19:6b:89:84:2f:
f2:8e:a6:1b:cd:db:8e:2e:01:0e:89:4d:c7:9c:13:
57:43:48:d5:0d:42:11:d8:a7:88:04:f5:ca:7b:29:
f5:ae:26:80:94:67:ba:4e:b7:e7:67:02:40:1f:58:
14:93:2a:6f:14:24:03:f4:1e:ca:f7:b2:c4:7c:cc:
ad:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EE:26:7C:AD:29:30:31:30:F8:27:7A:42:BC:86:91:78:9F:3A:C1
X509v3 Authority Key Identifier:
keyid:2D:67:6A:61:DC:F4:D2:22:BA:66:CD:A1:94:30:F6:1E:61:1D:8A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LWdqYdz00iK6Zs2hlDD2HmEdiq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/ku4mfK0pMDEw-Cd6QryGkXifOsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/LWdqYdz00iK6Zs2hlDD2HmEdiq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.236.0/22
IPv6:
2a0d:8100::/32
Signature Algorithm: sha256WithRSAEncryption
0d:96:22:20:35:8e:04:f6:b7:b7:c9:02:83:29:2f:de:85:0b:
22:cb:37:4e:22:7c:b0:d2:c1:ed:01:06:b8:89:05:a2:c1:0c:
22:78:08:ba:0e:73:7c:1c:5c:29:38:f7:61:d5:dc:6d:3e:c7:
0c:6b:03:8b:c9:a3:20:df:2b:ac:b8:7f:47:4e:72:74:66:a5:
bf:91:fe:f9:8b:a0:33:88:2e:ae:85:a9:44:9a:a1:ff:fe:c4:
fa:6c:ff:bb:14:17:76:1b:9e:3c:29:ab:f4:1f:4f:79:51:7c:
61:5a:86:e6:3c:c7:56:ed:d9:64:ae:9a:41:be:c5:48:f4:4c:
08:39:56:34:af:86:94:ac:29:0b:8e:3b:1f:62:54:10:33:42:
6e:1e:4e:2c:4a:f6:06:11:c9:e0:b8:ae:b4:ab:87:b8:c2:20:
6f:5b:ce:86:26:c1:9f:4b:be:96:56:1a:8c:4c:6d:6a:65:5e:
4d:26:f4:23:61:7c:86:b4:ba:e6:4d:df:b1:06:de:41:30:9a:
da:53:6f:26:28:29:23:6b:e4:6f:e2:a4:b9:de:8c:e1:4d:7b:
da:f2:1a:c6:d8:90:df:66:24:03:57:c8:4e:b4:18:d8:6e:cc:
9b:78:de:97:79:37:25:26:e5:1c:93:1e:fe:9d:1c:03:7c:7b:
b6:de:ac:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:47 2024 by rpki-client on console-fra.rpki-client.org