Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/LUIGy9EV5P6LkIGSyTmox-y65nQ.roa
File: LUIGy9EV5P6LkIGSyTmox-y65nQ.roa (raw, json)
Hash identifier: 7UW72+cjIRLDhU3Q9FozSiepn7wWMN4G31X7uzN63qI=
Subject key identifier: 2D:42:06:CB:D1:15:E4:FE:8B:90:81:92:C9:39:A8:C7:EC:BA:E6:74
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0185719E6B636A588F92D57CDC0D506CCABE
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/LUIGy9EV5P6LkIGSyTmox-y65nQ.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198414
IP address blocks: 185.49.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 11 May 2023 18:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6b:63:6a:58:8f:92:d5:7c:dc:0d:50:6c:ca:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d4206cbd115e4fe8b908192c939a8c7ecbae674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:16:7e:81:3a:b1:f8:52:fe:c7:20:a0:44:51:
28:ac:72:05:20:a0:6a:0d:78:61:06:e4:eb:98:74:
36:41:56:1c:6d:8b:7f:23:28:8f:e1:ef:dc:a0:b2:
94:3c:e9:b5:e4:61:ac:a4:68:61:4f:36:e9:b4:ad:
da:d1:33:1e:54:7a:18:57:ff:7a:10:5d:68:d0:ae:
28:86:d6:9e:0a:5b:48:e6:f9:e0:76:ae:27:e4:53:
a4:c3:e8:a8:13:83:34:7a:ee:2f:51:e8:cf:63:3d:
3d:75:80:2a:d4:74:9c:6c:9d:35:5c:b8:5b:00:72:
2c:61:12:f8:00:3e:bd:5d:dc:73:8d:6b:b2:95:54:
91:bb:bb:b4:fa:83:0f:8a:dc:a0:d0:ab:42:5c:3d:
15:5b:09:c8:6c:3f:3e:3d:94:7c:6a:88:f0:21:54:
c9:0a:6c:f4:9f:a0:22:e3:2e:79:80:94:40:8b:5c:
68:4e:73:9f:60:12:57:39:7a:07:5f:cf:7d:01:bb:
57:48:61:86:4e:9c:43:86:a6:64:7a:f2:d8:3d:f9:
0f:e1:2e:9d:a8:94:71:d2:51:d1:af:14:0d:f6:85:
48:90:01:34:d3:36:a4:b7:c3:ab:ee:96:4c:f3:68:
46:28:6a:c0:a7:65:9a:8f:39:6f:a2:c7:09:f0:07:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:42:06:CB:D1:15:E4:FE:8B:90:81:92:C9:39:A8:C7:EC:BA:E6:74
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/LUIGy9EV5P6LkIGSyTmox-y65nQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.12.0/22
Signature Algorithm: sha256WithRSAEncryption
35:3e:6f:d8:10:66:bb:a7:98:8c:54:eb:45:23:57:0d:7f:99:
19:82:7a:f3:f5:d6:05:95:96:55:1a:2a:80:0c:d1:31:a5:5d:
97:4c:1a:13:06:7d:21:e5:0a:8a:c7:66:ba:12:42:0d:03:42:
29:e0:8f:04:1a:db:42:e5:e3:c5:3d:fe:c0:ad:0a:c0:26:fd:
43:6f:7f:58:1a:85:a0:2f:ac:1a:05:b9:31:40:de:9b:9b:72:
98:21:7b:41:ef:f7:22:04:97:e6:95:58:3d:ca:9f:70:24:b8:
89:43:c7:d3:86:29:28:15:97:ca:86:e6:22:aa:c6:05:ea:06:
a8:d4:89:d0:a4:52:c9:a5:64:f1:86:2d:04:79:00:21:a8:10:
20:20:b7:ed:15:13:19:f5:ac:d2:7d:23:11:a1:ce:2c:2b:ba:
3f:bb:42:1b:cd:54:d9:c0:5a:e5:11:b3:c5:58:0b:6f:d3:a7:
42:23:9a:39:4a:aa:15:ec:fb:6a:7c:58:68:f2:3e:81:f9:d4:
95:99:c9:aa:5f:5b:b2:03:35:bc:de:1c:f1:91:7d:64:f0:60:
f6:e7:d2:cb:b2:da:86:cc:e2:b3:89:af:09:a3:af:e7:43:25:
b8:fc:ac:10:4c:19:05:1d:7f:ca:71:16:df:fe:0b:0c:bd:78:
06:ab:e9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:58 2024 by rpki-client on console-fra.rpki-client.org