Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/frQAWPj_c2jSzWWcmnghz322fzM.roa
File: frQAWPj_c2jSzWWcmnghz322fzM.roa (raw, json)
Hash identifier: Cq6mAj3062rcCMnGsYArDPP6TPnpof0IzMF9too4rbA=
Subject key identifier: 7E:B4:00:58:F8:FF:73:68:D2:CD:65:9C:9A:78:21:CF:7D:B6:7F:33
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0185719E6BEDCDFADA8D91478411A8667F49
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/frQAWPj_c2jSzWWcmnghz322fzM.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204692
IP address blocks: 185.243.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6b:ed:cd:fa:da:8d:91:47:84:11:a8:66:7f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7eb40058f8ff7368d2cd659c9a7821cf7db67f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:77:a1:f4:22:72:64:81:18:e4:06:2e:ec:41:
7a:68:42:f9:d6:5e:8b:95:07:6c:be:77:81:b1:e4:
7e:8f:1a:86:f7:70:2a:b0:7d:37:5f:52:6c:40:18:
96:db:48:21:23:b2:2f:5e:23:38:4b:cf:5b:7b:15:
b0:0f:20:41:dc:3e:dc:a1:4a:0f:6a:6d:dd:b9:f5:
70:e1:7d:d9:e1:09:e6:d6:f1:91:2e:a0:81:18:bc:
a4:56:a4:29:4d:0d:47:82:38:d3:f5:27:fd:1c:62:
1f:64:84:81:f6:2e:d5:ff:f3:84:d1:86:5c:51:c6:
8b:93:d6:59:75:2b:ec:d0:a9:62:dd:7d:fc:f6:17:
76:65:2e:1c:6c:fd:2a:30:60:3f:9a:f8:08:ca:31:
e9:0c:e0:16:df:cd:ad:e4:e2:39:e3:c6:0f:a0:fd:
03:73:5c:e4:c0:2b:38:97:a3:c9:8a:a0:a4:f6:f6:
ac:5e:f1:8f:ca:f7:94:6e:bf:a9:9b:a8:0e:fd:3c:
c7:ca:ae:94:6c:a2:d4:6c:dd:d4:9d:72:59:43:62:
a1:be:bb:ee:a5:e1:88:25:f8:52:a2:e4:e0:f3:a7:
ba:c9:32:36:a6:bd:ff:cc:cb:d0:a2:2c:75:31:df:
86:83:f0:fd:c4:14:6a:bf:17:38:0e:4f:a6:9a:75:
7d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B4:00:58:F8:FF:73:68:D2:CD:65:9C:9A:78:21:CF:7D:B6:7F:33
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/frQAWPj_c2jSzWWcmnghz322fzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.28.0/22
Signature Algorithm: sha256WithRSAEncryption
83:93:e5:cb:9a:cd:30:6c:be:8d:aa:67:48:c4:c3:a6:e0:2a:
43:17:6e:48:35:69:15:15:56:0f:be:9f:55:8e:61:db:5d:48:
16:20:11:9a:6b:93:09:65:6c:eb:b9:08:84:77:ab:73:c9:14:
1f:7e:9c:a3:fd:28:9a:bc:6f:16:4d:dd:fc:82:20:19:5a:d2:
98:02:33:83:2a:bd:66:22:45:2a:86:1c:eb:1d:83:72:c6:d0:
b9:07:b0:58:90:99:a2:56:e1:34:bc:da:0b:c9:d5:1d:7e:04:
d5:65:a1:d5:b6:39:61:27:dd:6d:70:cd:0f:9e:0a:a6:51:e0:
30:9d:17:86:cb:30:22:5f:e8:13:de:31:fb:9e:26:61:04:e6:
51:b4:a6:b4:ca:6a:52:ed:f9:a9:3e:41:01:0e:76:97:13:48:
0d:d5:ab:b6:37:d7:05:3b:24:aa:e4:dd:29:e2:02:0e:6d:fd:
ff:53:40:5b:b9:00:93:ba:fb:7e:92:54:ea:53:af:c2:98:91:
ff:27:0c:d5:28:58:a2:6c:27:d0:f3:a0:e1:58:e9:bc:8a:d8:
29:33:82:ed:e5:87:81:b6:04:57:56:0e:85:b0:fd:d4:0d:79:
a1:34:87:ac:40:45:8c:b4:97:22:c8:16:4b:b7:ea:24:c8:8d:
52:7b:64:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:58 2024 by rpki-client on console-fra.rpki-client.org