Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/XkGkAvLHsj1x6FJ8cs3_hr-DDOY.roa
File: XkGkAvLHsj1x6FJ8cs3_hr-DDOY.roa (raw, json)
Hash identifier: 84lwAAahpPJTj8kUJUTACsHYYikEMQAGU9Mk+KkdNIY=
Subject key identifier: 5E:41:A4:02:F2:C7:B2:3D:71:E8:52:7C:72:CD:FF:86:BF:83:0C:E6
Certificate issuer: /CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf
Certificate serial: 018571B0AFBE19D05D330A312B960FA7F891
Authority key identifier: 2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/XkGkAvLHsj1x6FJ8cs3_hr-DDOY.roa
Signing time: Mon 02 Jan 2023 08:54:42 +0000
ROA not before: Mon 02 Jan 2023 08:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13030
IP address blocks: 185.240.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:af:be:19:d0:5d:33:0a:31:2b:96:0f:a7:f8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf
Validity
Not Before: Jan 2 08:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e41a402f2c7b23d71e8527c72cdff86bf830ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:09:b9:d6:91:29:e2:ce:45:ef:53:bf:34:a2:
5e:48:5d:80:77:2d:04:10:0f:f4:9b:8b:58:5d:06:
76:fc:09:4c:1b:5c:73:20:db:b1:b6:50:51:5e:42:
67:3c:3f:b1:73:93:94:e3:27:af:ca:45:d9:fb:77:
54:3c:90:1f:85:f3:03:0b:db:b6:4c:3e:00:3d:f3:
48:4d:e5:a0:17:a7:ce:d6:e8:05:ad:c5:b9:71:2f:
6f:41:d7:16:3e:28:d8:1b:5b:82:9b:ee:73:3e:e4:
27:99:b6:56:78:55:f5:1e:1a:e5:c0:bf:e9:ef:da:
22:59:23:54:bf:9c:7e:7b:e8:1f:9b:13:98:02:b1:
2c:03:94:f2:c6:5e:9e:b5:43:b0:09:65:9a:8b:bf:
db:a9:6f:97:be:5e:36:c1:b3:ea:87:29:6e:1c:3e:
a4:03:17:ac:3c:13:5f:db:f9:1d:60:f4:f1:60:f1:
58:20:4d:d9:6d:5f:79:ef:18:06:05:dd:4e:1c:12:
c3:a4:68:84:7b:c1:cd:23:fe:8e:15:32:4d:73:d1:
e3:42:60:67:8e:b2:18:0f:a4:52:3c:b8:21:8c:ec:
3a:5d:6c:ae:98:94:5d:b9:03:e4:da:ad:2c:6a:a9:
13:bc:1e:d5:b5:28:cd:6d:a5:44:24:15:5f:d5:92:
aa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:41:A4:02:F2:C7:B2:3D:71:E8:52:7C:72:CD:FF:86:BF:83:0C:E6
X509v3 Authority Key Identifier:
keyid:2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/XkGkAvLHsj1x6FJ8cs3_hr-DDOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.172.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:0d:46:70:c6:d2:37:c0:84:76:00:b6:77:f0:c6:b4:7f:d5:
f7:c2:ca:47:9f:2d:db:3b:93:7b:8c:81:de:f0:f1:8e:8a:30:
ff:35:88:10:23:f4:84:3d:37:f2:3d:4b:8e:16:d4:52:08:31:
5f:26:fe:ed:04:79:90:73:fa:20:06:f8:14:40:9a:f0:79:4e:
c0:79:52:09:3a:7f:ae:70:ef:fd:54:51:15:6a:6b:8f:c5:47:
a0:86:f4:2c:cf:97:40:c0:ae:58:57:e4:89:2b:bd:80:36:c5:
56:7c:d7:ac:61:26:47:77:a6:46:eb:86:8e:7d:75:ff:bf:e0:
de:f4:63:66:e8:71:24:2a:9b:75:08:8e:2b:00:7f:4b:42:55:
8e:6f:f4:76:fb:56:31:21:ee:f5:5b:a3:e4:87:9e:0c:32:62:
b0:61:2a:9b:75:c3:cd:fe:24:89:dd:a5:bf:cf:12:e7:5b:d8:
c0:23:24:1e:1e:ff:96:34:7f:1a:b5:8d:b6:eb:3e:ec:34:5f:
12:ff:ed:5b:ed:68:f6:1a:18:c0:87:ce:91:56:dd:10:d9:6b:
33:d1:18:e6:3f:20:c0:76:55:49:db:6e:aa:c1:9a:7e:3a:a4:
82:b9:f5:7c:18:0a:f5:df:3e:65:2a:64:da:ad:84:10:0c:6b:
08:19:93:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org