Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/SN6tjUgHtIR9fp2rdq8olzIlVik.roa
File: SN6tjUgHtIR9fp2rdq8olzIlVik.roa (raw, json)
Hash identifier: TFK9fPJ1OXpFgRpc+lairLGLTS0HpYbVdF8lUitjH70=
Subject key identifier: 48:DE:AD:8D:48:07:B4:84:7D:7E:9D:AB:76:AF:28:97:32:25:56:29
Certificate issuer: /CN=e2a2ab0a275a2d04f1e2635ab2c77eb3ae6038cc
Certificate serial: 018A403D62B35AB4761A48DF9089D706D297
Authority key identifier: E2:A2:AB:0A:27:5A:2D:04:F1:E2:63:5A:B2:C7:7E:B3:AE:60:38:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qKrCidaLQTx4mNassd-s65gOMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/SN6tjUgHtIR9fp2rdq8olzIlVik.roa
Signing time: Tue 29 Aug 2023 07:41:19 +0000
ROA not before: Tue 29 Aug 2023 07:41:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207065
IP address blocks: 185.166.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:3d:62:b3:5a:b4:76:1a:48:df:90:89:d7:06:d2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a2ab0a275a2d04f1e2635ab2c77eb3ae6038cc
Validity
Not Before: Aug 29 07:41:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48dead8d4807b4847d7e9dab76af289732255629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:31:5a:bd:c2:5f:99:08:5a:33:5d:ac:2b:ad:
04:e6:51:80:4c:85:a8:ea:b0:0c:4e:9a:ca:29:08:
ab:ee:b2:c4:62:1d:3c:10:4f:c7:bb:63:67:2b:4d:
0a:62:d7:0d:15:d0:3d:98:2f:e1:1f:38:4c:29:55:
40:4d:a1:20:18:33:77:f5:cb:f8:21:8c:2f:6c:e4:
ac:f9:7e:0b:10:89:e9:60:3f:e9:1b:08:2d:38:b7:
c3:3f:3e:70:a7:11:89:ea:71:b9:e1:67:f6:27:ef:
59:6c:7d:6d:64:5e:7b:ce:4a:05:68:3f:aa:4d:3f:
39:15:01:5c:16:a8:90:0a:9e:47:95:05:39:72:84:
74:75:85:b8:ef:25:c4:0f:0d:72:b9:dd:14:2c:e0:
ba:34:2b:ef:5e:ff:1a:bf:d8:38:c8:83:57:14:1b:
11:37:37:8b:0f:dc:63:11:89:f8:3f:4e:58:f5:8c:
69:72:e9:d7:59:c1:4b:38:60:4d:17:db:23:e2:36:
3b:54:db:79:be:be:4f:de:2b:ea:8a:af:6c:18:ac:
83:1b:12:ec:ae:02:f4:d7:98:5f:d3:91:6b:89:05:
68:68:24:cc:41:bf:22:35:a3:e3:2f:88:3a:b8:45:
dd:00:7f:30:44:67:44:73:dc:3e:33:22:85:83:6b:
a3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DE:AD:8D:48:07:B4:84:7D:7E:9D:AB:76:AF:28:97:32:25:56:29
X509v3 Authority Key Identifier:
keyid:E2:A2:AB:0A:27:5A:2D:04:F1:E2:63:5A:B2:C7:7E:B3:AE:60:38:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qKrCidaLQTx4mNassd-s65gOMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/SN6tjUgHtIR9fp2rdq8olzIlVik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/4qKrCidaLQTx4mNassd-s65gOMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.184.0/22
Signature Algorithm: sha256WithRSAEncryption
53:b5:2e:92:3a:ba:4b:0d:28:19:a7:90:cb:ae:5e:74:73:6b:
ef:ee:e1:14:05:43:3b:4b:b7:b8:97:4a:33:c9:14:0d:7b:51:
fe:3c:e7:74:32:9e:00:e8:0e:4f:ff:a7:23:5a:11:c1:a8:33:
f9:b5:95:1a:c4:90:14:e9:4d:0e:e1:dd:85:f9:30:b1:d4:05:
7d:d5:47:0b:07:15:14:68:1f:68:07:28:23:f4:70:13:fb:46:
1c:af:89:13:72:0f:a5:6b:a8:9c:56:fe:7d:1e:a6:b1:72:05:
6b:07:b3:a4:43:fe:9c:d5:d6:db:fc:04:50:7d:49:f1:5b:65:
3b:d1:da:93:00:74:1e:b4:a9:28:aa:cd:49:2f:b8:9a:7a:8e:
8f:4e:8f:f8:2a:62:f2:fe:97:b0:c4:12:ad:68:f1:78:39:9d:
7d:6e:a3:ed:88:9c:ff:ed:4f:7c:5e:3f:c4:b3:cf:37:bd:59:
81:d8:eb:9b:4e:49:98:36:8e:28:d5:89:a0:95:56:94:45:8f:
ab:4e:5f:38:2d:62:bf:89:8e:ff:32:dc:6a:b3:89:e6:45:91:
0c:8a:41:96:da:d3:32:5c:72:7a:ba:87:51:a9:ac:d4:67:63:
bb:41:3e:cb:80:62:16:21:2b:25:f5:20:e2:cc:0a:ae:38:0e:
c0:b6:8e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:25 2024 by rpki-client on console-fra.rpki-client.org