Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/EqYQKlwpsotL1JYoEVXOp9tyYJY.roa
File: EqYQKlwpsotL1JYoEVXOp9tyYJY.roa (raw, json)
Hash identifier: OrGIO85Kaj6ohqJFOWSncj4PtFjfJh+F0hZmF2Kq1NI=
Subject key identifier: 12:A6:10:2A:5C:29:B2:8B:4B:D4:96:28:11:55:CE:A7:DB:72:60:96
Certificate issuer: /CN=588b1024ea056e5ed498f6e9ddc20632bdf6c9c5
Certificate serial: 0188DDCDDDB84A9898A31CB7684A462B2A2E
Authority key identifier: 58:8B:10:24:EA:05:6E:5E:D4:98:F6:E9:DD:C2:06:32:BD:F6:C9:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIsQJOoFbl7UmPbp3cIGMr32ycU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/EqYQKlwpsotL1JYoEVXOp9tyYJY.roa
Signing time: Wed 21 Jun 2023 11:53:56 +0000
ROA not before: Wed 21 Jun 2023 11:53:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211094
IP address blocks: 185.240.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:cd:dd:b8:4a:98:98:a3:1c:b7:68:4a:46:2b:2a:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588b1024ea056e5ed498f6e9ddc20632bdf6c9c5
Validity
Not Before: Jun 21 11:53:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12a6102a5c29b28b4bd496281155cea7db726096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:73:80:9b:31:31:ec:52:d3:06:c2:59:dd:5c:
95:19:9a:e8:c0:d2:1c:13:74:fd:fe:d1:11:c5:a1:
b8:78:61:a9:90:58:1d:27:62:87:c6:cf:cd:46:37:
64:a4:d9:91:5e:1d:9f:47:49:07:39:83:75:9d:d2:
ea:c2:e6:66:5d:47:ce:4b:8b:db:19:c6:54:2c:26:
8a:65:c8:76:92:0e:4c:d8:77:1e:61:39:31:0b:5c:
ee:56:05:31:4d:e9:6f:e5:e0:20:fd:24:3d:55:9b:
34:08:27:1a:cf:2e:18:0c:8d:6a:c5:dc:55:3d:f7:
f5:cc:36:75:33:35:67:fe:9f:1e:92:45:36:11:f9:
7d:32:f8:21:0d:11:d1:e2:bf:d1:bb:ea:7c:d7:d8:
a2:3e:2a:34:ca:3d:d4:43:4d:d3:e8:82:0f:8d:df:
e6:19:ff:01:fe:77:b9:7a:d7:d6:19:63:4b:81:84:
e2:a2:4c:d6:c8:f5:9c:29:b1:22:bc:54:25:8a:9e:
1d:ea:94:c4:77:e4:66:27:ba:33:86:6a:6e:b9:c4:
76:66:cc:73:4a:7f:86:57:3f:21:db:ee:05:50:75:
ab:5c:5f:66:dd:d3:6f:33:8d:29:c6:a2:1b:0b:d6:
68:ca:e4:59:3e:8a:eb:f6:fa:c1:3a:cc:94:31:f1:
14:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A6:10:2A:5C:29:B2:8B:4B:D4:96:28:11:55:CE:A7:DB:72:60:96
X509v3 Authority Key Identifier:
keyid:58:8B:10:24:EA:05:6E:5E:D4:98:F6:E9:DD:C2:06:32:BD:F6:C9:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIsQJOoFbl7UmPbp3cIGMr32ycU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/EqYQKlwpsotL1JYoEVXOp9tyYJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/WIsQJOoFbl7UmPbp3cIGMr32ycU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.240.0/24
Signature Algorithm: sha256WithRSAEncryption
74:2b:e9:16:fe:c6:b4:43:6b:34:2e:fc:54:db:5c:50:ca:16:
c8:d2:ba:45:50:d2:14:fe:97:15:5f:37:5c:f6:45:e1:dd:fc:
93:62:46:1d:3e:68:1b:07:4f:1c:8b:f1:b4:e4:47:bf:d1:d9:
1d:b8:22:c7:38:b5:76:ed:78:df:eb:e8:f9:b9:4b:9d:34:ac:
1e:98:7e:e1:69:b0:7c:fd:be:5e:41:6f:88:ef:9e:e0:60:b7:
e9:52:c4:e7:b9:8f:86:95:ac:92:ea:ea:a4:d4:58:40:ad:5b:
8b:c3:dc:f9:94:0d:9e:60:72:7d:3b:e3:07:f4:cb:61:8b:0b:
a9:fb:20:f9:87:62:37:cf:46:97:2c:0c:cc:2c:66:bf:4e:86:
ce:b0:20:ad:64:ac:d7:72:df:8d:69:83:8a:1d:2c:d7:67:df:
81:4e:16:86:42:88:95:83:21:77:8f:8a:44:b9:c0:57:49:27:
18:3a:cc:ed:d1:4a:0d:80:b9:0f:ac:e9:cc:17:e1:b7:75:04:
89:e7:49:1e:e0:bd:20:29:06:ec:14:b0:9f:b0:4c:76:69:da:
5c:40:f6:50:ea:94:f1:ca:44:1f:0a:50:41:92:7f:d1:42:e4:
a9:61:e9:79:c3:07:b7:be:59:de:57:83:00:41:c0:e1:51:62:
a9:57:48:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:57 2024 by rpki-client on console-fra.rpki-client.org