Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/05c669-04f8-4283-9cdb-60e3e214a63e/1/s8m7lb6fJ7cx6rd9FPhOLLOHxuw.roa
File: s8m7lb6fJ7cx6rd9FPhOLLOHxuw.roa (raw, json)
Hash identifier: VEiO1jhHeb8VJG1JqJy/N0utqkvapmJlJJr1yTAdU1s=
Subject key identifier: B3:C9:BB:95:BE:9F:27:B7:31:EA:B7:7D:14:F8:4E:2C:B3:87:C6:EC
Certificate issuer: /CN=b2fbfe5f059f9dc13454344c90749574ece629f5
Certificate serial: 01856FF977D3F14DD65AFD5BD84108406659
Authority key identifier: B2:FB:FE:5F:05:9F:9D:C1:34:54:34:4C:90:74:95:74:EC:E6:29:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svv-XwWfncE0VDRMkHSVdOzmKfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/05c669-04f8-4283-9cdb-60e3e214a63e/1/s8m7lb6fJ7cx6rd9FPhOLLOHxuw.roa
Signing time: Mon 02 Jan 2023 00:54:58 +0000
ROA not before: Mon 02 Jan 2023 00:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202780
IP address blocks: 185.154.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:77:d3:f1:4d:d6:5a:fd:5b:d8:41:08:40:66:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2fbfe5f059f9dc13454344c90749574ece629f5
Validity
Not Before: Jan 2 00:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3c9bb95be9f27b731eab77d14f84e2cb387c6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2e:0c:0d:91:0c:aa:fe:d7:9c:dd:33:ed:c4:
f9:69:a9:ed:f7:3b:e8:03:5c:14:61:94:07:df:ba:
53:fd:f7:f7:58:d4:e3:3a:ef:f6:99:9f:84:9e:77:
20:aa:42:56:2b:05:b0:fc:85:cc:48:28:8f:59:96:
e2:47:dc:4f:a6:cf:56:5d:94:c0:14:33:01:b2:a5:
50:a6:bc:9a:d7:cc:61:2e:5b:ce:81:63:11:87:48:
58:8e:0c:41:ef:5c:a7:e9:77:50:9c:d4:bf:33:34:
22:51:a8:ee:4c:48:ed:a7:4f:df:a9:df:2a:6c:9c:
02:88:80:1e:30:0c:08:0b:89:2f:b7:4c:e8:f1:79:
ff:9e:ac:d6:a1:f4:ee:08:94:3e:32:8c:ac:f3:3c:
32:da:41:90:b4:9e:38:b4:65:33:9a:2c:a3:7c:9a:
0d:9d:8a:c9:2b:59:5b:22:3e:4b:c8:b1:b8:55:77:
cf:0e:88:4d:87:a3:f4:e9:0b:df:27:5e:ae:41:91:
9a:36:d9:86:a4:42:18:56:40:01:b0:31:38:57:a9:
44:12:69:07:db:ca:00:80:05:cd:f1:15:79:bb:b1:
d8:72:76:2f:e2:d5:10:ea:f5:55:fc:1a:87:b3:96:
f2:9c:c3:99:91:d2:92:36:e2:3b:85:f9:46:19:72:
11:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C9:BB:95:BE:9F:27:B7:31:EA:B7:7D:14:F8:4E:2C:B3:87:C6:EC
X509v3 Authority Key Identifier:
keyid:B2:FB:FE:5F:05:9F:9D:C1:34:54:34:4C:90:74:95:74:EC:E6:29:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svv-XwWfncE0VDRMkHSVdOzmKfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/05c669-04f8-4283-9cdb-60e3e214a63e/1/s8m7lb6fJ7cx6rd9FPhOLLOHxuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/05c669-04f8-4283-9cdb-60e3e214a63e/1/svv-XwWfncE0VDRMkHSVdOzmKfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.228.0/22
Signature Algorithm: sha256WithRSAEncryption
82:58:c4:cc:65:b7:79:47:f4:a7:7a:50:1b:4f:ae:0b:9e:f9:
2d:ca:41:9f:30:21:b2:b3:f9:33:8d:f4:03:5e:4a:03:25:4c:
9b:e5:2e:e7:5f:71:c6:48:fe:8c:a8:1c:30:6b:27:c0:f6:15:
26:5f:cc:d4:ac:f2:5b:42:a6:20:75:c4:9c:54:ff:72:bf:bc:
8c:46:65:95:64:d4:77:dc:93:50:9c:f2:19:38:25:b4:4e:33:
6d:e0:98:5d:58:93:d1:b6:b3:51:30:e1:f6:a6:b7:da:0d:ac:
f4:cb:bc:a3:97:87:f3:76:90:a9:5e:4c:da:a9:a0:38:40:c9:
fe:6f:52:ad:12:d3:b7:56:b0:30:65:50:ca:2e:f1:1f:19:bb:
40:c0:ba:c0:c2:74:e9:a2:a2:35:4a:e0:b9:77:31:d8:09:55:
b3:42:72:10:d1:3a:5a:5d:c2:82:20:c7:54:d2:34:0e:ea:e3:
30:bf:87:96:23:e5:b8:d7:3d:c3:80:5e:f4:b9:bd:e6:91:55:
96:27:cc:e4:19:4e:43:d8:e3:bd:14:e7:7b:2a:54:c8:c7:23:
30:4a:6d:dc:c0:15:8c:76:de:69:23:b6:5b:42:bd:9c:70:d5:
ac:9e:e1:b2:60:bf:88:95:33:03:7a:c1:ce:15:0a:2b:fe:7a:
d7:98:cb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org