Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2ff8cc-3315-43ee-b898-7ea592f9b29e/1/aoI5J-y7eLCSsDiU5ECgjJBAjNo.roa
File: aoI5J-y7eLCSsDiU5ECgjJBAjNo.roa (raw, json)
Hash identifier: +sqNPnYIimKjJeMYr8+t56YU0985Bhpwvo9Icw4uGg8=
Subject key identifier: 6A:82:39:27:EC:BB:78:B0:92:B0:38:94:E4:40:A0:8C:90:40:8C:DA
Certificate issuer: /CN=d5b232aa2431ca4de5d8252a3c9cc6bb630d1d49
Certificate serial: 01856F54A75709527CD6B7FF5B823CB105BB
Authority key identifier: D5:B2:32:AA:24:31:CA:4D:E5:D8:25:2A:3C:9C:C6:BB:63:0D:1D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bIyqiQxyk3l2CUqPJzGu2MNHUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2ff8cc-3315-43ee-b898-7ea592f9b29e/1/aoI5J-y7eLCSsDiU5ECgjJBAjNo.roa
Signing time: Sun 01 Jan 2023 21:54:56 +0000
ROA not before: Sun 01 Jan 2023 21:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207948
IP address blocks: 185.1.149.0/24 maxlen: 24
2001:7f8:e3::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a7:57:09:52:7c:d6:b7:ff:5b:82:3c:b1:05:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b232aa2431ca4de5d8252a3c9cc6bb630d1d49
Validity
Not Before: Jan 1 21:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a823927ecbb78b092b03894e440a08c90408cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:9b:5d:86:b9:4a:45:23:6f:f8:f4:94:02:
b8:20:5b:e3:cb:a2:9d:06:93:61:77:03:57:84:6b:
ee:72:e9:d3:30:26:26:1a:c8:e8:a2:45:0a:db:cd:
71:79:f4:8f:3d:25:d2:f3:9a:c1:e5:cf:44:5e:77:
b4:38:51:60:1f:6d:ad:6a:3b:61:40:3a:42:9f:bb:
9a:c8:dd:37:fd:b6:a4:d0:ee:62:c0:6f:4c:92:bd:
9d:34:21:93:92:b0:82:08:e9:98:70:88:c3:ed:d4:
ea:b1:0f:04:57:77:83:80:30:0f:fb:ec:f7:d5:be:
18:ed:42:f6:a5:23:e3:b9:ef:a4:25:2e:1b:ae:c6:
72:16:b3:ba:c7:87:b8:36:0e:4b:ed:61:1b:02:73:
a3:f3:e4:4d:8e:2c:9e:02:3d:32:68:43:66:02:28:
f7:68:8b:f8:97:11:a0:62:94:fa:fc:aa:67:79:26:
99:28:f2:d7:23:86:ae:d4:03:04:4c:28:43:1b:35:
54:23:4f:c0:46:d5:a7:ae:3f:5b:3f:c2:16:bb:e1:
72:90:89:0e:e6:2f:5a:98:c6:55:3f:51:7e:c4:c2:
fe:bd:b5:ae:0b:fa:01:ec:1e:18:51:c1:39:9f:cd:
2c:c9:47:0f:94:83:e5:1c:5c:fa:a2:eb:88:7d:26:
d1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:82:39:27:EC:BB:78:B0:92:B0:38:94:E4:40:A0:8C:90:40:8C:DA
X509v3 Authority Key Identifier:
keyid:D5:B2:32:AA:24:31:CA:4D:E5:D8:25:2A:3C:9C:C6:BB:63:0D:1D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bIyqiQxyk3l2CUqPJzGu2MNHUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2ff8cc-3315-43ee-b898-7ea592f9b29e/1/aoI5J-y7eLCSsDiU5ECgjJBAjNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2ff8cc-3315-43ee-b898-7ea592f9b29e/1/1bIyqiQxyk3l2CUqPJzGu2MNHUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.149.0/24
IPv6:
2001:7f8:e3::/48
Signature Algorithm: sha256WithRSAEncryption
98:88:b2:95:8f:13:ca:1b:90:58:ac:cd:0f:5c:60:bd:c0:13:
d7:b5:1d:37:5d:5b:8d:85:59:dc:ff:28:2f:a8:5d:59:ba:fb:
c9:b5:63:6a:a4:0a:55:a4:74:0d:de:c1:ad:b2:84:91:b9:98:
4c:2b:85:20:64:59:46:03:20:a7:b6:eb:0e:99:3a:62:f1:d6:
8a:d1:20:00:25:c6:3b:e7:96:38:c8:8e:3d:f5:50:06:0a:01:
7e:26:c4:0f:11:c6:82:27:b5:43:6a:85:cb:16:d3:6f:34:00:
03:cf:11:40:b5:35:17:00:a1:1a:dd:3a:81:73:e3:29:03:d3:
5b:4e:d6:e5:42:f3:6e:5b:ec:04:e6:79:90:d9:d4:4d:d7:ca:
9a:45:e0:a1:51:d2:bf:f9:6f:4b:c5:84:96:36:9c:30:75:a1:
6d:da:9e:46:1b:52:46:a8:eb:e1:4e:80:25:d5:85:db:7f:a7:
cb:2a:ec:b2:41:02:ea:ea:61:b5:81:9e:b3:26:40:da:f7:f7:
3c:58:de:1a:d6:66:6a:92:c3:3b:a7:be:fb:10:f4:1e:72:10:
1e:3e:76:c4:be:d5:14:b6:3d:12:5a:10:23:98:aa:39:ac:b7:
eb:9e:92:59:ef:54:82:30:61:fb:53:13:9d:b5:03:f5:fa:6a:
6c:c1:4e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:29 2024 by rpki-client on console-fra.rpki-client.org