Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/g4DfOeyZOKyx2XTQXyBuljdhweA.roa
File: g4DfOeyZOKyx2XTQXyBuljdhweA.roa (raw, json)
Hash identifier: mWHDKOLBD6HpE+j4mmnvZpLHSIVOUl/nyWbyN/T1G7o=
Subject key identifier: 83:80:DF:39:EC:99:38:AC:B1:D9:74:D0:5F:20:6E:96:37:61:C1:E0
Certificate issuer: /CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Certificate serial: 018572C38AEBA3477B83D9770AB036AACF47
Authority key identifier: 32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/g4DfOeyZOKyx2XTQXyBuljdhweA.roa
Signing time: Mon 02 Jan 2023 13:54:55 +0000
ROA not before: Mon 02 Jan 2023 13:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204331
IP address blocks: 185.253.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:8a:eb:a3:47:7b:83:d9:77:0a:b0:36:aa:cf:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Validity
Not Before: Jan 2 13:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8380df39ec9938acb1d974d05f206e963761c1e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:46:4f:d9:06:f2:a6:2c:52:f6:31:83:8b:53:
2b:4a:4f:fa:6d:6a:1f:f4:7e:ee:5a:26:28:e5:f9:
d2:a1:2e:b4:b0:51:be:19:7e:8d:91:bd:fd:34:79:
c3:f8:6f:c6:8a:4c:8f:57:5d:2e:10:24:09:53:64:
5c:97:fe:bf:c0:5b:11:a2:06:47:8f:44:69:5b:59:
1e:b5:2c:b3:5e:98:d5:93:71:57:23:86:b1:88:c8:
31:86:c8:3f:04:bc:b9:7c:49:95:a9:3c:90:7b:63:
39:1a:f3:0b:1b:d0:50:01:3d:97:b2:f8:8f:d9:f0:
f0:ca:c9:d6:d1:20:2f:b0:35:9d:94:ba:05:77:9e:
6d:20:5b:9b:d8:21:15:be:97:c4:d4:20:59:b0:11:
26:ec:79:e2:75:8b:4a:79:db:b0:5f:fc:f6:bf:5a:
37:af:f2:03:c7:bc:6b:bc:78:86:38:a8:f9:bd:1e:
40:ee:b2:38:bb:5a:e6:ba:ab:2a:56:3f:80:9b:a1:
c5:d3:de:f1:f7:d3:51:e4:ee:6d:5f:4b:77:2e:1c:
1b:8c:ce:8c:e6:77:2e:8d:72:bf:3b:0f:e5:c3:bf:
d4:0b:39:6d:7b:21:60:99:45:94:e3:e1:2f:57:73:
26:f8:f6:11:a6:1e:e7:29:64:60:2b:09:70:a1:5d:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:80:DF:39:EC:99:38:AC:B1:D9:74:D0:5F:20:6E:96:37:61:C1:E0
X509v3 Authority Key Identifier:
keyid:32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/g4DfOeyZOKyx2XTQXyBuljdhweA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:f0:6b:33:a6:e4:a0:d1:f7:ec:79:d0:8d:c0:af:32:23:e7:
d1:1c:53:61:b1:d2:1d:d8:53:95:22:40:b5:fb:fd:59:ef:19:
a1:57:02:63:79:38:89:d2:60:88:bd:78:f4:32:dc:bc:86:76:
8b:29:bf:0b:2e:7d:54:c5:06:e5:81:61:c8:ed:4e:78:a3:d7:
0c:ee:cd:59:1b:bf:15:5d:53:03:32:e2:d5:55:63:c6:58:92:
82:3d:53:ef:ec:ec:ca:f7:4f:b8:d3:b8:98:01:67:a8:6f:50:
3f:a5:8a:1f:c8:84:85:2f:75:a5:f7:a3:a4:60:d5:8b:ae:5f:
7b:0d:37:cd:82:8e:af:19:af:fc:d5:bb:86:a7:15:7f:c1:b8:
a3:7a:8f:e2:a0:82:22:4d:30:91:5a:49:03:a3:c1:90:bf:dc:
8c:0f:ee:20:a4:60:5a:f0:17:65:3b:25:85:be:04:5c:83:f0:
3f:4a:67:e7:72:4a:51:a8:c8:e9:36:36:6b:6f:1e:46:ec:e0:
d2:ee:6c:81:87:4b:f0:a0:cb:0e:d1:8c:91:5d:c6:8e:47:0b:
50:62:a6:f4:31:e6:3c:90:f7:79:48:78:6d:5b:e5:03:5f:f3:
a6:ab:d1:41:7c:21:81:4a:15:3a:36:74:6c:6a:a5:54:07:ba:
d7:82:cf:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:39 2024 by rpki-client on console-fra.rpki-client.org