Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/326bbc-d061-4af1-8964-41d79efb49a9/1/7LhUvPmPRiaz1q_LDxaEWJAk6PQ.roa
File: 7LhUvPmPRiaz1q_LDxaEWJAk6PQ.roa (raw, json)
Hash identifier: E5o0sVsKWrZQlLQ6I0vxhvH5gS9dqtIngtnWIGy1awk=
Subject key identifier: EC:B8:54:BC:F9:8F:46:26:B3:D6:AF:CB:0F:16:84:58:90:24:E8:F4
Certificate issuer: /CN=99efbb2b1653422837937dd27de354e68f9e01a3
Certificate serial: 01857082BD81AA1A67AFBF33D64DF94E3C34
Authority key identifier: 99:EF:BB:2B:16:53:42:28:37:93:7D:D2:7D:E3:54:E6:8F:9E:01:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/me-7KxZTQig3k33SfeNU5o-eAaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/326bbc-d061-4af1-8964-41d79efb49a9/1/7LhUvPmPRiaz1q_LDxaEWJAk6PQ.roa
Signing time: Mon 02 Jan 2023 03:24:54 +0000
ROA not before: Mon 02 Jan 2023 03:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203676
IP address blocks: 185.137.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bd:81:aa:1a:67:af:bf:33:d6:4d:f9:4e:3c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99efbb2b1653422837937dd27de354e68f9e01a3
Validity
Not Before: Jan 2 03:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecb854bcf98f4626b3d6afcb0f1684589024e8f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b2:69:c3:74:7b:57:4e:e4:70:c6:de:97:c3:
ba:09:af:16:f7:fb:df:f8:e9:9a:7a:0a:00:a9:e7:
5a:e3:5c:ce:72:36:ce:02:4c:53:83:f7:88:f6:1f:
b9:8c:88:f0:48:c5:f8:28:27:de:43:00:18:b3:91:
29:04:88:2e:cf:a0:93:08:46:bf:5d:1e:ce:5c:65:
fa:93:7e:1b:6b:18:78:f9:ef:7d:c3:7c:b9:5f:6f:
05:a0:d6:a9:79:16:6b:55:db:a4:54:c3:9c:54:59:
e9:2c:cc:30:12:39:b7:b9:40:36:f3:22:42:8f:98:
46:83:1e:43:0f:e5:e4:70:0c:5d:73:1d:4e:2c:b6:
49:c6:16:a8:c4:ca:bb:01:93:9e:66:39:84:64:d6:
cc:8b:d2:10:e8:ce:11:c6:e3:e2:c5:e7:5d:dd:cc:
38:75:33:91:a8:da:10:87:a5:7e:53:3b:58:66:ff:
33:60:bd:31:49:a0:7e:6c:72:db:2f:f1:d0:ec:6b:
91:56:56:d2:13:03:72:ab:50:e0:d3:06:6b:25:0e:
3c:dc:90:92:4e:b5:46:4d:7d:bd:c7:67:d0:fd:0b:
81:f5:16:3b:4f:30:1d:4f:26:c8:e5:98:c3:b1:48:
58:88:ed:e5:91:90:95:11:54:29:00:85:9a:19:88:
4a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B8:54:BC:F9:8F:46:26:B3:D6:AF:CB:0F:16:84:58:90:24:E8:F4
X509v3 Authority Key Identifier:
keyid:99:EF:BB:2B:16:53:42:28:37:93:7D:D2:7D:E3:54:E6:8F:9E:01:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/me-7KxZTQig3k33SfeNU5o-eAaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/326bbc-d061-4af1-8964-41d79efb49a9/1/7LhUvPmPRiaz1q_LDxaEWJAk6PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/326bbc-d061-4af1-8964-41d79efb49a9/1/me-7KxZTQig3k33SfeNU5o-eAaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.240.0/22
Signature Algorithm: sha256WithRSAEncryption
54:67:f8:23:e4:cc:64:f9:13:0e:70:ec:5e:3d:89:1b:42:2a:
b7:4c:c5:3d:17:21:34:2b:3d:08:b2:10:e8:81:1a:90:aa:0b:
45:3a:d6:74:f1:d6:a8:2d:37:9a:0f:74:01:b8:04:82:07:d1:
a7:cb:84:24:1f:17:9a:c5:df:80:a3:15:77:78:c4:88:7d:83:
de:44:fd:f0:8c:9f:a2:b3:f8:35:c4:d4:a9:70:54:b8:58:c8:
a3:b8:9e:ab:1a:35:d1:56:b5:61:0d:f6:8e:a5:fd:4c:b4:f2:
da:07:0b:e4:9a:b2:b5:60:23:9f:4c:a5:16:59:87:29:e2:6c:
9f:db:71:ec:ef:12:f6:46:23:8a:4e:09:48:d2:61:97:e2:f4:
57:2d:71:14:ee:cf:87:c0:68:fb:93:90:8c:53:ed:3c:2d:4b:
7c:68:52:26:db:5b:ec:75:61:ea:8e:3f:cb:09:c7:91:98:cb:
59:2b:b0:b8:60:2e:f2:d1:2f:e9:e0:3b:83:43:46:7d:71:54:
9a:34:bc:1d:d1:48:f2:ad:3b:f4:27:df:c1:17:8f:ff:40:41:
61:23:d8:2d:54:8e:14:4f:52:e5:3a:bf:1f:66:d0:43:e3:4a:
3e:fb:25:b9:5e:25:a2:f0:4c:0c:85:1a:03:33:e6:8e:7a:7a:
93:65:23:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:00 2024 by rpki-client on console-fra.rpki-client.org