Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/iOqCQ7Drl1eEqeUfBYO5iV2BvAM.roa
File: iOqCQ7Drl1eEqeUfBYO5iV2BvAM.roa (raw, json)
Hash identifier: j1/CJXrKRZa7W0AgCDVaxhbnpPDb61bQ/xAIsbSdpxA=
Subject key identifier: 88:EA:82:43:B0:EB:97:57:84:A9:E5:1F:05:83:B9:89:5D:81:BC:03
Certificate issuer: /CN=64dfe26d403141be9059ab2144325b402d4cab7d
Certificate serial: 018572559D0289B52163231BB37F2358DA6D
Authority key identifier: 64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/iOqCQ7Drl1eEqeUfBYO5iV2BvAM.roa
Signing time: Mon 02 Jan 2023 11:54:51 +0000
ROA not before: Mon 02 Jan 2023 11:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49760
IP address blocks: 185.54.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9d:02:89:b5:21:63:23:1b:b3:7f:23:58:da:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64dfe26d403141be9059ab2144325b402d4cab7d
Validity
Not Before: Jan 2 11:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88ea8243b0eb975784a9e51f0583b9895d81bc03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0b:9c:f6:ce:64:83:fb:2a:ee:b3:fb:6f:43:
10:96:bf:d7:25:a5:cf:e5:c4:54:c8:36:c9:4a:2c:
ee:00:bd:cf:6c:a4:44:a4:37:14:29:fd:f1:8d:7f:
d1:8f:2d:19:09:e5:99:31:21:02:60:e3:a3:37:4d:
bb:ce:cd:f5:03:db:7d:bf:5c:d7:5b:79:c9:bb:b3:
d2:b7:cb:75:3f:ea:35:5c:dc:87:a2:bc:0b:b2:3c:
aa:5b:0c:7c:46:8b:13:91:2c:0b:0b:fb:77:db:c0:
f0:67:6b:9e:e6:5e:23:dd:7b:b8:9b:d6:23:47:3b:
67:55:56:c2:0b:37:20:da:a5:4f:51:57:ee:de:60:
d7:27:62:be:f2:a5:07:57:36:cf:54:6d:11:99:76:
7d:e0:b6:d2:63:5f:4e:2a:cc:19:66:43:f0:a8:a0:
49:bb:d4:bd:f4:00:06:14:30:21:8a:e5:6c:9f:a0:
e7:20:ac:aa:5c:05:a7:bc:cc:a5:9d:aa:96:91:6d:
18:2d:2f:2e:27:9b:a7:76:9f:8c:17:f7:2c:21:4e:
97:5d:6b:c3:1c:ba:be:da:ea:17:df:0d:e3:f9:7e:
0d:d4:73:50:5c:b6:dd:94:f3:0c:55:a4:f8:58:4a:
fe:cc:c7:df:c1:42:f5:24:4c:b2:84:aa:6a:5c:86:
f3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EA:82:43:B0:EB:97:57:84:A9:E5:1F:05:83:B9:89:5D:81:BC:03
X509v3 Authority Key Identifier:
keyid:64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/iOqCQ7Drl1eEqeUfBYO5iV2BvAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.158.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:fc:cc:8e:2b:73:c2:af:86:28:60:2e:b6:99:e3:da:78:ef:
9d:32:47:f8:8e:2a:94:0a:5d:80:4b:02:0e:8c:0a:ae:3a:be:
a1:0c:06:b7:c1:35:33:99:67:aa:30:fc:48:1c:3b:23:d1:70:
be:06:52:d7:f3:9e:a7:3f:b9:9b:e8:be:c8:7a:63:89:54:eb:
1b:d6:0e:fb:55:49:f9:99:c0:fb:22:2c:e1:7f:60:db:68:da:
21:83:0d:fa:5e:59:6e:c9:a8:e7:73:7c:ac:00:d8:47:c2:9f:
a7:ec:5e:81:46:e3:b1:16:f1:6c:85:46:f0:35:b7:06:92:d1:
72:30:f1:22:35:85:f3:d5:d3:17:ad:87:d6:4a:66:b3:7d:f7:
11:ed:46:c1:ae:45:22:5d:07:7b:6a:03:c5:39:f2:57:9b:95:
72:f3:e5:1f:91:f2:5e:02:03:9d:ec:f7:0a:c9:54:60:4e:86:
1a:81:46:40:0a:83:d7:db:3f:4a:5f:19:d8:1d:9e:a1:a8:9f:
af:d0:07:7b:10:96:80:2f:0f:44:96:a4:c4:fe:6a:27:c7:4d:
eb:51:84:ae:f4:17:2f:85:02:31:e8:04:17:08:f2:4a:8e:11:
2d:9c:67:d1:95:e1:82:7a:74:c5:8d:07:5c:9d:e5:bc:07:5b:
28:bb:6c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org