Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/re8kyGce92c67VxL5xsZuvj_QKo.roa
File: re8kyGce92c67VxL5xsZuvj_QKo.roa (raw, json)
Hash identifier: eYRuQF9JEsrN/PjJDsRPzU0FLBAaTBk39LaVElTv370=
Subject key identifier: AD:EF:24:C8:67:1E:F7:67:3A:ED:5C:4B:E7:1B:19:BA:F8:FF:40:AA
Certificate issuer: /CN=64dfe26d403141be9059ab2144325b402d4cab7d
Certificate serial: 018B339AAA2BC05C57728B1FCE4141F4C330
Authority key identifier: 64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/re8kyGce92c67VxL5xsZuvj_QKo.roa
Signing time: Sun 15 Oct 2023 13:50:55 +0000
ROA not before: Sun 15 Oct 2023 13:50:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 185.54.158.0/24 maxlen: 24
176.241.80.0/20 maxlen: 24
185.129.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:33:9a:aa:2b:c0:5c:57:72:8b:1f:ce:41:41:f4:c3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64dfe26d403141be9059ab2144325b402d4cab7d
Validity
Not Before: Oct 15 13:50:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adef24c8671ef7673aed5c4be71b19baf8ff40aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:aa:30:52:58:f0:a3:2f:6c:24:7b:b2:11:a7:
0f:c1:03:67:90:55:89:ab:fb:74:10:eb:c0:d8:d5:
09:8d:46:5c:83:2a:5c:73:c7:4f:e5:74:61:14:b9:
ac:1d:96:6e:68:03:be:bb:38:aa:2d:86:bd:7a:bc:
e7:7d:2c:7e:dc:23:22:3d:76:49:60:ac:26:0c:eb:
6e:a7:f5:cf:50:e6:b7:c9:93:01:0a:f4:fd:f5:55:
12:2a:ce:8f:f5:54:e1:b3:46:96:4d:3c:9d:85:00:
91:fe:89:d6:db:a5:79:30:e4:0b:96:69:32:0c:11:
8e:6f:e9:32:6a:94:b5:43:56:4a:01:7d:13:06:35:
24:f2:be:44:43:1d:09:81:9a:2e:99:57:c3:08:b3:
72:5e:52:f3:a9:72:2b:42:e9:a8:cb:f9:80:11:c4:
06:63:91:b2:a5:36:f2:2d:58:44:43:18:8d:ec:e5:
2c:81:4c:ad:06:46:22:a1:a7:aa:e8:2c:dd:c3:52:
8d:30:1b:21:9a:de:f2:28:e0:c6:fb:79:ac:0c:db:
7a:01:96:da:67:64:61:04:30:f9:c0:52:b7:8e:65:
ea:7e:7e:4a:ee:ba:a0:25:1a:fd:34:5c:14:c7:4a:
e4:0e:53:0c:73:97:80:35:b5:43:10:82:92:6f:e9:
96:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EF:24:C8:67:1E:F7:67:3A:ED:5C:4B:E7:1B:19:BA:F8:FF:40:AA
X509v3 Authority Key Identifier:
keyid:64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/re8kyGce92c67VxL5xsZuvj_QKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.241.80.0/20
185.54.158.0/24
185.129.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:f3:c4:1a:97:1f:f0:ae:01:13:35:14:43:f4:2f:97:96:65:
21:07:b7:cd:48:dc:2c:14:df:1e:a0:78:1b:b7:f4:a3:61:3b:
1f:52:c8:85:32:d1:30:1b:f5:4e:de:9f:5e:e7:93:50:e0:63:
95:d9:6b:ad:81:71:9c:8a:8d:7e:89:07:ae:5e:f3:bf:d1:58:
14:09:9a:47:7c:ae:3e:d7:e1:46:5d:b7:41:4b:e5:84:2e:b7:
05:eb:f7:e9:d3:41:45:97:df:18:06:6c:f0:56:b5:4f:d3:47:
15:6d:b1:81:f3:6f:82:b5:de:c1:bf:86:d9:64:95:a0:69:b9:
f1:6c:de:a3:a6:82:3c:c2:14:7c:7a:b2:20:1d:27:4e:c5:02:
dd:bd:7c:4c:4a:8d:29:ec:b7:5c:df:14:42:44:0b:b5:06:9d:
35:61:1b:e8:5f:3c:52:56:b7:8e:57:4a:d5:dc:89:d3:11:0f:
67:70:77:f1:e2:91:ca:c1:1e:82:bf:fa:02:6e:8b:cc:cf:aa:
c7:50:60:14:a4:32:6c:a6:30:60:ec:b7:3c:df:d4:c7:fe:f3:
20:a2:eb:15:cc:a4:a9:79:3b:f2:cc:ce:52:c0:51:45:9f:a6:
37:c2:4a:f5:8a:8c:bc:cb:68:b1:1f:12:bd:b2:dc:b3:39:ed:
54:66:62:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org