Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/u_minHaSJAa3z2cOO6MxR0bkYwU.roa
File: u_minHaSJAa3z2cOO6MxR0bkYwU.roa (raw, json)
Hash identifier: vkZsb7CKep5RmXu+JLgKwywM28Miun7M4/Z7p/7eKxY=
Subject key identifier: BB:F9:A2:9C:76:92:24:06:B7:CF:67:0E:3B:A3:31:47:46:E4:63:05
Certificate issuer: /CN=79c98cbb37fea2e9c9a6eb6f92887c05a4c50691
Certificate serial: 0185708CEDC36485B6897BB813DD8D4EA354
Authority key identifier: 79:C9:8C:BB:37:FE:A2:E9:C9:A6:EB:6F:92:88:7C:05:A4:C5:06:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ecmMuzf-ounJputvkoh8BaTFBpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/u_minHaSJAa3z2cOO6MxR0bkYwU.roa
Signing time: Mon 02 Jan 2023 03:36:01 +0000
ROA not before: Mon 02 Jan 2023 03:36:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1836
IP address blocks: 185.169.60.0/22 maxlen: 22
2a0a:3d00::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Jan 2023 20:34:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:ed:c3:64:85:b6:89:7b:b8:13:dd:8d:4e:a3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79c98cbb37fea2e9c9a6eb6f92887c05a4c50691
Validity
Not Before: Jan 2 03:36:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbf9a29c76922406b7cf670e3ba3314746e46305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:f4:61:5b:11:3e:1b:0d:50:d3:ed:4f:29:
d9:0a:ed:ae:45:2f:07:8b:8c:d0:78:e2:d5:ee:74:
d8:40:12:fe:0f:fc:85:ca:a2:b6:26:46:86:8b:bc:
63:7c:25:b7:2e:47:b8:a9:52:cf:28:79:63:4f:c0:
68:95:58:ba:49:1e:71:f9:10:77:a7:63:79:c5:a0:
25:37:94:0e:b5:bd:3f:62:c1:cf:51:30:e7:8e:9e:
01:28:2b:05:00:6f:18:17:a0:c3:22:6e:52:a3:e0:
5b:7c:50:60:1e:32:04:5d:05:a9:12:e5:0c:af:54:
31:8d:81:ab:f1:8d:05:d8:91:fa:4c:9a:43:dc:d8:
cf:41:8b:3f:af:07:c9:52:fa:2b:6c:c4:2c:5f:1b:
4e:2f:1e:b6:de:58:3c:f6:1e:aa:07:eb:e2:d6:9e:
d5:da:7b:98:50:4e:f4:02:6d:45:b2:1b:9f:3e:3b:
71:55:ad:69:d5:ff:55:0d:a2:fc:6f:fd:58:22:12:
e9:69:61:cf:1a:ba:39:2e:7d:0a:cf:d4:47:1e:7e:
7d:83:40:23:8b:2f:61:d4:a9:df:6e:f7:e1:8f:eb:
db:ca:b4:2f:69:71:45:01:bb:d9:81:da:3d:eb:c6:
fb:62:84:4a:39:98:82:8d:54:5a:18:02:e4:5c:25:
f1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F9:A2:9C:76:92:24:06:B7:CF:67:0E:3B:A3:31:47:46:E4:63:05
X509v3 Authority Key Identifier:
keyid:79:C9:8C:BB:37:FE:A2:E9:C9:A6:EB:6F:92:88:7C:05:A4:C5:06:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ecmMuzf-ounJputvkoh8BaTFBpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/u_minHaSJAa3z2cOO6MxR0bkYwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/ecmMuzf-ounJputvkoh8BaTFBpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.60.0/22
IPv6:
2a0a:3d00::/48
Signature Algorithm: sha256WithRSAEncryption
47:fb:a7:90:33:41:d2:c4:51:36:d5:8d:a0:22:22:f4:cd:37:
c9:9f:72:fa:5a:0b:cb:ac:e6:f6:36:21:f3:64:2e:a4:88:3b:
e5:98:b9:97:7e:83:58:08:73:92:7c:94:16:67:44:7f:46:d5:
f6:cb:c9:f3:8c:5c:52:23:cc:22:ab:d8:ad:77:da:ba:22:7e:
2d:53:69:f6:10:8d:80:e9:6d:6d:34:e5:49:65:52:38:5f:1c:
8d:68:e8:d0:e0:9d:00:8b:40:7d:f3:b8:cb:de:0d:3c:2a:e2:
cd:f6:7b:db:b8:e9:02:3c:f7:54:d7:be:64:18:c7:e7:09:e3:
a6:a8:ce:9b:77:e9:8b:19:bf:6b:6d:7c:33:3e:51:25:f4:53:
66:51:6b:de:71:ea:3b:ea:99:1b:98:d3:57:db:e2:b9:b4:2a:
1a:10:b3:c5:65:86:a4:d8:66:7b:b2:97:db:6c:91:a3:fc:0f:
a0:d8:9f:4d:31:0c:04:75:ff:88:8f:4d:d4:fa:4e:6f:94:4d:
21:a8:57:8b:5f:8e:0f:55:ab:3f:bf:47:7b:9f:47:e6:af:94:
36:c2:27:cb:59:7a:4f:f0:db:31:61:67:41:80:06:70:28:85:
56:1d:f2:9d:e9:38:8e:c8:03:13:10:1f:a0:ea:4f:6d:a8:3c:
32:81:86:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:55 2024 by rpki-client on console-fra.rpki-client.org