Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/6fo26aOvovtYXXBzMJU6lvK9g3E.roa
File: 6fo26aOvovtYXXBzMJU6lvK9g3E.roa (raw, json)
Hash identifier: R2tDtQ+Rh4+JkhkMN0e4LqGvDOC0ieNmtNGhIY7fYDU=
Subject key identifier: E9:FA:36:E9:A3:AF:A2:FB:58:5D:70:73:30:95:3A:96:F2:BD:83:71
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 018570C2BC292A9FB8E572E07D50168D6FA1
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/6fo26aOvovtYXXBzMJU6lvK9g3E.roa
Signing time: Mon 02 Jan 2023 04:34:48 +0000
ROA not before: Mon 02 Jan 2023 04:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14413
IP address blocks: 185.154.80.0/22 maxlen: 22
2a05:f506::/32 maxlen: 48
2a05:f505::/32 maxlen: 48
2a05:f504::/32 maxlen: 48
2a05:f500::/30 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:bc:29:2a:9f:b8:e5:72:e0:7d:50:16:8d:6f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: Jan 2 04:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9fa36e9a3afa2fb585d707330953a96f2bd8371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:4e:73:6d:4c:26:77:8e:2f:2d:c4:a6:46:
7b:ea:08:29:e6:7a:9d:82:96:2f:fc:82:df:76:b1:
d0:33:41:e7:df:43:b2:78:5f:87:bb:da:6e:fa:1e:
d8:88:c3:fa:4e:7a:48:1f:6d:ab:47:13:11:62:d2:
15:3e:1d:bf:89:9e:b0:6b:45:3b:77:3a:99:ea:cd:
53:20:ec:77:d3:46:a4:2d:d0:1a:b2:c9:e6:2e:c8:
6f:7e:98:75:e1:e2:35:32:a5:4b:1d:e9:8f:ad:73:
47:5a:5e:b0:97:ba:65:d1:0d:a8:72:42:31:bf:42:
36:c9:bc:b3:ed:e2:a6:03:b3:30:75:12:bd:2f:c1:
d0:2e:1f:4c:15:d5:65:e5:bc:20:86:6f:94:c0:26:
cb:a7:0d:44:7a:5b:4c:b6:81:f6:54:8f:2d:34:55:
b2:be:39:46:b0:b4:d7:6f:9e:62:f7:dd:10:79:f6:
f6:83:0d:61:cf:fb:52:7d:0f:e7:26:d5:9e:d1:28:
2c:52:ca:ef:d3:b2:8e:ca:7a:ab:15:22:56:01:a0:
7b:3d:dc:5a:3d:a2:21:99:97:a5:59:76:34:0d:c0:
c8:a3:0e:da:e0:fb:17:ee:32:21:82:58:2f:a7:4e:
b8:42:63:74:64:8c:b7:ef:7c:10:22:25:bc:cf:23:
5d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FA:36:E9:A3:AF:A2:FB:58:5D:70:73:30:95:3A:96:F2:BD:83:71
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/6fo26aOvovtYXXBzMJU6lvK9g3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500::-2a05:f506:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
81:76:f1:98:33:b4:05:0a:2c:39:49:9f:09:4f:d0:96:fb:e2:
b9:3d:68:5b:4a:ea:c6:0d:c4:db:79:18:b9:57:b1:3b:a2:b2:
a8:7d:dd:7d:1f:de:a3:b3:54:46:85:96:c9:27:6a:20:6f:0d:
64:c9:45:23:e5:0f:72:7a:9d:eb:b9:fc:9c:5c:62:d1:81:11:
6f:79:47:8b:49:5e:26:46:b2:cb:ca:7e:85:fb:7c:eb:c0:10:
ae:de:56:c4:75:2c:83:a6:ae:05:a6:4f:1c:d6:f2:3c:e8:eb:
2b:89:e7:cd:01:bb:01:d7:f2:c4:70:59:14:ae:b8:e5:29:b3:
c5:21:39:d5:e6:a9:35:66:3f:47:d5:fd:83:94:16:fb:49:7e:
8a:31:21:3b:33:6f:32:3f:e1:2a:67:5c:26:5e:38:83:49:ad:
8f:c2:38:27:1e:2f:3a:f1:0b:9b:d2:e7:95:63:29:6c:78:cd:
fc:35:36:ee:dd:06:ee:4a:85:dc:a4:21:7b:d9:a2:c5:cb:59:
e1:65:ad:b5:41:6a:3d:36:c4:98:42:ba:fc:b1:da:34:3b:1e:
3d:43:84:f4:37:83:e3:72:3d:22:1d:ee:54:0d:51:78:8c:a7:
ea:c7:ac:5c:68:96:23:d0:95:9c:15:25:bf:cf:8e:32:c3:03:
38:38:37:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:16 2024 by rpki-client on console-fra.rpki-client.org