Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9cfd8e-23cd-447a-9d2c-d0b111ba4148/1/Ilhim7vtXRlsVSwehhHy0rtiWQg.roa
File: Ilhim7vtXRlsVSwehhHy0rtiWQg.roa (raw, json)
Hash identifier: gYV+vIHjJkyFdfBVuYGuh1Y2FaNxloPnwemvDkaPk7g=
Subject key identifier: 22:58:62:9B:BB:ED:5D:19:6C:55:2C:1E:86:11:F2:D2:BB:62:59:08
Certificate issuer: /CN=28f567549983f43add998c36e8f78bd15f45a2cc
Certificate serial: 0185701536B9E1F63AB0D683884548C4DDAA
Authority key identifier: 28:F5:67:54:99:83:F4:3A:DD:99:8C:36:E8:F7:8B:D1:5F:45:A2:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPVnVJmD9DrdmYw26PeL0V9Fosw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/9cfd8e-23cd-447a-9d2c-d0b111ba4148/1/Ilhim7vtXRlsVSwehhHy0rtiWQg.roa
Signing time: Mon 02 Jan 2023 01:25:16 +0000
ROA not before: Mon 02 Jan 2023 01:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199947
IP address blocks: 185.41.32.0/22 maxlen: 22
45.140.84.0/22 maxlen: 22
2a01:5420::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:36:b9:e1:f6:3a:b0:d6:83:88:45:48:c4:dd:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f567549983f43add998c36e8f78bd15f45a2cc
Validity
Not Before: Jan 2 01:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2258629bbbed5d196c552c1e8611f2d2bb625908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:a7:9b:0c:bb:c0:08:71:d7:4c:b3:23:8f:
48:62:7f:81:18:a5:33:7d:5d:91:fb:40:20:fc:45:
de:d6:a7:d0:a8:7a:66:8d:da:ff:63:8d:db:88:5f:
d5:1e:9c:3c:4f:88:85:7d:ec:b5:47:38:d9:fd:06:
d2:88:53:77:8a:69:dc:0c:67:2e:ba:98:0d:f8:59:
88:e6:37:74:04:0e:42:d9:90:94:f7:a2:0e:24:22:
a9:20:41:c5:1f:f7:81:a0:c4:42:89:ab:f6:f0:b4:
70:43:ad:53:1d:a5:fb:5d:c8:fd:ee:63:28:8f:ea:
0e:bd:09:61:bf:43:0c:21:ec:84:bd:63:41:aa:68:
28:2e:04:33:d4:79:82:c1:9d:e8:d7:a3:d0:76:5b:
c5:f5:c7:ac:ce:f4:d3:bf:f0:ff:30:8f:cb:9b:3a:
33:f3:c8:b3:2c:f1:41:56:d0:1e:5f:24:dc:e5:7c:
54:2c:65:7c:48:78:a6:68:52:1a:7b:6f:b9:8f:b8:
46:57:a2:96:c5:3f:e1:b6:ba:48:82:89:90:c1:8a:
68:ea:72:a7:ed:de:1e:91:e7:d5:7a:a1:e2:02:11:
47:3f:a4:46:be:14:10:ac:62:05:dd:d8:96:78:c9:
81:9f:a5:5f:1b:06:95:d0:ad:3b:81:15:34:43:eb:
83:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:58:62:9B:BB:ED:5D:19:6C:55:2C:1E:86:11:F2:D2:BB:62:59:08
X509v3 Authority Key Identifier:
keyid:28:F5:67:54:99:83:F4:3A:DD:99:8C:36:E8:F7:8B:D1:5F:45:A2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPVnVJmD9DrdmYw26PeL0V9Fosw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9cfd8e-23cd-447a-9d2c-d0b111ba4148/1/Ilhim7vtXRlsVSwehhHy0rtiWQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9cfd8e-23cd-447a-9d2c-d0b111ba4148/1/KPVnVJmD9DrdmYw26PeL0V9Fosw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.84.0/22
185.41.32.0/22
IPv6:
2a01:5420::/32
Signature Algorithm: sha256WithRSAEncryption
0c:a1:42:1d:ef:f0:b3:a7:ad:23:c6:58:e6:b9:15:2d:d0:bb:
fe:bf:fc:8a:38:6d:9c:c7:b5:2f:d2:d1:79:bb:75:e8:c6:4e:
dd:1a:60:ce:69:15:32:7a:38:3f:a7:2b:a2:a0:66:2e:5d:61:
ae:d0:eb:fb:83:cf:70:74:16:4a:aa:71:a2:04:f7:4a:78:52:
40:f8:0e:87:93:d6:87:86:50:a1:a6:59:90:e8:ff:92:f6:d1:
4c:56:49:09:ff:b3:7a:a8:e0:f5:d4:f1:05:b3:17:ba:b4:93:
a2:9b:dc:da:43:f5:fb:b3:32:9a:49:b8:0b:a7:92:24:ae:4e:
9b:e4:1a:64:e1:33:f0:53:2c:3a:9a:dd:50:3e:a4:9d:31:19:
41:c3:19:33:b3:f6:0c:be:e6:be:14:0e:ac:04:a8:a6:e8:fd:
d0:d3:a1:8f:32:16:65:bf:e6:70:61:c4:6b:25:50:85:88:cc:
da:8a:c8:03:73:79:2c:33:c9:13:d8:6d:e5:d7:fd:3b:5f:6d:
0e:f2:61:f0:3b:7e:5f:12:75:f5:62:e3:55:36:7e:c8:ed:c2:
63:ee:df:86:3d:4e:05:bf:b9:03:62:3d:da:d4:53:9f:1c:a9:
a6:2a:39:19:ab:b5:b2:33:8c:b0:92:21:67:56:b2:b0:79:39:
d3:1e:10:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:21 2024 by rpki-client on console-fra.rpki-client.org