Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/65ab29-0c20-417a-8958-97fe470809f9/1/1-qUZACmZ0I4_vfBXcE2UF5szbEg.roa
File: 1-qUZACmZ0I4_vfBXcE2UF5szbEg.roa (raw, json)
Hash identifier: ZZIfD0wQzY/IM2Fg/H1CW81Ke7zzMArd8YADrUtup8s=
Subject key identifier: FA:A5:19:00:29:99:D0:8E:3F:BD:F0:57:70:4D:94:17:9B:33:6C:48
Certificate issuer: /CN=ed7efb0a28f10cba751c92ccb0bfbf357b9a625d
Certificate serial: 0185732822D13A03548826009666FA77927A
Authority key identifier: ED:7E:FB:0A:28:F1:0C:BA:75:1C:92:CC:B0:BF:BF:35:7B:9A:62:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7X77CijxDLp1HJLMsL-_NXuaYl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/65ab29-0c20-417a-8958-97fe470809f9/1/1-qUZACmZ0I4_vfBXcE2UF5szbEg.roa
Signing time: Mon 02 Jan 2023 15:44:48 +0000
ROA not before: Mon 02 Jan 2023 15:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199831
IP address blocks: 185.45.216.0/22 maxlen: 22
185.30.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:22:d1:3a:03:54:88:26:00:96:66:fa:77:92:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed7efb0a28f10cba751c92ccb0bfbf357b9a625d
Validity
Not Before: Jan 2 15:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=faa519002999d08e3fbdf057704d94179b336c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d8:14:b1:1c:9b:b2:9f:ed:64:f0:c9:c1:37:
26:53:01:18:ee:18:bf:57:78:b5:4d:da:00:fe:4a:
2d:7d:92:c4:e2:05:4e:af:77:69:d9:61:7b:2c:ad:
50:56:1c:20:a8:d1:a1:e5:4a:95:0d:38:0d:0e:e0:
52:41:64:24:54:e8:7f:de:4f:cd:40:ef:0b:9d:38:
90:c8:00:ad:76:91:c5:1e:22:17:e9:32:b1:f5:00:
01:50:a6:d0:a4:8b:48:ae:59:9e:6f:54:df:6f:d0:
9f:fa:c9:c4:5e:93:78:54:f0:c7:38:01:b2:e1:0b:
a4:3b:7d:03:e4:ae:d0:e1:47:60:55:a5:65:f9:c0:
42:a0:8f:2c:a6:97:3b:d9:e4:bd:f8:76:66:4e:02:
bd:82:27:95:ea:1d:b2:fb:7b:03:38:72:44:5c:7a:
2d:d2:6e:7d:41:7e:8d:4e:1a:5d:9e:70:09:61:e7:
9f:71:69:b8:d8:7e:bc:b4:cc:84:33:b8:29:ea:20:
f7:df:ed:c3:5f:74:0e:f0:91:9c:b4:d4:38:83:16:
f5:91:55:bb:a2:a1:13:bf:ac:fb:34:97:b3:b9:58:
26:ef:2a:7a:60:7d:ca:9a:48:b9:fb:43:7d:bb:42:
7d:38:54:5f:ed:00:60:f5:de:15:c2:91:56:0b:1d:
c6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A5:19:00:29:99:D0:8E:3F:BD:F0:57:70:4D:94:17:9B:33:6C:48
X509v3 Authority Key Identifier:
keyid:ED:7E:FB:0A:28:F1:0C:BA:75:1C:92:CC:B0:BF:BF:35:7B:9A:62:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7X77CijxDLp1HJLMsL-_NXuaYl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/65ab29-0c20-417a-8958-97fe470809f9/1/1-qUZACmZ0I4_vfBXcE2UF5szbEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/65ab29-0c20-417a-8958-97fe470809f9/1/7X77CijxDLp1HJLMsL-_NXuaYl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.0.0/22
185.45.216.0/22
Signature Algorithm: sha256WithRSAEncryption
22:f3:3c:74:46:0a:a2:45:e8:e1:cc:55:78:0b:c7:0a:5c:0e:
b3:5c:a9:67:61:0b:26:ee:fd:12:2a:ea:27:da:48:d7:bb:bc:
25:e5:8e:0d:3a:c8:f1:04:9c:4c:83:55:e3:1d:9f:ae:01:85:
fc:ce:d4:6f:ec:39:54:c5:71:ac:be:6c:54:81:9d:4a:d5:53:
08:15:44:bc:07:1f:ae:bb:d9:73:0e:93:68:1b:ee:b3:dc:8a:
0d:63:9a:c1:67:08:f0:de:82:ac:f3:d6:9a:79:92:37:3f:9d:
9a:4a:d9:6b:28:20:fd:64:fa:07:60:ea:db:c3:13:d3:c8:f4:
f6:f5:84:b6:19:4e:bb:dd:b8:97:bf:87:c1:02:05:a3:a9:a9:
30:02:98:8e:e0:3f:53:e9:f8:a6:f9:64:ae:d1:a1:3b:60:91:
0a:30:6d:6b:3b:60:e2:d6:76:10:89:f5:aa:31:69:a7:25:09:
dc:76:e1:c1:fb:db:02:af:bd:97:f5:e5:ee:0f:46:5d:ff:04:
6d:3d:0b:b2:7f:fb:21:52:c7:f0:0c:68:24:20:15:a1:87:39:
8c:d7:de:8d:8f:ae:77:69:6d:8c:2c:cf:01:26:d1:87:c6:3a:
bc:d5:84:93:61:60:ce:9f:8d:ca:27:a8:cd:d1:07:58:46:8d:
e6:c2:8d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:46 2024 by rpki-client on console-fra.rpki-client.org