Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3LJgU6bTtM_Cw_FRVqpwrW-mjfg.roa
File: 3LJgU6bTtM_Cw_FRVqpwrW-mjfg.roa (raw, json)
Hash identifier: YbB/KikhXdT/sMetzH440O7mPC61dd5cTvgXuOceH0Y=
Subject key identifier: DC:B2:60:53:A6:D3:B4:CF:C2:C3:F1:51:56:AA:70:AD:6F:A6:8D:F8
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4D6DA8CA9C1DA9B7B0B13FBBD4DC3
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3LJgU6bTtM_Cw_FRVqpwrW-mjfg.roa
Signing time: Sun 01 Jan 2023 19:35:20 +0000
ROA not before: Sun 01 Jan 2023 19:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206602
IP address blocks: 185.71.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d6:da:8c:a9:c1:da:9b:7b:0b:13:fb:bd:4d:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcb26053a6d3b4cfc2c3f15156aa70ad6fa68df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:1b:45:72:f1:a8:6d:e9:57:eb:89:8d:20:
45:a1:3f:61:f7:c9:c1:e2:bf:30:5e:2e:dd:39:4a:
e0:bd:73:f6:4c:c5:8d:7f:85:94:e8:90:d6:37:a4:
87:1c:fa:01:bc:8e:71:51:bf:fe:cf:d5:b0:89:14:
5e:7f:89:98:31:7c:2e:8f:95:de:39:65:37:e4:50:
cf:68:f9:e5:ef:15:10:ac:e5:d5:43:2e:9d:83:d9:
d0:45:b9:51:38:68:0c:0b:c2:21:7d:ea:c1:aa:3f:
21:6a:4f:2a:b8:e1:30:2a:5b:84:36:bc:83:0c:82:
fb:8d:a4:39:f9:ff:8a:29:ad:73:bc:91:29:b1:19:
cc:67:f8:da:90:34:a6:0c:8a:7a:c3:9c:09:cd:3d:
17:86:a8:db:3d:ff:fa:8f:e9:e4:73:cf:23:19:d1:
40:73:cb:c1:40:e4:85:3a:ed:63:97:1c:af:99:69:
95:3a:e9:1d:7a:b6:f3:99:1f:ea:ba:2a:ee:e5:cc:
fb:b6:8d:fd:ed:9a:fe:36:4a:9c:4e:16:a7:21:a0:
fb:74:4e:31:08:03:19:7e:a4:7b:2c:bb:d2:85:06:
0b:3f:c0:fe:bc:e0:b9:42:b4:26:29:0e:f8:60:e0:
32:3e:55:7a:54:fc:08:c5:c7:50:ab:b5:ee:16:c0:
3d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B2:60:53:A6:D3:B4:CF:C2:C3:F1:51:56:AA:70:AD:6F:A6:8D:F8
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3LJgU6bTtM_Cw_FRVqpwrW-mjfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.28.0/24
Signature Algorithm: sha256WithRSAEncryption
09:48:76:35:b4:4b:38:4f:d7:b4:f9:f2:a8:2d:98:cb:21:73:
64:dc:b0:cf:f6:82:b5:2f:22:a7:35:ab:d0:44:b5:d9:b8:a9:
26:9b:ca:a6:74:b8:b1:f9:39:d7:6f:00:11:fb:4e:7f:1f:ff:
cb:65:df:c0:02:34:4b:83:d9:46:7e:8d:01:9d:ac:8d:67:8c:
f2:96:d4:ff:39:c8:2c:9b:95:73:0e:2a:41:da:0f:f4:fc:d9:
4a:65:ad:39:b6:87:04:42:92:68:aa:cd:24:01:e7:dc:0d:6f:
31:0d:a9:fb:23:b3:61:e0:1a:03:8c:bc:97:17:00:bf:3a:88:
1b:25:13:c5:fc:99:7e:83:6c:7b:e4:07:7f:09:6c:02:6d:3f:
8e:33:09:ef:5a:6b:c4:ee:36:26:55:63:d0:92:30:3f:c2:98:
5b:b9:90:9b:f4:5b:7b:36:26:50:50:ae:52:bd:1d:20:ee:e6:
4d:07:a4:75:7a:38:a8:81:f8:a4:ba:77:53:dc:9c:a5:af:fd:
c2:fe:e7:33:4c:59:f1:cc:77:a8:17:60:c1:10:bf:f6:37:ec:
1c:6f:3a:56:93:10:95:f2:3e:0f:77:c3:2d:a8:69:3f:16:8e:
d1:80:5a:2e:88:7b:6b:70:08:b7:fa:70:02:86:dd:e6:2b:8c:
d6:f8:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org