Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/qUreNS3goNcOT5Sd_x6BmzpxS_I.roa
File: qUreNS3goNcOT5Sd_x6BmzpxS_I.roa (raw, json)
Hash identifier: skl+M4D7G7vRXEYCCd05FtK80mEHnWPZItIcpSGafhs=
Subject key identifier: A9:4A:DE:35:2D:E0:A0:D7:0E:4F:94:9D:FF:1E:81:9B:3A:71:4B:F2
Certificate issuer: /CN=3be2ef09708a9459da5759f146f69a5d19ccfe75
Certificate serial: 018570302D7C3DE1FA18F72B602A065EBA84
Authority key identifier: 3B:E2:EF:09:70:8A:94:59:DA:57:59:F1:46:F6:9A:5D:19:CC:FE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-LvCXCKlFnaV1nxRvaaXRnM_nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/qUreNS3goNcOT5Sd_x6BmzpxS_I.roa
Signing time: Mon 02 Jan 2023 01:54:43 +0000
ROA not before: Mon 02 Jan 2023 01:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206980
IP address blocks: 185.169.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:2d:7c:3d:e1:fa:18:f7:2b:60:2a:06:5e:ba:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3be2ef09708a9459da5759f146f69a5d19ccfe75
Validity
Not Before: Jan 2 01:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a94ade352de0a0d70e4f949dff1e819b3a714bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e7:2c:6e:59:b3:70:01:11:44:b8:4a:ce:b3:
1d:e3:06:1a:91:14:22:63:72:88:1d:1d:8d:8d:7d:
1a:af:9c:5e:dd:f5:d1:56:71:d2:8f:1a:e3:60:9d:
50:01:d4:d9:dd:a6:a4:a5:9e:fe:cd:02:6b:d9:1b:
8b:5c:bb:0e:73:47:9d:7e:32:29:0a:c2:9f:63:bf:
24:5f:a7:d0:d3:19:17:1d:3d:26:ca:5c:e4:c2:f2:
81:1b:ab:38:30:2c:bd:28:b8:2a:cc:58:2a:4d:cd:
5d:50:16:ea:6d:ed:a2:1e:8a:e7:1c:48:cb:74:7b:
97:30:aa:2c:35:b2:0a:30:07:87:3f:10:4a:06:4e:
76:71:b1:93:c8:d5:e8:12:d8:ea:b6:51:e6:1c:06:
7d:ae:3a:65:33:17:dd:0a:58:31:ef:fa:25:da:8f:
04:13:d3:d8:42:d8:54:17:37:3e:7f:90:b1:44:35:
72:a0:3d:7c:11:17:1f:60:8d:32:ca:2d:c4:4a:6b:
1e:32:5d:47:5c:a6:16:2c:4e:93:96:e6:61:92:e1:
45:aa:ee:44:84:c3:04:70:db:ae:ef:68:0a:2e:fb:
83:83:e5:e6:5e:6f:20:7e:00:1e:72:56:89:19:b5:
b8:7a:e2:79:be:cf:86:11:6c:38:b6:23:3d:31:28:
43:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4A:DE:35:2D:E0:A0:D7:0E:4F:94:9D:FF:1E:81:9B:3A:71:4B:F2
X509v3 Authority Key Identifier:
keyid:3B:E2:EF:09:70:8A:94:59:DA:57:59:F1:46:F6:9A:5D:19:CC:FE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-LvCXCKlFnaV1nxRvaaXRnM_nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/qUreNS3goNcOT5Sd_x6BmzpxS_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/O-LvCXCKlFnaV1nxRvaaXRnM_nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.133.0/24
Signature Algorithm: sha256WithRSAEncryption
93:07:4c:02:ef:8c:0b:a6:2d:8b:ef:77:79:14:c8:e8:48:57:
7e:f7:91:44:04:b1:ae:8d:2f:d2:bf:07:db:6a:95:b3:f2:24:
86:a4:09:7e:a4:12:2d:11:65:b2:f9:fd:b8:6e:d9:1a:34:40:
29:64:d8:1b:f8:da:9d:ef:8e:a7:22:27:08:0a:75:e2:4c:0a:
e8:38:f3:bc:5d:40:36:8d:0f:79:8e:da:bc:0e:c8:2b:43:bf:
ca:b3:ba:73:ab:47:96:91:fa:a9:99:44:bc:03:51:f2:46:39:
46:0e:66:e0:e0:9d:33:41:8f:e8:51:59:fa:b5:00:bc:f0:67:
14:44:e4:b8:8f:50:79:62:16:52:32:e8:8d:e8:65:73:e5:4e:
2a:95:65:d9:89:5f:cd:29:11:83:90:48:ca:23:ed:72:66:ca:
b6:82:e6:21:67:ff:33:40:36:9b:37:88:52:a4:38:fc:43:b3:
94:6d:9d:16:f2:34:2e:d5:da:c8:59:ce:6c:08:a0:26:6a:77:
8b:6a:1e:25:29:d3:72:90:60:52:d5:f8:69:8c:fe:41:64:bc:
d6:c9:30:9b:b1:92:3c:dc:05:74:dc:43:6d:d4:b1:15:d7:45:
97:a1:77:92:b5:cf:f9:94:d4:24:70:6b:55:f1:cc:fc:1f:83:
02:1a:7f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:31 2024 by rpki-client on console-fra.rpki-client.org