Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/pMWQyIH2q1cmVac9BU4-wKkhrjM.roa
File: pMWQyIH2q1cmVac9BU4-wKkhrjM.roa (raw, json)
Hash identifier: pPjzQ47g7Ug9spuPMbLprO3q1PyB4AziRwxgGTPh4YE=
Subject key identifier: A4:C5:90:C8:81:F6:AB:57:26:55:A7:3D:05:4E:3E:C0:A9:21:AE:33
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 01856D6F50EE2998AC66FDCD9FC79082C505
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/pMWQyIH2q1cmVac9BU4-wKkhrjM.roa
Signing time: Sun 01 Jan 2023 13:04:49 +0000
ROA not before: Sun 01 Jan 2023 13:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205316
IP address blocks: 185.222.108.0/22 maxlen: 22
2a0c:2800::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:50:ee:29:98:ac:66:fd:cd:9f:c7:90:82:c5:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Jan 1 13:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4c590c881f6ab572655a73d054e3ec0a921ae33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a7:07:73:f6:6f:95:75:f6:01:83:21:34:fe:
9e:14:0b:6c:4b:db:c4:50:1c:ed:d3:23:f6:73:db:
ff:db:7f:0d:d2:fe:be:f3:d7:80:1d:d8:99:d4:1f:
d5:21:e1:1e:a2:d0:3d:89:e0:56:ed:33:c0:6c:f6:
4f:c0:6a:60:5c:13:fc:f4:e2:42:9e:65:96:a9:0b:
3f:47:6b:86:42:3a:6d:7e:02:94:44:b2:7e:df:49:
5e:ee:82:b5:cc:de:20:13:d6:4d:b9:9c:b2:6d:dc:
7d:11:5a:ac:42:ed:3a:bc:47:5a:c8:a6:28:41:f4:
17:2d:cd:5f:e7:e1:4c:44:dc:eb:88:31:67:bf:e3:
d0:72:68:e3:3f:70:41:fd:08:db:83:9c:74:c5:86:
3b:bc:ac:ef:1d:d7:8a:af:1b:95:55:21:43:f2:ac:
12:4a:8c:6a:23:27:14:bd:8f:58:de:01:7b:4a:96:
14:f8:10:cc:a4:19:ca:0f:55:14:17:ce:49:69:74:
61:05:72:7f:6f:9c:c7:b1:3e:72:3f:dc:57:a6:7c:
d6:38:86:6b:cd:c7:04:61:d0:33:2b:5d:a2:d9:a8:
02:7a:79:9c:0c:c5:3c:41:d7:c9:fc:7f:0f:9c:cb:
99:a4:04:dd:fa:03:34:77:06:58:cc:4b:b2:dc:9f:
83:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C5:90:C8:81:F6:AB:57:26:55:A7:3D:05:4E:3E:C0:A9:21:AE:33
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/pMWQyIH2q1cmVac9BU4-wKkhrjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.108.0/22
IPv6:
2a0c:2800::/32
Signature Algorithm: sha256WithRSAEncryption
1c:af:0f:04:74:50:28:cf:24:b9:a4:10:1f:4d:6a:c2:26:73:
03:bc:a8:b7:55:8f:a4:f5:c6:c8:a1:d9:e4:60:e2:92:dd:fc:
b5:fa:f0:66:f7:e7:d7:b8:8c:6b:ec:82:77:4d:c0:36:4d:f9:
82:4d:ad:e6:14:97:2e:4b:56:88:b8:01:5c:1c:13:ac:e7:b9:
01:73:55:d8:7d:36:e6:eb:d6:1f:bb:ca:04:4b:8d:cf:e6:35:
12:81:54:0c:5f:f5:fe:17:0c:2d:ec:ab:42:db:68:e0:81:ec:
18:bd:78:33:7e:16:62:37:0d:e0:c9:36:10:f9:a2:01:f5:39:
0f:ec:f0:76:19:d2:6e:e9:59:60:a1:e6:9d:90:86:15:66:d8:
29:a0:ff:cd:3a:bf:7e:8e:66:d6:8d:f9:84:bd:75:06:49:ee:
17:8c:6f:2e:b5:d5:55:bc:2a:bd:2d:ad:0b:3c:7a:f2:b4:60:
f5:8c:44:53:3b:9f:20:63:ff:a4:69:42:b1:1d:3c:4f:c6:77:
32:cd:08:95:49:bd:7b:d7:dc:fe:7c:f2:59:4e:d4:81:ef:ef:
d1:35:2e:14:a2:66:55:0a:f9:24:f1:02:09:37:14:16:84:2d:
9a:e4:e5:69:39:0c:b2:8c:22:09:09:2e:a1:b1:b6:18:8e:e9:
48:37:b3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org