Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/S1Q6M5SSEW_Qig7udy7YC25BwyY.roa
File: S1Q6M5SSEW_Qig7udy7YC25BwyY.roa (raw, json)
Hash identifier: qeZu+bsbdjYp15PliF/+AgEGZ9e84Nf3w//Je1p7RuM=
Subject key identifier: 4B:54:3A:33:94:92:11:6F:D0:8A:0E:EE:77:2E:D8:0B:6E:41:C3:26
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 01856DDD62112AEF1BFB42F3032AE8D9DF0B
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/S1Q6M5SSEW_Qig7udy7YC25BwyY.roa
Signing time: Sun 01 Jan 2023 15:05:03 +0000
ROA not before: Sun 01 Jan 2023 15:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.212.204.0/23 maxlen: 24
185.212.206.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Feb 2023 07:13:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:62:11:2a:ef:1b:fb:42:f3:03:2a:e8:d9:df:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Jan 1 15:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b543a339492116fd08a0eee772ed80b6e41c326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:d3:db:c1:f4:d6:42:ee:68:ab:1e:57:f3:
fd:7b:65:50:67:1f:65:b0:58:f4:1b:f6:a1:79:88:
73:36:f2:11:79:81:1e:06:37:88:76:ed:11:d1:de:
cd:02:76:e6:ed:cd:2b:ec:60:83:e0:e0:23:57:40:
50:72:a7:97:0f:12:73:48:a6:71:38:80:b8:d6:d4:
ed:00:a2:ad:06:1c:ba:c1:d3:cd:33:39:91:fc:f2:
48:9d:fd:f6:35:35:76:07:a5:95:b5:0b:69:16:b2:
56:6a:56:57:6b:83:37:7d:04:73:93:47:dd:59:df:
bf:03:bc:a8:8b:de:fa:df:84:fe:a0:72:79:fa:87:
43:f3:8e:ba:1e:af:e9:80:f4:b9:77:7f:f4:b9:35:
60:dd:0a:5d:f4:46:52:c6:24:49:99:74:18:ed:46:
92:bb:1e:62:ef:d0:b8:60:95:72:fe:e9:de:3c:0a:
c0:d8:0f:24:8d:61:64:e0:42:d4:4e:82:e6:8a:bb:
91:fa:aa:ef:64:28:be:52:93:6b:9d:fd:cc:dc:70:
f3:0b:28:ff:fa:ca:9a:4c:0f:3e:19:58:78:d9:5f:
e7:23:dd:a5:d3:63:02:7f:5a:0d:8e:ff:da:90:fb:
fc:ac:e0:70:6b:27:d7:fd:e5:0f:57:45:14:a7:9a:
2e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:54:3A:33:94:92:11:6F:D0:8A:0E:EE:77:2E:D8:0B:6E:41:C3:26
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/S1Q6M5SSEW_Qig7udy7YC25BwyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.204.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:6d:7a:58:20:29:e4:f4:5f:fd:dd:94:85:b2:99:87:90:7a:
bb:51:5f:ad:88:f6:f2:97:f3:3b:f3:7a:37:66:8b:8c:d3:83:
00:b6:8c:20:1c:37:38:60:67:db:34:74:6f:a2:e1:e6:8b:76:
60:34:55:1e:26:78:70:73:65:25:36:4f:9f:55:80:24:8e:19:
e6:99:6c:eb:d1:50:4a:c3:d1:b4:0e:8f:b8:19:81:12:91:95:
a7:18:83:4d:6d:22:14:aa:ee:32:a6:12:6a:6a:23:0e:2e:ff:
cf:c0:a1:bd:55:c8:a5:e7:d5:f0:e8:5b:70:6e:5c:25:d3:e1:
3e:12:ed:db:9e:4b:6c:90:fa:83:2d:c8:bb:91:e6:5a:b9:6f:
8f:1e:e6:07:cb:ae:6c:01:03:58:22:2b:b9:fe:1b:2e:ed:72:
7e:76:23:36:4a:2d:76:dd:6c:f2:c9:d5:ae:52:18:57:6b:25:
71:74:29:62:54:cc:37:48:0c:f9:62:02:29:f8:0e:f6:83:f1:
e1:9e:20:2a:bf:d9:fa:76:7b:65:5d:ac:2e:02:cf:94:84:ae:
33:62:ce:77:f3:1b:0d:ad:05:60:9e:34:2e:ac:d1:2b:11:7c:
b9:27:ff:a4:ad:ea:3d:bb:37:76:75:6e:95:25:eb:f8:e9:43:
31:49:08:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:21 2024 by rpki-client on console-fra.rpki-client.org