Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/RtYLDBY-MeNEF1QZC1HCamrAWxU.roa
File: RtYLDBY-MeNEF1QZC1HCamrAWxU.roa (raw, json)
Hash identifier: ZJ7JceDGn0TySIxwdZ7muE57Grs80fmCTIHJxx+eoK0=
Subject key identifier: 46:D6:0B:0C:16:3E:31:E3:44:17:54:19:0B:51:C2:6A:6A:C0:5B:15
Certificate issuer: /CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Certificate serial: 01883587FD00FCC5B53834F989A09EA91709
Authority key identifier: 74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/RtYLDBY-MeNEF1QZC1HCamrAWxU.roa
Signing time: Fri 19 May 2023 19:41:24 +0000
ROA not before: Fri 19 May 2023 19:41:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212440
IP address blocks: 185.112.180.0/22 maxlen: 24
2a0e:6f00::/31 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 May 2023 20:27:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:35:87:fd:00:fc:c5:b5:38:34:f9:89:a0:9e:a9:17:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Validity
Not Before: May 19 19:41:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46d60b0c163e31e3441754190b51c26a6ac05b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d5:1f:8c:93:92:fe:71:af:41:73:7f:ef:28:
10:6d:dc:39:e7:2c:97:67:09:9c:e8:ab:91:3c:64:
e0:32:de:f2:66:8d:d1:d8:a8:46:24:25:12:93:f8:
46:6b:34:99:ba:12:c6:dd:13:d4:9b:7e:a5:4b:8f:
3d:54:84:b3:0d:13:07:75:3a:3b:ee:5d:29:f4:85:
73:93:8a:93:d9:7c:3e:63:3a:1c:22:e4:e4:d0:a2:
18:7a:ac:76:b3:17:44:df:ff:32:4e:d6:6a:5a:46:
31:5b:08:72:cf:ce:96:3e:bb:85:ce:7a:39:ef:bf:
84:83:b5:69:92:3e:33:68:1b:f8:ea:de:be:67:fa:
ff:58:9d:b3:c7:d5:af:4d:5a:bd:92:f5:b6:37:6d:
b4:15:a5:4f:85:41:08:66:b7:70:96:92:29:68:63:
60:10:33:58:17:f2:b4:4d:0d:5b:cb:50:b2:8b:36:
31:4a:d4:fa:fe:c5:97:83:db:1b:56:6e:5b:65:c1:
e7:06:6c:7e:71:be:ac:c7:8a:e3:c6:b2:71:70:fe:
c3:9a:4f:bb:17:b3:4a:43:74:53:6b:61:cd:0f:b2:
ec:11:c3:16:ef:64:e0:6e:35:c2:a9:1b:c0:e1:ce:
9f:31:f8:ba:33:28:51:94:f4:d8:48:e2:41:6a:95:
95:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D6:0B:0C:16:3E:31:E3:44:17:54:19:0B:51:C2:6A:6A:C0:5B:15
X509v3 Authority Key Identifier:
keyid:74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/RtYLDBY-MeNEF1QZC1HCamrAWxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/dADVATwShSJCNDCTy_UUjU6uqvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.180.0/22
IPv6:
2a0e:6f00::/31
Signature Algorithm: sha256WithRSAEncryption
2f:10:83:1d:6e:ff:6b:e3:27:09:17:8a:c6:17:62:09:d4:48:
f7:38:93:3b:a6:01:cf:e1:6c:f2:db:1c:38:1a:f3:f7:11:58:
ef:7d:4c:77:b7:05:81:d7:c8:dc:e5:a2:8b:29:51:22:30:96:
3f:4a:77:94:a0:ba:8d:0f:af:4b:74:72:71:55:e4:c0:8d:5e:
00:49:75:d5:e4:b6:3d:fe:38:e7:80:e7:26:31:29:86:8e:82:
b7:eb:8d:19:42:a4:80:2d:d9:2a:1b:32:45:ff:2f:1b:88:db:
b3:0d:59:d1:3c:36:bf:9f:68:13:3e:e0:11:50:05:54:26:49:
b8:2a:17:1e:70:ee:5c:6e:03:a2:93:f2:3e:88:4a:21:82:d0:
09:e2:99:38:b6:0c:ff:f3:13:eb:88:92:9b:ea:11:7b:af:48:
66:54:29:bc:d3:4d:8e:3b:11:49:7e:ca:de:8c:cf:80:c0:db:
de:0c:64:78:f8:77:9a:ba:6e:4a:53:f7:53:28:5b:be:22:2f:
9e:34:28:5e:a3:e3:7e:55:21:38:a2:81:8d:e0:e6:86:41:fe:
1f:d2:c6:9b:d5:25:2f:00:19:83:78:ae:66:bd:70:ca:23:a9:
7e:00:39:d0:5a:1f:67:1a:1b:4b:f2:98:7d:8b:dc:14:48:c1:
9d:1c:17:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:26 2024 by rpki-client on console-fra.rpki-client.org