Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7CyswI3mxwAiMI-L2dpXG5pQ4O0.roa
File: 7CyswI3mxwAiMI-L2dpXG5pQ4O0.roa (raw, json)
Hash identifier: UzfpNeGTlPzH3aHMDP3TfBvqb/u5orL6S2YHzcQIFKo=
Subject key identifier: EC:2C:AC:C0:8D:E6:C7:00:22:30:8F:8B:D9:DA:57:1B:9A:50:E0:ED
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018572B4221D8BFEC4112E85F2CC69F5AD79
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7CyswI3mxwAiMI-L2dpXG5pQ4O0.roa
Signing time: Mon 02 Jan 2023 13:38:05 +0000
ROA not before: Mon 02 Jan 2023 13:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 185.235.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Jan 2023 00:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:22:1d:8b:fe:c4:11:2e:85:f2:cc:69:f5:ad:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jan 2 13:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec2cacc08de6c70022308f8bd9da571b9a50e0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:6f:61:fa:61:16:8b:cb:93:d7:52:fe:67:
20:52:a1:d5:cc:06:d3:55:66:d0:c3:38:ed:3e:0f:
4f:e0:3b:18:f9:f3:45:8b:a2:cf:d3:18:c3:9d:09:
81:c6:c0:33:28:2a:1a:52:54:16:21:ae:8c:ad:ff:
22:da:3b:49:9b:f1:16:f0:0a:4e:03:2b:e3:3b:10:
09:7f:d1:b4:9f:e9:90:bd:e3:0f:dc:26:9e:64:a9:
aa:ce:12:94:a1:79:a8:16:6c:7c:b3:6c:d7:5a:70:
96:50:62:c9:e5:ef:6a:1b:9d:4b:af:e0:65:de:30:
77:e2:d6:ce:5b:1e:45:4d:01:3e:5d:59:21:26:7c:
97:36:29:2a:14:c0:04:3a:14:19:00:2f:1b:a3:32:
ab:1d:7a:e4:38:55:21:a4:78:7d:ec:8f:08:7a:e8:
7a:97:df:9f:12:96:f3:66:99:c2:c6:4e:1e:1c:5c:
b9:fa:ca:c5:36:95:3e:44:fc:3f:c7:e0:07:16:66:
ae:75:20:f7:50:6a:4d:6b:55:b9:de:30:f5:1f:fa:
07:e4:67:dc:40:b4:af:01:17:b3:e6:b0:04:1a:5a:
5b:63:18:af:7a:55:88:ac:a1:2c:af:16:e2:20:54:
52:8e:ae:80:c1:f5:e2:6e:54:3e:51:60:fd:d6:f5:
8d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2C:AC:C0:8D:E6:C7:00:22:30:8F:8B:D9:DA:57:1B:9A:50:E0:ED
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7CyswI3mxwAiMI-L2dpXG5pQ4O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b6:35:3f:8d:8a:dd:0a:a3:dc:67:3f:90:3d:99:4b:79:66:
42:fa:56:aa:95:c0:54:8d:65:b8:d6:e9:e0:15:69:13:47:e0:
3b:1f:df:79:a4:d5:86:b5:f0:4a:49:d4:56:f9:74:4d:18:30:
68:16:7a:62:f8:7d:3a:6d:5e:a2:ad:51:8a:cf:ea:f4:59:42:
72:c9:c7:b2:51:22:4b:39:91:1c:0e:9c:ad:95:81:36:2e:fb:
49:8c:f9:19:c4:f8:8d:68:c7:c3:5b:66:59:d9:25:97:8f:74:
7e:f8:50:25:b6:a2:2e:b5:ef:aa:c6:c0:7c:0f:50:74:e3:da:
18:22:fc:d3:dd:e5:ca:dc:22:57:f4:01:b5:8c:b4:ba:06:4d:
3a:dd:9e:5c:8a:34:80:c5:6d:01:82:ae:06:6e:d9:09:30:99:
10:7d:99:31:0b:b2:a6:a6:9a:26:6f:f4:78:96:5a:65:52:cd:
a9:dd:6c:80:48:bb:ad:1d:ba:12:f6:c0:ae:43:55:5d:65:85:
c5:0c:b5:9a:1b:d0:7d:65:0e:eb:5e:74:c7:9a:7a:bd:46:09:
7e:79:2a:9b:da:00:23:e1:ef:5d:7b:06:dc:e3:a2:15:aa:4f:
50:44:1e:1b:b4:e6:53:70:1b:18:9b:9e:2d:59:f8:f8:7e:81:
8b:d2:03:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:31 2024 by rpki-client on console-fra.rpki-client.org