Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/v2VI7QLkROky4Exjx0_ePu44_D4.roa
File: v2VI7QLkROky4Exjx0_ePu44_D4.roa (raw, json)
Hash identifier: NmmR78EGj6zncQwb5VKp+HfiJknofiWV+4PRp2PbZwY=
Subject key identifier: BF:65:48:ED:02:E4:44:E9:32:E0:4C:63:C7:4F:DE:3E:EE:38:FC:3E
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018CC7933E075D1706640AEC854825727D6E
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/v2VI7QLkROky4Exjx0_ePu44_D4.roa
Signing time: Tue 02 Jan 2024 00:29:24 +0000
ROA not before: Tue 02 Jan 2024 00:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211936
IP address blocks: 185.235.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 13:40:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:3e:07:5d:17:06:64:0a:ec:85:48:25:72:7d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jan 2 00:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf6548ed02e444e932e04c63c74fde3eee38fc3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:c1:ab:6b:41:bc:4b:f8:36:d9:34:b7:cf:
24:1e:bf:d5:f6:8b:ec:df:9e:8f:35:13:12:4c:cf:
42:36:54:e0:8c:d6:85:a8:18:01:20:32:82:e0:a7:
5a:43:fb:92:c4:0f:96:0f:5e:8b:7a:15:e3:3b:89:
d7:6c:7f:46:2f:7c:4f:d8:f6:f7:6b:66:6e:1c:ae:
2c:65:59:54:86:d5:8a:92:61:63:55:05:72:85:cf:
56:31:25:6c:f6:62:57:83:36:95:de:d3:d7:06:e2:
7b:49:d6:dd:b1:a2:3e:a9:69:98:1f:a4:e3:64:9e:
65:9e:c6:8b:81:f6:da:39:56:36:6a:a7:1d:fb:24:
10:ca:47:4b:10:84:36:8e:3c:e2:81:8f:89:dc:86:
a5:93:a5:da:c1:82:16:b3:81:0b:42:14:1f:dd:3a:
a6:87:c2:ba:af:36:fc:94:ae:88:d6:1f:54:78:53:
76:00:41:c2:d7:04:b5:1d:a7:4f:b5:4e:44:bf:9b:
e8:4d:09:81:fc:15:ac:78:48:2a:9c:eb:76:bc:c2:
fd:d8:4a:9f:67:86:bf:aa:f7:2b:21:8a:66:1d:50:
7f:fb:ee:be:0a:72:e8:ca:78:ae:af:56:0a:13:fc:
f4:e2:aa:e1:51:cf:bd:e3:10:60:33:58:45:73:04:
43:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:65:48:ED:02:E4:44:E9:32:E0:4C:63:C7:4F:DE:3E:EE:38:FC:3E
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/v2VI7QLkROky4Exjx0_ePu44_D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.71.0/24
Signature Algorithm: sha256WithRSAEncryption
80:46:9f:63:b6:64:f5:17:ea:a9:72:07:a4:dd:cc:6f:63:f2:
de:55:d2:ee:25:28:2a:cd:ca:7b:32:c1:33:82:df:5e:f1:96:
57:ab:a4:54:b2:5e:58:50:d8:08:45:82:46:88:71:0d:ec:c8:
d2:aa:fa:ba:c8:2d:93:d7:27:0e:60:4d:3a:b5:3a:05:88:07:
9a:d2:02:3f:7c:f7:e6:d1:b7:8a:72:f6:db:3d:f3:fe:4b:11:
e3:df:3c:dd:bb:55:68:a8:e6:19:fe:a1:0a:9f:53:7a:8d:84:
a2:c5:bc:f6:6c:71:a2:cd:86:4c:6c:d5:4d:17:61:5e:c3:74:
69:4e:38:8a:36:44:ba:52:55:72:c6:a3:9b:ee:51:c1:6b:0f:
ae:8e:02:01:f3:83:9b:8b:82:9e:3f:ca:7d:7c:2a:2c:20:e5:
8e:b0:38:b6:83:89:dd:88:7b:d9:a7:ca:7b:16:12:45:c7:0d:
2d:6f:7e:a5:12:d0:64:dc:c2:b7:16:3c:27:50:65:f9:51:81:
1c:51:69:b8:89:e9:79:de:25:b1:92:bb:2c:54:f4:d2:6a:5d:
47:59:c8:49:7a:47:12:34:e9:6e:74:f9:a1:7c:c3:ba:c1:60:
3c:ab:61:13:11:d9:ca:be:26:4c:bc:12:66:79:21:95:1c:2f:
05:b9:50:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 16:11:02 2024 by rpki-client on console-fra.rpki-client.org