Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4e59f2-be7a-42d9-9e60-50e2533fcd4e/1/kL9IVqSGfOJkb0jDZoyG-UdyZPU.roa
File: kL9IVqSGfOJkb0jDZoyG-UdyZPU.roa (raw, json)
Hash identifier: gRFoPpJqPItA/5T7hbz1j47NurLVRkb/1nP9PHtH/p8=
Subject key identifier: 90:BF:48:56:A4:86:7C:E2:64:6F:48:C3:66:8C:86:F9:47:72:64:F5
Certificate issuer: /CN=c2e24a9da6be0754eddc1478d694e6da9e15a258
Certificate serial: 01856EC2275CA9206FB514485248407ABAA1
Authority key identifier: C2:E2:4A:9D:A6:BE:07:54:ED:DC:14:78:D6:94:E6:DA:9E:15:A2:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wuJKnaa-B1Tt3BR41pTm2p4Volg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4e59f2-be7a-42d9-9e60-50e2533fcd4e/1/kL9IVqSGfOJkb0jDZoyG-UdyZPU.roa
Signing time: Sun 01 Jan 2023 19:14:55 +0000
ROA not before: Sun 01 Jan 2023 19:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206619
IP address blocks: 185.181.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:27:5c:a9:20:6f:b5:14:48:52:48:40:7a:ba:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2e24a9da6be0754eddc1478d694e6da9e15a258
Validity
Not Before: Jan 1 19:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90bf4856a4867ce2646f48c3668c86f9477264f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c0:00:9e:20:d5:69:1b:97:ad:36:72:18:53:
e0:a1:c1:d8:19:46:f0:5e:33:3f:8c:a5:3c:36:3f:
05:65:b5:b2:10:76:f1:14:8a:e3:38:2c:90:e7:fd:
e3:a8:67:84:96:6d:8e:99:5e:e8:33:c8:50:eb:4f:
36:18:74:50:37:74:0e:13:ef:f6:cb:f7:80:24:28:
a7:68:87:6a:56:6d:5d:54:8c:8e:c1:de:41:ae:dc:
03:80:62:9b:ab:66:ef:6c:7d:37:1a:9d:76:ed:35:
02:d2:8a:92:c3:42:52:e2:f7:91:a9:f6:ac:a7:4f:
9c:80:62:ce:a1:a3:52:c4:b7:ff:94:8f:1d:e3:ba:
32:18:43:09:75:23:42:25:6c:0b:72:19:e9:a6:9c:
86:a2:78:0a:f3:76:b0:45:c5:4e:a4:db:0f:2a:30:
d2:ca:fe:2a:73:c3:9a:f0:b0:ff:d4:62:2a:f7:b0:
da:9e:ea:1d:f0:24:74:26:22:7f:fa:46:43:a1:d0:
21:05:42:6a:13:7b:0f:b7:62:9e:3b:ee:e9:ec:ee:
33:ab:fb:7a:87:5f:88:9f:fa:54:17:07:ea:54:bb:
20:62:35:ef:33:8a:13:d7:34:50:5e:14:2f:c1:12:
64:d3:2f:8d:6d:b1:91:d6:18:fd:c9:7b:90:55:ea:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BF:48:56:A4:86:7C:E2:64:6F:48:C3:66:8C:86:F9:47:72:64:F5
X509v3 Authority Key Identifier:
keyid:C2:E2:4A:9D:A6:BE:07:54:ED:DC:14:78:D6:94:E6:DA:9E:15:A2:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wuJKnaa-B1Tt3BR41pTm2p4Volg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4e59f2-be7a-42d9-9e60-50e2533fcd4e/1/kL9IVqSGfOJkb0jDZoyG-UdyZPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4e59f2-be7a-42d9-9e60-50e2533fcd4e/1/wuJKnaa-B1Tt3BR41pTm2p4Volg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.76.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:24:98:df:b8:1c:4f:f3:85:12:1c:0e:a4:cc:e2:4b:e9:1d:
3c:ad:6b:df:0b:a4:64:b9:5b:a7:47:28:82:d8:80:ba:24:7b:
50:f2:bb:9a:64:32:31:1f:da:8b:b9:54:4d:d5:27:89:9c:77:
47:13:1e:4a:7a:63:81:9c:e0:18:a8:87:f0:9a:a9:9b:d7:1f:
03:9e:6b:d7:89:43:14:c8:0d:9e:02:93:b8:17:25:c0:04:01:
e0:2b:0f:4d:9c:d5:90:92:1d:89:9c:2f:17:a9:85:96:b3:95:
89:de:3f:e2:71:35:2d:f1:2d:72:d2:12:b3:7e:ba:35:9f:d9:
e2:ee:bc:cc:f4:9e:db:fd:50:16:c8:53:1f:73:4c:e1:4f:d0:
d7:a8:08:30:8f:2b:7b:fd:aa:9c:3b:8b:63:a4:35:c8:42:58:
78:ad:4b:22:09:73:66:3b:cb:f4:0e:7f:02:35:72:ee:80:6c:
99:57:48:c7:d2:ae:96:27:f5:4e:b2:b6:e8:d2:c6:42:21:a1:
c6:35:08:bf:9c:45:60:90:74:34:cd:34:72:e7:66:7e:75:ff:
dc:9a:2b:9b:65:31:bf:65:dd:0d:a1:7e:01:da:01:47:3a:7b:
ac:17:fc:eb:4d:6b:ab:1c:12:09:44:ef:a3:e0:c1:9e:32:b8:
6a:0b:6a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:19 2024 by rpki-client on console-fra.rpki-client.org