Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/us6seIfTWNz9JsnLDPAV7ybo-7o.roa
File: us6seIfTWNz9JsnLDPAV7ybo-7o.roa (raw, json)
Hash identifier: xNXR6FIaBYxqb0EKfKOoiwaiG/2JUcvYG/3BWNfV8aI=
Subject key identifier: BA:CE:AC:78:87:D3:58:DC:FD:26:C9:CB:0C:F0:15:EF:26:E8:FB:BA
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C45D28B44D4D604495ED0B4814494
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/us6seIfTWNz9JsnLDPAV7ybo-7o.roa
Signing time: Mon 02 Jan 2023 07:05:02 +0000
ROA not before: Mon 02 Jan 2023 07:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199159
IP address blocks: 217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
144.208.204.0/24 maxlen: 24
185.2.176.0/24 maxlen: 24
2a05:8900:36::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 Nov 2023 10:46:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:45:d2:8b:44:d4:d6:04:49:5e:d0:b4:81:44:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baceac7887d358dcfd26c9cb0cf015ef26e8fbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:68:f6:47:d3:4c:07:ab:07:f0:8f:25:af:2b:
8b:ec:5c:35:9b:66:e3:10:fc:79:86:68:05:ea:b6:
55:fc:9d:4f:0c:e4:7f:73:8c:45:ce:78:c4:33:8b:
9a:9c:3f:49:8a:e3:90:b0:f0:9a:e9:7a:e4:8b:2f:
ab:a2:13:d3:d4:6c:47:58:64:e3:4e:6b:b8:7a:71:
4f:31:c7:88:68:a5:15:8b:42:f6:56:45:ce:b1:ed:
88:5d:29:c9:b7:46:df:a0:56:1b:f6:c6:7d:d8:40:
e5:03:5d:68:7e:7f:93:9d:07:30:ff:7c:29:2a:d4:
41:22:89:3f:96:0d:2e:fa:95:44:64:75:94:d7:19:
45:c2:62:72:94:5f:07:ab:f2:f3:29:b2:5a:57:39:
eb:d5:43:f1:5e:2c:b9:45:4d:3c:8b:ff:e6:10:22:
16:96:b2:31:ae:5a:ad:2f:09:8c:b4:ee:c9:c8:f8:
ba:1d:1d:ec:db:83:ae:ec:7f:d2:59:36:b7:e5:3f:
34:78:db:19:0d:a0:43:44:17:c8:f0:47:db:68:15:
10:8a:f5:6d:5f:4f:15:37:7f:a2:68:a7:00:7a:2e:
ec:53:9c:2e:55:a3:52:f8:73:c1:72:ac:e8:45:9b:
88:76:b9:c0:a0:50:cb:23:37:57:3a:2b:a2:47:63:
70:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CE:AC:78:87:D3:58:DC:FD:26:C9:CB:0C:F0:15:EF:26:E8:FB:BA
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/us6seIfTWNz9JsnLDPAV7ybo-7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.204.0/24
185.2.176.0/24
217.146.6.0/23
IPv6:
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
48:85:1a:f2:fb:12:c0:a2:20:b7:bc:a8:e8:1f:1f:91:82:3b:
46:c8:23:35:9a:84:46:7b:e1:11:fe:13:6e:ae:39:fe:3f:ca:
8f:59:5e:ff:0e:11:ae:93:f5:83:1f:3b:13:7c:c5:31:75:dc:
9b:28:05:fd:47:92:34:69:29:e6:81:cd:73:9f:87:fc:f9:57:
ed:52:0f:ca:1a:3e:3c:9c:25:cf:f0:9a:d6:b6:3a:74:27:db:
f7:e8:47:7f:5d:06:cd:e7:e0:85:d4:40:3f:44:1f:be:75:da:
b4:14:f4:f4:3c:e6:0c:38:31:1d:d1:2a:80:1a:ad:e3:20:6d:
fa:d2:31:75:f2:82:ad:13:a3:fd:11:aa:e2:64:c6:2d:c8:0f:
54:20:d6:e8:26:c9:c3:bb:52:24:da:f7:46:8c:ec:64:4c:77:
f0:75:19:24:5f:8e:0a:2a:4c:d7:c2:f5:18:57:90:f5:f0:d6:
28:fb:23:29:e6:5f:5b:98:16:39:54:e1:37:6a:d2:8f:d2:17:
c4:a3:b9:b2:cd:fe:58:a5:b5:97:20:17:ae:21:e6:2e:b0:a7:
3b:3a:1f:e1:ea:f0:56:5d:89:e3:e6:54:33:4d:b1:c3:a9:d8:
0d:32:d7:d4:af:52:13:b5:e1:b3:44:d1:6c:a9:70:24:a2:1f:
f1:4d:b3:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org