Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/lGyYWsqIGzCqpM6_GFSv5o-7a0U.roa
File: lGyYWsqIGzCqpM6_GFSv5o-7a0U.roa (raw, json)
Hash identifier: 8B7V4IhQXPVo3uioFmdTlzm7giVq3xj+E5CSmWcw6nI=
Subject key identifier: 94:6C:98:5A:CA:88:1B:30:AA:A4:CE:BF:18:54:AF:E6:8F:BB:6B:45
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 01856CCAC5AFC10B2195BBA2FAD379D18B42
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/lGyYWsqIGzCqpM6_GFSv5o-7a0U.roa
Signing time: Sun 01 Jan 2023 10:05:06 +0000
ROA not before: Sun 01 Jan 2023 10:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:c5:af:c1:0b:21:95:bb:a2:fa:d3:79:d1:8b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 10:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=946c985aca881b30aaa4cebf1854afe68fbb6b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5a:39:56:19:f1:bf:87:72:e2:68:82:8b:4f:
de:dc:d1:95:98:0a:14:7f:57:e5:89:c0:5e:ba:48:
7f:f9:f8:3e:3e:9d:54:b6:3f:1d:3e:5c:ff:7c:33:
04:20:54:aa:3a:dd:b5:c3:5e:de:c8:1c:55:f1:6e:
ee:c5:72:5e:59:34:79:d4:73:fc:66:8f:30:8d:7e:
f5:37:4f:eb:33:dc:69:66:40:1c:9d:1d:e7:52:44:
57:3f:6a:6b:da:7e:28:8e:dc:6e:5b:57:ca:d0:dd:
17:1f:94:a1:ad:50:00:33:41:8c:76:d4:6d:ed:87:
51:ad:8c:55:8e:79:75:7e:64:16:9a:ba:20:87:e7:
ab:8c:92:53:c1:38:67:0c:84:4c:ab:d2:c3:8b:e1:
c8:46:c9:c4:97:dd:8b:4d:a0:af:77:2b:d5:14:f4:
3e:e7:44:bf:ba:ac:46:2c:c1:51:da:dc:27:34:e5:
dd:f4:56:9a:fa:d7:3a:13:a4:3e:d8:c7:d5:bd:e7:
47:b3:a8:de:b5:f0:e4:4b:32:e0:87:67:a4:94:48:
89:9b:b0:3f:9e:57:bd:37:64:7d:69:2c:34:15:6a:
15:2b:60:8c:85:d7:8d:92:53:72:48:bb:48:75:d3:
f5:44:8b:b8:13:33:e0:7c:a3:ef:4e:14:88:a9:42:
29:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6C:98:5A:CA:88:1B:30:AA:A4:CE:BF:18:54:AF:E6:8F:BB:6B:45
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/lGyYWsqIGzCqpM6_GFSv5o-7a0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:65:29:b3:83:12:58:ed:09:7e:45:c1:d7:6d:c0:ca:f9:07:
ce:b3:0d:10:28:62:a6:0a:96:ab:db:eb:9f:b4:71:9d:ec:0d:
6d:44:39:41:61:ef:f9:7c:d6:80:fb:e9:c1:49:c3:b2:8f:a3:
1a:ac:81:ed:ad:94:ff:79:34:c8:a3:a5:42:b5:df:2c:d8:05:
b9:70:7f:2e:bb:6f:79:f2:5f:b9:de:80:d1:bd:4e:94:1e:5c:
70:e4:e7:b2:5d:a1:9a:16:fe:94:30:3c:d5:60:89:7b:50:6e:
34:a4:9f:5c:ce:a1:46:7a:9d:2c:4f:f7:b8:56:bb:82:22:4c:
5c:8a:af:27:29:b7:13:35:f2:f2:a7:1a:88:ec:c9:39:2a:bc:
4b:d3:ff:08:d7:90:b4:e0:ff:be:71:f0:6e:bc:7a:f2:a7:f2:
e8:49:a2:a6:fe:0e:40:42:49:ae:35:fb:59:2b:6e:86:6a:51:
4f:3c:91:7a:7d:c6:b2:6d:2c:5d:06:d2:c4:a8:c4:3c:b5:b8:
04:b2:c4:ea:76:45:22:be:74:f6:ed:87:81:de:c5:a3:e1:17:
7c:7c:15:71:38:0f:98:89:e3:82:3f:e7:0a:46:90:9e:5c:2c:
4d:2a:4c:08:94:cd:ba:27:bc:5c:f2:3c:4a:84:23:be:c8:34:
55:c5:82:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org