Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/SfUT90YTHLVCYhRH2RAmQhWEHys.roa
File: SfUT90YTHLVCYhRH2RAmQhWEHys.roa (raw, json)
Hash identifier: TWpwpk8l43lR990ZQ15EYbhwmELikRj4lptDeD/cuZ4=
Subject key identifier: 49:F5:13:F7:46:13:1C:B5:42:62:14:47:D9:10:26:42:15:84:1F:2B
Certificate issuer: /CN=e2b1e2e4c508c6c7a98b6598528745c813fad31d
Certificate serial: 018607FC7A18C167E0F80801A6885BF90D47
Authority key identifier: E2:B1:E2:E4:C5:08:C6:C7:A9:8B:65:98:52:87:45:C8:13:FA:D3:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rHi5MUIxsepi2WYUodFyBP60x0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/SfUT90YTHLVCYhRH2RAmQhWEHys.roa
Signing time: Tue 31 Jan 2023 13:20:32 +0000
ROA not before: Tue 31 Jan 2023 13:20:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43905
IP address blocks: 185.84.12.0/22 maxlen: 22
217.173.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Nov 2023 12:36:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:07:fc:7a:18:c1:67:e0:f8:08:01:a6:88:5b:f9:0d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2b1e2e4c508c6c7a98b6598528745c813fad31d
Validity
Not Before: Jan 31 13:20:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49f513f746131cb542621447d910264215841f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f1:55:69:d2:cd:b5:d3:68:f3:7e:46:c5:a4:
58:47:4f:89:b6:99:83:67:e5:f3:70:84:12:f3:c7:
f2:af:0c:07:e8:22:02:59:9a:07:9d:5e:80:20:72:
b5:ba:5b:f6:53:7c:88:0e:f8:da:77:4b:56:16:d8:
52:e1:d1:af:22:0f:56:42:c0:6c:b3:dd:38:de:b1:
9e:f2:0d:ad:04:d0:0f:b3:91:26:05:6c:d8:b0:86:
ac:bb:e0:11:fe:40:2d:a6:40:f2:a0:72:08:6c:91:
d1:88:30:dd:4f:aa:02:1b:9c:1e:e2:d8:b3:47:a8:
95:ff:20:d7:7d:f3:db:d6:af:dd:d5:89:b2:be:62:
64:62:bc:9e:b7:5f:7b:df:bc:32:80:26:14:a1:0d:
8f:34:a0:14:97:01:3e:36:e6:99:53:99:ac:5f:18:
94:35:03:37:92:81:ce:ab:2c:ee:17:e6:27:38:ec:
77:23:28:60:ed:4a:68:31:12:7a:0b:48:f0:40:51:
bf:d7:30:28:5e:75:2b:be:9d:14:58:eb:e4:76:dc:
5e:ee:28:52:3f:05:26:6c:17:ab:05:f3:ce:9e:92:
32:4c:d8:79:b9:9c:cb:76:56:1a:28:71:ae:94:07:
19:5c:09:b6:36:80:c9:16:1b:4e:5f:1d:91:f4:fe:
f1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F5:13:F7:46:13:1C:B5:42:62:14:47:D9:10:26:42:15:84:1F:2B
X509v3 Authority Key Identifier:
keyid:E2:B1:E2:E4:C5:08:C6:C7:A9:8B:65:98:52:87:45:C8:13:FA:D3:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rHi5MUIxsepi2WYUodFyBP60x0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/SfUT90YTHLVCYhRH2RAmQhWEHys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/4rHi5MUIxsepi2WYUodFyBP60x0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.12.0/22
217.173.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:32:38:20:b5:fd:bf:27:b3:07:20:2e:a6:8d:1d:a2:de:10:
46:d9:25:02:7b:80:ec:84:74:73:1c:b2:8b:ef:2c:2e:37:5d:
d2:50:c7:f9:09:4e:64:0d:77:d4:8b:24:5e:bb:ba:44:8f:3f:
f8:10:da:54:c6:02:b7:2d:df:4c:de:ee:b4:cc:4c:c3:4c:5f:
6e:64:a8:eb:99:e7:ff:a1:f1:01:14:91:10:e1:32:56:53:51:
7e:ed:05:43:34:1d:cc:bc:19:44:63:19:60:ce:88:cd:a2:44:
4c:a9:fc:bc:d7:a6:30:65:24:58:46:55:c5:af:64:15:e8:91:
65:5c:2d:98:39:9e:b4:13:21:6a:59:9c:58:37:ff:ea:87:58:
86:37:36:1f:91:16:5a:34:8e:4f:df:5a:7a:1d:5a:6f:38:14:
59:a0:65:63:4c:4c:9b:46:c9:78:63:58:fd:7b:50:1e:88:9e:
6e:e9:b9:69:e4:d3:1e:29:85:60:39:ef:c3:3c:c6:36:b1:d8:
4b:47:4e:0f:cc:0b:15:3c:cd:8d:28:52:c5:5e:30:4e:22:70:
ad:6e:18:21:3a:6d:5c:65:4d:9e:a8:c6:61:8e:a7:c6:a7:de:
cf:12:03:74:85:78:cc:2e:42:ea:30:b6:e9:c0:5f:e5:63:18:
9d:4f:f7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:25 2024 by rpki-client on console-fra.rpki-client.org