Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/59bc0c-14f4-4bc4-80e4-b630853e9493/1/ej5Bev7rNJYfNmlFYF46VJjuCAI.roa
File: ej5Bev7rNJYfNmlFYF46VJjuCAI.roa (raw, json)
Hash identifier: t5gDiXWrHIWnNmTgfqRlq3pnvl4i8VWHLnVWNK4yedQ=
Subject key identifier: 7A:3E:41:7A:FE:EB:34:96:1F:36:69:45:60:5E:3A:54:98:EE:08:02
Certificate issuer: /CN=4d2f4d108ac184bd1b532ff88fc6644ade16da75
Certificate serial: 01864B61E2A739752F3369E909F1DAC49FE8
Authority key identifier: 4D:2F:4D:10:8A:C1:84:BD:1B:53:2F:F8:8F:C6:64:4A:DE:16:DA:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TS9NEIrBhL0bUy_4j8ZkSt4W2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/59bc0c-14f4-4bc4-80e4-b630853e9493/1/ej5Bev7rNJYfNmlFYF46VJjuCAI.roa
Signing time: Mon 13 Feb 2023 15:25:50 +0000
ROA not before: Mon 13 Feb 2023 15:25:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209529
IP address blocks: 185.228.220.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 03 Apr 2023 14:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4b:61:e2:a7:39:75:2f:33:69:e9:09:f1:da:c4:9f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2f4d108ac184bd1b532ff88fc6644ade16da75
Validity
Not Before: Feb 13 15:25:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a3e417afeeb34961f366945605e3a5498ee0802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ef:ff:a2:e5:3f:7a:be:75:c3:c2:1d:08:4e:
cb:b5:dd:76:b9:be:2f:64:07:d7:02:4e:aa:b2:b2:
9b:55:f4:6c:b4:3f:ed:40:ef:3b:7a:cb:56:12:d5:
65:31:71:e9:21:55:9a:73:4c:66:d1:dc:7a:23:64:
7d:22:64:87:5a:44:d5:ef:8e:ef:2f:12:9a:cd:67:
79:00:be:2c:16:a8:e1:b2:b5:b4:a4:7a:37:6a:ee:
b5:fa:99:33:fa:0d:bb:76:ef:1e:58:9b:f2:f5:60:
6c:aa:e7:56:4b:98:e8:24:db:b0:e6:f9:10:0a:39:
ce:71:b4:25:36:5d:a1:60:70:c5:85:dd:b1:44:20:
a6:64:b8:df:6a:08:56:b1:74:9c:f0:a6:fd:50:3a:
60:46:6b:5a:4e:9a:70:d6:47:31:db:c5:9b:40:ee:
78:59:eb:8b:12:87:45:ef:d7:59:08:f8:13:84:ca:
3d:98:7f:aa:66:71:f2:48:66:18:09:0b:f7:0e:08:
12:f2:70:51:a6:a9:41:3f:56:da:7c:7f:0a:12:a3:
5d:df:dc:1c:dd:a6:fb:47:6a:ed:d1:4e:0b:59:af:
1f:36:62:eb:51:d9:c4:18:0f:b2:fb:7d:78:89:5b:
61:96:73:1a:84:0b:cc:be:02:09:0c:f5:43:ef:ff:
17:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3E:41:7A:FE:EB:34:96:1F:36:69:45:60:5E:3A:54:98:EE:08:02
X509v3 Authority Key Identifier:
keyid:4D:2F:4D:10:8A:C1:84:BD:1B:53:2F:F8:8F:C6:64:4A:DE:16:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TS9NEIrBhL0bUy_4j8ZkSt4W2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/59bc0c-14f4-4bc4-80e4-b630853e9493/1/ej5Bev7rNJYfNmlFYF46VJjuCAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/59bc0c-14f4-4bc4-80e4-b630853e9493/1/TS9NEIrBhL0bUy_4j8ZkSt4W2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:d1:45:b7:0a:fc:eb:06:94:fb:fe:9c:d5:30:9f:37:b5:e6:
40:9e:89:c7:c5:19:1b:da:06:38:7d:17:59:be:97:99:a2:bf:
de:67:bf:b3:70:eb:e9:ce:ca:d0:0a:8e:3f:9c:09:71:9e:6d:
32:a2:e5:df:19:69:d5:c6:34:4b:a7:18:c9:10:bf:36:6a:9b:
51:76:42:d0:34:54:6f:17:60:cb:99:2a:a1:7e:2f:01:8c:a6:
ee:a7:75:27:83:37:85:99:2e:19:05:f1:6d:6a:49:aa:5a:7c:
fc:bf:72:78:1c:d8:13:73:45:08:44:9a:35:14:f0:17:7c:bc:
ac:e7:d8:17:e1:09:e9:dc:28:96:ba:1d:85:6d:76:8a:16:2e:
ad:53:8d:21:50:b9:52:06:cc:a4:5f:a6:89:36:97:8e:1b:e6:
d8:35:00:7f:89:b5:07:43:18:e8:4a:69:2d:95:b6:d9:21:e9:
60:2a:70:fe:89:3b:5b:40:bc:9f:81:08:d2:ea:6c:8a:f7:a5:
11:7d:de:9d:91:08:10:24:59:37:4a:56:b8:85:4f:58:3a:30:
1e:3a:49:eb:ee:d2:98:d7:1a:43:2e:07:01:d0:9b:6a:0b:df:
fc:ae:17:9d:88:fc:3a:e2:18:c9:6b:07:52:28:97:88:da:2d:
53:c1:1a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:29 2024 by rpki-client on console-fra.rpki-client.org