Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/416bc7-ce87-42b6-8c68-4ba5f206f65a/1/egY4wrlrbs_JnbynBrZwDruInck.roa
File: egY4wrlrbs_JnbynBrZwDruInck.roa (raw, json)
Hash identifier: qGcPJXa6dYNwf20+hOwME1XuuybHc0sdljQoLmK1Emk=
Subject key identifier: 7A:06:38:C2:B9:6B:6E:CF:C9:9D:BC:A7:06:B6:70:0E:BB:88:9D:C9
Certificate issuer: /CN=3bad9cd5034f81558f83d238eca406332bd7ba85
Certificate serial: 01888BD54D9073F43EF2896411A417EBC832
Authority key identifier: 3B:AD:9C:D5:03:4F:81:55:8F:83:D2:38:EC:A4:06:33:2B:D7:BA:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O62c1QNPgVWPg9I47KQGMyvXuoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/416bc7-ce87-42b6-8c68-4ba5f206f65a/1/egY4wrlrbs_JnbynBrZwDruInck.roa
Signing time: Mon 05 Jun 2023 13:53:11 +0000
ROA not before: Mon 05 Jun 2023 13:53:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13054
IP address blocks: 185.253.12.0/22 maxlen: 22
2a0c:3040::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:d5:4d:90:73:f4:3e:f2:89:64:11:a4:17:eb:c8:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bad9cd5034f81558f83d238eca406332bd7ba85
Validity
Not Before: Jun 5 13:53:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a0638c2b96b6ecfc99dbca706b6700ebb889dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a9:82:b1:e8:cd:00:3e:a7:1f:64:92:89:80:
1f:1f:c7:9c:35:3f:e0:7b:8e:cb:47:5d:90:76:13:
5e:16:81:e5:ee:28:b0:e6:6b:ef:03:91:77:a4:b9:
62:32:0a:63:12:ae:e5:0b:47:f9:e3:ba:3f:83:32:
c7:d9:9e:2c:76:6d:8f:9c:28:5b:ca:10:ef:13:c2:
d7:9c:3f:32:fb:46:7c:1d:b3:d1:a4:a0:4a:c0:33:
61:7d:74:ac:9c:d0:65:1c:f3:d2:c8:42:66:9a:78:
83:29:5c:92:ad:3e:ce:6b:88:72:ee:e4:10:9a:3c:
64:6b:96:6e:53:b3:41:d2:ba:9d:db:63:86:cd:c3:
bb:0b:20:15:34:fa:9a:7e:46:2b:cf:a3:a4:11:47:
97:a4:34:c6:0c:56:e5:dc:82:25:5f:20:34:bd:e3:
03:50:c6:2f:25:b2:c8:a8:62:b7:e1:89:31:3f:90:
d9:30:29:fe:68:4e:a6:5c:4c:45:cf:fe:50:4f:fb:
f1:b9:f2:cc:87:41:d6:81:ba:cb:c6:0f:60:3e:45:
e8:73:43:e1:40:43:13:4e:c6:3f:14:88:f5:96:77:
77:da:9a:45:e2:74:e4:43:97:61:42:15:e0:f1:b8:
e3:33:a8:ba:90:49:7c:47:eb:cb:cf:db:e4:50:4f:
84:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:06:38:C2:B9:6B:6E:CF:C9:9D:BC:A7:06:B6:70:0E:BB:88:9D:C9
X509v3 Authority Key Identifier:
keyid:3B:AD:9C:D5:03:4F:81:55:8F:83:D2:38:EC:A4:06:33:2B:D7:BA:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O62c1QNPgVWPg9I47KQGMyvXuoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/416bc7-ce87-42b6-8c68-4ba5f206f65a/1/egY4wrlrbs_JnbynBrZwDruInck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/416bc7-ce87-42b6-8c68-4ba5f206f65a/1/O62c1QNPgVWPg9I47KQGMyvXuoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.12.0/22
IPv6:
2a0c:3040::/29
Signature Algorithm: sha256WithRSAEncryption
5f:e8:1a:26:2d:1f:85:3f:b4:e8:0e:bb:38:1d:07:c8:c9:8f:
ec:27:cb:26:23:22:07:16:a8:bb:f7:ab:09:61:2b:a4:3e:6b:
fa:b9:a9:af:dc:a0:9d:fd:15:10:32:52:41:6f:64:30:04:9a:
ec:f7:10:4b:0b:87:58:6c:b9:6e:09:5c:6b:f0:87:99:c2:11:
35:af:0f:83:d9:c5:06:53:89:40:db:24:61:12:55:be:08:22:
1c:4e:03:da:50:9f:36:b8:2c:56:cb:47:ab:14:89:db:22:b8:
40:d4:15:f7:7f:86:fd:02:2f:a4:14:07:2e:5b:e0:43:7f:86:
36:da:ca:80:b9:f7:50:c0:85:d6:71:f1:d6:d8:4a:fc:68:70:
fe:c8:e2:92:7d:eb:9c:51:e0:a9:23:d0:57:2d:66:4d:06:bc:
ed:79:8c:09:3e:31:af:70:ee:8e:2a:d9:63:3e:91:ef:27:bb:
da:e4:7b:25:4a:a0:bd:88:4f:8d:64:14:63:d1:82:af:b1:3b:
1c:f9:9d:1a:c7:57:90:4f:5c:eb:28:67:f3:24:ad:29:02:bb:
4e:05:1d:e1:31:9a:13:12:cd:fa:51:ad:fa:86:d8:86:27:74:
b9:bf:aa:f6:a2:a6:08:81:da:81:19:56:37:f0:bf:8a:81:4d:
08:49:0b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:26 2024 by rpki-client on console-ams.rpki-client.org