Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/l5tgeeguvn4QMnFS9-cyY47FdTM.roa
File: l5tgeeguvn4QMnFS9-cyY47FdTM.roa (raw, json)
Hash identifier: aKcgE8WWY41v75IY0HdOuDG9OHuoYoogsXy8JBcGq3s=
Subject key identifier: 97:9B:60:79:E8:2E:BE:7E:10:32:71:52:F7:E7:32:63:8E:C5:75:33
Certificate issuer: /CN=6cc69c3d7030cec19f8fb66e543bde65595708a2
Certificate serial: 018D5AB9C324015B66C9EB21760B9C1E1330
Authority key identifier: 6C:C6:9C:3D:70:30:CE:C1:9F:8F:B6:6E:54:3B:DE:65:59:57:08:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMacPXAwzsGfj7ZuVDveZVlXCKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/l5tgeeguvn4QMnFS9-cyY47FdTM.roa
Signing time: Tue 30 Jan 2024 14:15:39 +0000
ROA not before: Tue 30 Jan 2024 14:15:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210570
IP address blocks: 185.20.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 17:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:b9:c3:24:01:5b:66:c9:eb:21:76:0b:9c:1e:13:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc69c3d7030cec19f8fb66e543bde65595708a2
Validity
Not Before: Jan 30 14:15:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=979b6079e82ebe7e10327152f7e732638ec57533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:38:24:e6:ea:5d:2a:f1:a4:6a:da:7f:f8:94:
43:e9:d0:cc:77:27:e0:d3:17:a1:5c:20:c7:55:9e:
e2:b7:ac:b6:60:52:9d:d6:8e:8a:cf:0b:c9:f4:21:
26:3f:c6:47:e1:5a:b3:79:77:7a:c9:9e:c6:38:3e:
a8:96:c4:5a:05:0d:97:97:54:0c:d1:49:26:3c:07:
67:89:e4:9a:bb:9d:28:37:8d:d2:18:d9:d3:b7:fa:
48:df:90:e9:57:ce:8a:63:5a:3d:21:a2:de:3e:26:
bb:1a:09:87:0b:6b:5a:e3:36:6a:70:be:00:00:5f:
25:ec:12:46:19:e4:aa:c5:7a:3c:28:84:58:13:3b:
44:a8:ba:b7:a0:77:e2:15:7d:42:ac:08:5e:64:04:
52:b6:8f:68:21:1c:70:e8:38:d5:52:ed:88:04:0c:
02:3d:83:46:2b:de:2b:00:ed:86:7f:09:07:3e:a0:
67:af:f5:31:c8:79:59:79:95:af:0c:39:96:da:c3:
85:02:9c:85:bc:2d:12:fc:9a:7b:a3:e3:7c:b2:76:
c5:0c:5b:d5:d4:d2:7b:da:68:42:43:f5:0d:1c:07:
c2:05:6f:bb:18:9f:f0:83:38:e2:c8:84:c2:f1:1c:
20:6e:f4:4c:2b:b7:5e:2c:13:25:06:1f:5a:72:0a:
26:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9B:60:79:E8:2E:BE:7E:10:32:71:52:F7:E7:32:63:8E:C5:75:33
X509v3 Authority Key Identifier:
keyid:6C:C6:9C:3D:70:30:CE:C1:9F:8F:B6:6E:54:3B:DE:65:59:57:08:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMacPXAwzsGfj7ZuVDveZVlXCKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/l5tgeeguvn4QMnFS9-cyY47FdTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/bMacPXAwzsGfj7ZuVDveZVlXCKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.7.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:26:89:64:dd:1a:48:75:38:81:7d:ad:7f:80:d9:20:f6:b6:
68:2d:b2:dd:47:d6:64:bc:13:2b:41:d8:b8:43:2e:c0:e2:7d:
ec:c1:fd:d3:6b:7a:27:ef:33:39:1a:b4:45:6d:0a:40:71:b4:
26:04:d5:11:fd:f2:9f:08:7b:07:bb:ac:ec:a0:59:a3:94:5c:
15:dc:69:60:31:91:01:47:43:62:cf:37:ad:36:17:cf:f2:61:
c1:da:c2:db:95:5e:83:5c:3f:d5:d8:5d:66:b9:2b:45:40:56:
44:ee:1d:cc:e0:b7:4a:47:d6:53:6d:ab:20:0c:3d:5b:e7:d5:
e2:a8:4d:43:98:be:3b:12:c1:69:43:cc:fd:1b:41:ce:58:2f:
8b:5b:bd:d2:d7:95:9a:52:ce:27:23:59:a0:c8:f0:b4:ea:97:
8a:c3:3a:cd:6c:3a:47:a5:9e:e1:95:44:c0:51:e1:86:b3:0e:
ba:1b:2a:de:c3:59:b0:cd:09:73:f3:56:b6:94:7a:c4:6c:4d:
98:3f:ee:dd:26:7d:d0:bc:71:aa:40:de:83:97:9e:42:96:19:
6a:33:f0:bc:df:7b:8a:0f:be:fd:31:11:37:65:72:59:00:4d:
2a:7e:2c:08:b3:3a:ee:2d:57:cd:a6:29:24:e2:ff:ca:3b:45:
0e:4c:93:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 22:58:30 2024 by rpki-client on console-ams.rpki-client.org