Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2f3eda-7c73-4675-8e42-052452ddff33/1/fC0lNLBJnS9Wx_kmfFNO1dwl5ng.roa
File: fC0lNLBJnS9Wx_kmfFNO1dwl5ng.roa (raw, json)
Hash identifier: PvPdX4GKXY+eyqdNvCV73HbG6jiuCasDFEdGWlpzSvc=
Subject key identifier: 7C:2D:25:34:B0:49:9D:2F:56:C7:F9:26:7C:53:4E:D5:DC:25:E6:78
Certificate issuer: /CN=e9b2d146e58663316fd16d3346b5e623fee8eb6a
Certificate serial: 0185710C0C5528CF859169A144FABF937F1A
Authority key identifier: E9:B2:D1:46:E5:86:63:31:6F:D1:6D:33:46:B5:E6:23:FE:E8:EB:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bLRRuWGYzFv0W0zRrXmI_7o62o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2f3eda-7c73-4675-8e42-052452ddff33/1/fC0lNLBJnS9Wx_kmfFNO1dwl5ng.roa
Signing time: Mon 02 Jan 2023 05:54:52 +0000
ROA not before: Mon 02 Jan 2023 05:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57307
IP address blocks: 185.100.148.0/22 maxlen: 24
188.227.240.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:0c:55:28:cf:85:91:69:a1:44:fa:bf:93:7f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b2d146e58663316fd16d3346b5e623fee8eb6a
Validity
Not Before: Jan 2 05:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c2d2534b0499d2f56c7f9267c534ed5dc25e678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:60:b2:09:ad:a6:b6:d6:ef:58:44:2e:bf:
70:94:32:d6:c1:25:28:92:58:e3:64:e3:59:0e:30:
72:1c:05:e8:eb:c5:75:c5:6f:2e:17:d1:ab:94:3c:
2a:8f:c1:15:66:8e:16:25:5b:e1:70:f4:5b:65:dc:
ff:cf:99:c6:db:26:f1:6a:2d:59:98:37:3e:02:1e:
af:b1:68:6c:a3:30:60:ca:d1:5f:db:4f:48:3d:41:
83:a6:73:bd:73:67:29:ea:97:42:52:28:dd:b8:29:
4d:2c:2b:1c:e1:f6:75:5d:8e:87:b0:af:96:90:f2:
55:d0:f1:d6:9c:94:80:3a:a4:a2:4e:7e:7e:47:1e:
fd:e9:99:11:3e:36:e3:68:e9:b3:ee:2c:72:66:c3:
63:01:1e:79:80:a1:dc:16:18:53:54:3a:81:12:94:
0f:86:0f:3d:00:78:56:cb:89:0a:a4:89:fd:aa:34:
ab:e8:a1:c4:fc:5f:7b:10:71:4b:71:c6:f2:95:40:
1e:84:ea:f3:d7:0d:1a:39:13:a5:10:30:d7:9a:3d:
9a:49:a6:52:bd:a4:b4:60:f7:a0:b2:7f:c4:0b:dc:
5e:96:5c:40:8e:b5:53:75:78:38:c9:5a:59:0e:0d:
bd:5a:b6:45:c5:09:39:3b:ff:01:89:ba:50:33:36:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2D:25:34:B0:49:9D:2F:56:C7:F9:26:7C:53:4E:D5:DC:25:E6:78
X509v3 Authority Key Identifier:
keyid:E9:B2:D1:46:E5:86:63:31:6F:D1:6D:33:46:B5:E6:23:FE:E8:EB:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bLRRuWGYzFv0W0zRrXmI_7o62o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2f3eda-7c73-4675-8e42-052452ddff33/1/fC0lNLBJnS9Wx_kmfFNO1dwl5ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2f3eda-7c73-4675-8e42-052452ddff33/1/6bLRRuWGYzFv0W0zRrXmI_7o62o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.148.0/22
188.227.240.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:90:2a:02:22:b9:ec:a5:d7:ac:f7:df:3d:01:c8:47:58:4c:
38:19:d2:95:c5:90:a7:5b:d5:14:98:2b:22:68:34:38:92:d3:
32:15:71:99:78:bb:1e:19:cc:50:56:0e:d1:b3:0d:d4:4b:ca:
85:cb:46:b8:80:90:01:6d:83:9b:a2:37:fb:90:50:ea:2c:fc:
bb:fa:0e:95:af:3c:9f:43:ca:2a:26:b5:14:44:31:da:86:6f:
06:72:80:ef:67:41:08:94:51:25:03:6d:ca:28:f0:79:13:03:
3b:35:ad:18:5d:e0:e5:71:5f:b7:f8:2b:3b:b5:32:16:ab:30:
78:76:3e:75:51:7d:db:72:67:34:b9:7c:a3:d6:21:f0:da:3e:
fa:af:18:40:2b:92:79:0e:68:d7:11:ba:a8:23:73:be:33:a2:
9a:f2:0a:10:a2:06:25:7d:0b:4d:88:e0:02:8f:2d:10:51:7d:
be:9f:2c:01:b5:aa:cc:e7:47:84:b6:40:40:89:08:1e:b7:2f:
22:54:48:52:5a:e6:6e:15:7d:35:ae:ec:e3:8f:d8:24:85:d7:
fc:25:ed:e6:8f:8a:4a:ef:da:55:fd:5d:80:44:c6:07:80:8e:
3c:61:0c:6d:92:71:45:da:f5:72:4a:2c:58:8c:d1:46:10:5d:
4e:4a:60:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:15 2024 by rpki-client on console-fra.rpki-client.org