Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/5qCspUY4O9sj2S0fko08JBkEERA.roa
File: 5qCspUY4O9sj2S0fko08JBkEERA.roa (raw, json)
Hash identifier: 9QQxFWSl9cEdMtU3KKw2P0oHBqqwyHNpQtxudkLcm/M=
Subject key identifier: E6:A0:AC:A5:46:38:3B:DB:23:D9:2D:1F:92:8D:3C:24:19:04:11:10
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 01856C53D5A81B66A41F2976C2441769677E
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/5qCspUY4O9sj2S0fko08JBkEERA.roa
Signing time: Sun 01 Jan 2023 07:55:11 +0000
ROA not before: Sun 01 Jan 2023 07:55:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211482
IP address blocks: 185.217.29.0/24 maxlen: 24
185.217.31.0/24 maxlen: 24
185.217.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d5:a8:1b:66:a4:1f:29:76:c2:44:17:69:67:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Jan 1 07:55:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6a0aca546383bdb23d92d1f928d3c2419041110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b3:cf:5e:4f:51:27:c5:c1:ef:ba:d1:e7:11:
8a:ff:ca:96:00:1f:8b:23:88:a7:63:f8:24:ec:32:
da:66:30:3d:a3:61:be:3f:b5:08:6e:28:4c:4b:a3:
d1:c2:3b:6d:55:ae:10:63:8e:73:7e:6d:e2:65:bc:
7d:16:30:91:b5:9e:8b:39:b1:b8:8b:7a:ea:d8:ec:
e3:5d:3b:94:d9:9e:74:0f:39:e9:d4:20:df:6f:8f:
36:3a:82:ba:4a:62:ed:fb:20:38:eb:86:2a:12:51:
3b:a0:c7:aa:11:3b:06:4b:f7:12:ab:be:3f:62:76:
91:f9:4f:dc:6c:3f:ac:79:a2:b5:f2:3e:8c:97:77:
b5:35:4f:52:15:46:5c:95:fe:0e:27:71:bd:00:7c:
f4:28:b2:77:fb:bd:22:7a:1d:d0:35:99:6d:0d:4e:
73:98:03:ee:30:f5:68:fe:83:e0:d0:f8:f5:6d:d8:
37:04:c4:50:1a:59:f7:32:f2:1a:3e:13:68:ea:d3:
fb:fe:7b:f8:8b:6e:81:27:41:0e:6b:85:88:94:e5:
43:c7:57:d7:85:ee:d0:26:5f:c6:d5:b8:24:4c:ae:
df:97:fe:fd:77:24:d1:79:21:9d:6b:16:20:b4:04:
4e:cd:d5:35:61:10:1d:8e:7e:22:54:00:ab:3e:27:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A0:AC:A5:46:38:3B:DB:23:D9:2D:1F:92:8D:3C:24:19:04:11:10
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/5qCspUY4O9sj2S0fko08JBkEERA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.28.0/23
185.217.31.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d1:d6:9d:55:d9:7f:0e:a1:1a:44:9d:65:69:35:8a:41:ba:
b2:8f:43:ba:22:9e:b4:2c:e8:98:94:3c:d0:71:6a:eb:e0:5d:
67:60:8d:7e:80:79:a0:b8:d7:ca:ac:26:be:39:ae:69:e3:d7:
b1:56:81:d6:e4:31:d3:05:26:7a:7b:84:d5:e6:da:8d:b3:97:
2c:60:41:9d:f8:1c:d6:0f:6d:96:34:85:5b:9c:7f:6d:ec:d6:
1a:f1:ad:ed:93:5d:78:0d:aa:b6:f3:a7:d6:89:a8:52:f8:9e:
36:e1:ee:c2:a5:28:69:7e:b6:d6:ee:94:8f:1a:98:ae:53:15:
ac:df:e2:a0:7a:8e:73:e6:ef:ed:05:d2:e1:fd:43:e5:c6:57:
fe:e9:fa:63:73:20:72:45:3c:53:ed:0b:97:d1:ad:8a:db:9e:
f9:7d:f4:3c:b0:74:d5:64:43:cf:fa:4c:5a:60:fe:90:b6:00:
d9:35:6b:e9:e1:83:7d:2a:f6:4b:1c:38:eb:1c:37:84:d8:20:
75:7f:4e:7a:32:cf:ef:cf:e7:28:c1:e5:48:5e:3c:06:93:5d:
3c:65:86:80:aa:e4:7b:a1:bc:85:c2:9d:fb:1d:cc:80:8c:fe:
af:eb:77:f9:16:db:c5:ab:57:e3:4b:36:cd:87:88:25:f7:01:
d7:b3:ec:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-fra.rpki-client.org