Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/6jvxPtgKCCcUkb4vTrAltrffS6g.roa
File: 6jvxPtgKCCcUkb4vTrAltrffS6g.roa (raw, json)
Hash identifier: wEN4CDlw7fCXNk7K/EogXhvlaAq6ZsGJ546iqX3K1OA=
Subject key identifier: EA:3B:F1:3E:D8:0A:08:27:14:91:BE:2F:4E:B0:25:B6:B7:DF:4B:A8
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018ADC59B0133AB04FC7873B46F32E507291
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/6jvxPtgKCCcUkb4vTrAltrffS6g.roa
Signing time: Thu 28 Sep 2023 15:12:59 +0000
ROA not before: Thu 28 Sep 2023 15:12:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.226.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Sep 2023 17:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dc:59:b0:13:3a:b0:4f:c7:87:3b:46:f3:2e:50:72:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Sep 28 15:12:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea3bf13ed80a08271491be2f4eb025b6b7df4ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b0:76:e5:35:53:0b:f7:4d:39:26:f2:2b:fa:
a5:96:8d:c2:a3:0f:7f:1c:9e:01:78:9d:64:07:5e:
1e:f8:2c:f7:61:4e:68:ec:30:7e:0d:ab:bd:94:32:
05:52:66:cb:60:69:5c:d7:31:ca:ea:ac:05:6d:39:
e6:a0:a3:a9:77:bc:9b:c6:c8:d9:39:a6:08:cf:be:
7a:35:5a:6e:2d:ae:8e:67:0a:bf:24:e2:ca:62:33:
83:bb:7a:6a:cf:c1:23:83:ec:be:04:4c:22:e6:41:
8d:8d:4e:7f:e5:7a:36:36:30:24:d7:03:26:43:ca:
2a:13:35:fa:2f:a5:62:7c:4b:a6:f6:21:39:95:4e:
c1:61:91:01:ea:52:01:a9:07:a6:b1:95:a8:68:2c:
68:ab:1a:13:a6:01:c7:50:67:e7:12:4a:39:cb:58:
e8:eb:31:1b:82:60:39:4d:7a:18:76:d3:f5:a5:44:
c5:9b:d1:8f:5a:9e:45:39:49:6b:62:25:17:96:fa:
8b:8e:eb:e0:51:a6:43:b7:03:92:92:d0:4c:3b:8c:
5f:76:f5:63:c2:24:39:4f:c3:93:83:ee:f2:f7:16:
83:42:68:78:02:d6:78:82:4e:be:fc:13:b1:71:5f:
a6:7f:bc:18:6d:53:e1:b4:20:88:dc:de:63:44:bd:
93:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3B:F1:3E:D8:0A:08:27:14:91:BE:2F:4E:B0:25:B6:B7:DF:4B:A8
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/6jvxPtgKCCcUkb4vTrAltrffS6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:c6:79:ea:3f:8b:f2:40:47:2b:57:e8:b1:70:ff:5f:0a:52:
25:fc:41:53:22:c9:ac:1b:d7:f2:dc:65:26:4d:86:27:d1:ed:
60:cd:06:4a:47:a5:c6:22:da:9e:dd:bb:11:b1:5b:8a:c7:2e:
6f:f9:8e:cc:86:d1:1f:2c:92:84:b4:54:72:85:9a:41:3c:b4:
1e:17:8b:b3:c2:1a:70:c7:8a:76:8e:83:ec:a0:f3:38:b8:0b:
04:fb:78:e0:93:28:67:62:05:2e:f1:78:87:cc:12:9f:8a:c8:
b4:dc:1d:a9:81:8e:18:4a:2a:58:c9:d8:9d:a7:7c:78:88:57:
6e:99:92:e8:3d:f1:7f:d2:72:1b:d0:3b:8a:e0:88:78:5d:95:
01:dd:d5:52:8d:89:6c:7d:d5:b3:39:03:bc:ec:7d:b3:2a:9d:
cd:bc:cb:56:da:a4:74:a6:55:e7:1e:5d:5c:9b:da:41:35:4d:
26:21:b7:30:e1:77:62:20:b0:42:32:b4:4c:ab:2a:ef:d4:c6:
46:31:6a:a9:f2:79:70:8d:df:10:8f:07:6f:3f:cb:11:2b:ae:
51:c0:da:84:0a:50:5f:22:c2:13:4f:f0:da:c5:05:87:3a:70:
80:19:60:90:64:fa:57:bd:86:16:db:7a:36:5d:2f:87:81:6c:
8a:d0:82:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org