Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/MYuZ7mhZkOQFO_w2RfeTXDe8vJA.roa
File: MYuZ7mhZkOQFO_w2RfeTXDe8vJA.roa (raw, json)
Hash identifier: jPuTtNiJTeJwHsYggCKKCiGU/qlWOzPK40u+7gcPvF4=
Subject key identifier: 31:8B:99:EE:68:59:90:E4:05:3B:FC:36:45:F7:93:5C:37:BC:BC:90
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CC0B5CD168FAADA5152E409B3895
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/MYuZ7mhZkOQFO_w2RfeTXDe8vJA.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26636
IP address blocks: 185.170.68.0/22 maxlen: 24
185.171.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 06:24:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cc:0b:5c:d1:68:fa:ad:a5:15:2e:40:9b:38:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=318b99ee685990e4053bfc3645f7935c37bcbc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a1:f9:6d:ba:11:a6:9c:60:73:50:80:fc:8a:
a5:e0:58:cd:80:9d:3e:a8:da:1c:0d:ee:21:fa:ed:
8c:98:87:30:a1:99:ba:84:79:1f:5e:18:08:fc:8d:
f5:ca:8c:82:8c:2b:7e:61:81:e5:55:e9:96:84:3f:
44:ea:31:aa:df:c1:98:94:73:a7:f2:0b:46:18:bf:
74:a3:58:61:16:d4:99:de:a8:b9:7e:87:66:5e:1e:
a5:ec:45:4a:b8:72:d1:1c:5d:d2:54:4d:c8:1f:d5:
4b:dc:aa:ae:74:41:60:e0:1e:18:8e:3a:2c:d1:05:
d3:b2:95:72:59:f5:91:0a:a6:96:45:3d:e4:20:6f:
af:e4:24:36:85:3e:4b:b1:81:8c:ce:16:c2:51:89:
46:b4:78:93:2a:bb:56:12:4a:fb:59:79:ca:ce:06:
80:e5:fb:70:48:37:e7:c2:06:65:1b:ad:15:72:8f:
fa:66:e9:27:3e:c6:0c:dd:ca:2a:02:4c:cf:40:0b:
42:cf:13:e2:41:20:0d:93:a5:18:fd:37:5b:b5:09:
d5:a9:26:b2:10:9a:b5:48:2e:7a:99:20:c6:59:60:
84:a0:a6:0d:4a:c0:2b:11:c0:77:06:07:c7:ce:6d:
b7:3c:17:90:d1:6b:b3:1e:88:79:f2:c5:13:3a:9e:
dc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8B:99:EE:68:59:90:E4:05:3B:FC:36:45:F7:93:5C:37:BC:BC:90
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/MYuZ7mhZkOQFO_w2RfeTXDe8vJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.68.0/22
185.171.252.0/22
Signature Algorithm: sha256WithRSAEncryption
14:3e:88:cf:e0:59:1a:fc:41:44:43:36:64:7a:fb:21:de:8a:
56:97:cf:0c:c9:96:10:88:f5:0d:be:76:9e:1c:d4:55:da:70:
09:97:26:70:48:79:ea:4d:b1:39:76:a0:1b:56:bc:a8:ee:60:
93:75:71:12:0e:1c:a4:47:92:73:86:9e:d2:f0:a8:98:da:44:
e8:0b:c3:7e:ac:69:52:d5:0b:aa:49:e4:55:3f:3c:50:33:b9:
29:dc:8f:80:36:7a:1c:17:5a:18:d9:5f:fc:3c:59:38:bc:fa:
11:f8:70:df:83:76:73:22:d7:50:41:23:61:d6:29:fe:0e:57:
44:ae:e2:94:08:c9:f3:15:f7:23:92:08:13:ee:73:b9:61:ea:
fa:6a:e9:5f:ef:76:78:0f:eb:fa:38:af:63:29:fe:2d:91:81:
1e:f6:29:9e:f0:2d:4b:19:34:98:bb:38:3a:7e:0e:89:73:46:
7e:ab:f9:27:b7:fd:30:95:aa:ed:d3:e2:9c:80:1f:24:5c:50:
f4:a3:9d:ec:a8:69:48:5a:ed:cb:f1:69:1d:10:39:a5:8c:3b:
b1:b7:e0:6d:cd:27:04:1c:a3:65:8d:c6:50:e7:93:a2:93:81:
2e:e2:ca:a9:f2:5d:a8:67:02:ea:f2:6b:6b:14:fa:94:a3:fc:
e0:db:e9:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org