Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/sXRfxpJDEuWIJRF_3PKHIMEE6HY.roa
File: sXRfxpJDEuWIJRF_3PKHIMEE6HY.roa (raw, json)
Hash identifier: rkppuLpUNlNcDKIK3IYvz/tJyG83I6W20oepG9nBrC0=
Subject key identifier: B1:74:5F:C6:92:43:12:E5:88:25:11:7F:DC:F2:87:20:C1:04:E8:76
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CA930E95C2FBFB517F917AFAE41F
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/sXRfxpJDEuWIJRF_3PKHIMEE6HY.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6461
IP address blocks: 185.226.204.0/22 maxlen: 24
185.101.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Sep 2023 15:12:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ca:93:0e:95:c2:fb:fb:51:7f:91:7a:fa:e4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1745fc6924312e58825117fdcf28720c104e876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e3:6c:e2:b1:59:34:10:ae:45:07:51:b6:25:
1d:2f:3a:2c:e1:25:8b:01:59:c5:28:65:01:d0:8b:
3b:9c:3e:2b:20:4a:3e:9c:42:0a:72:73:ae:c6:6c:
3b:15:91:ae:cf:73:1f:b3:17:78:8b:45:8f:83:d8:
91:cd:b0:7c:80:b3:f8:39:29:91:c6:b8:c0:90:62:
16:56:bb:c1:e5:e4:f5:79:91:c4:46:19:ab:6c:ee:
54:3b:7a:d5:a8:c4:30:75:ac:83:b2:99:55:4f:37:
93:c1:45:ae:e5:b6:66:9f:88:4a:84:e2:ba:6a:f6:
fb:5d:9c:8b:94:dd:ed:d2:81:59:c2:31:56:49:e2:
e2:90:e9:0b:73:6f:a1:c4:90:8a:28:ef:23:2a:e8:
ec:4e:5b:12:50:2d:01:f2:98:2d:c9:a9:2c:56:1e:
a7:9c:fe:d2:8d:57:9a:6a:be:28:f7:ac:55:d5:b9:
62:b9:40:09:99:01:c6:2b:62:88:20:8e:15:ed:ba:
a3:77:e0:e7:97:9c:42:fe:47:d1:62:cc:97:5a:05:
bd:5f:02:67:37:3a:8a:f1:57:f1:d3:cf:97:2d:14:
b2:73:c4:b2:2a:1f:c4:e6:86:6d:ad:16:2c:45:41:
7e:bc:1a:9e:65:8d:f6:31:15:5e:0d:bf:83:6a:fc:
85:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:74:5F:C6:92:43:12:E5:88:25:11:7F:DC:F2:87:20:C1:04:E8:76
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/sXRfxpJDEuWIJRF_3PKHIMEE6HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.252.0/22
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
96:c4:a1:e1:da:61:6e:f8:1e:16:ff:48:47:96:6c:ee:81:f1:
63:f2:e8:51:84:d0:a6:c8:da:a0:81:13:2a:b6:f6:7d:32:e3:
68:54:28:bf:33:84:62:8a:14:36:84:4e:a2:17:18:d6:b2:63:
8b:00:a3:5e:41:e2:cc:77:76:ab:18:ed:2c:31:f3:59:38:bb:
09:63:67:90:51:5a:91:14:8b:11:39:8a:88:12:ad:c3:51:1f:
09:85:8f:32:65:32:ef:8b:d3:22:44:a9:4e:3c:e9:59:54:6a:
7b:50:50:c6:67:5b:d5:17:b1:a6:c9:90:6e:d0:70:fa:99:bf:
29:a3:d4:ac:e1:b9:fc:ac:d3:f4:f9:be:d5:5c:12:e7:0c:db:
ff:58:fc:b5:b6:30:36:e4:1f:4f:2a:77:ae:8e:df:23:c0:a8:
43:77:5a:bd:87:94:b4:b6:dd:97:5b:bd:6c:96:61:d6:fc:c5:
01:e4:ba:11:e1:d3:70:d1:6d:d0:7d:56:36:ed:91:c8:b9:0d:
08:77:af:37:3f:75:a8:12:c9:7b:0e:15:f8:d5:87:16:8a:b5:
aa:95:82:09:09:03:a2:dd:4b:ad:b5:55:0a:92:8d:37:39:a8:
11:a4:81:a4:9e:63:e0:00:20:62:15:99:1f:37:c0:91:11:8c:
26:0c:6a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org