Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/99GtvUEaBlYjhQ24O-8RQa1aHLE.roa
File: 99GtvUEaBlYjhQ24O-8RQa1aHLE.roa (raw, json)
Hash identifier: 4/7zQCGas06bpUyutjZqxb37fCn/BhvG0PK8Ysq32Tc=
Subject key identifier: F7:D1:AD:BD:41:1A:06:56:23:85:0D:B8:3B:EF:11:41:AD:5A:1C:B1
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 01856D01AF8141F11C9CE7A04AF9D9895213
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/99GtvUEaBlYjhQ24O-8RQa1aHLE.roa
Signing time: Sun 01 Jan 2023 11:05:05 +0000
ROA not before: Sun 01 Jan 2023 11:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51088
IP address blocks: 185.41.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:af:81:41:f1:1c:9c:e7:a0:4a:f9:d9:89:52:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Jan 1 11:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7d1adbd411a065623850db83bef1141ad5a1cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:52:7c:f2:1e:b0:82:6e:bb:5f:4d:29:d0:d1:
7e:ca:19:3c:bb:e5:a0:0c:3c:27:66:84:04:40:14:
83:24:b3:c8:b7:f4:ca:96:d3:7e:ca:24:fc:da:59:
bb:af:62:b3:35:c3:0f:fd:6b:3c:71:90:b4:fa:2f:
f6:09:36:16:e5:38:e0:6d:e0:d9:f3:31:0a:5d:1a:
79:a4:eb:b0:25:53:03:6b:4e:55:74:50:cb:3f:48:
71:7f:92:1d:a1:3f:7f:84:76:96:28:f4:c4:e6:e3:
79:4c:70:22:31:76:95:44:c9:d2:65:1b:63:df:e4:
a0:e2:e2:99:24:db:3a:2e:d8:1d:38:1d:0d:b8:e9:
dd:41:d4:68:99:fb:c7:2a:41:0a:94:14:f2:b7:4f:
d1:0a:ba:a9:07:df:b8:97:36:2b:a4:f7:53:18:7a:
3d:63:2e:3c:81:e9:2f:00:ee:2e:5f:57:dd:53:71:
97:8b:6c:db:89:cf:d2:54:00:64:51:a4:7e:4b:d8:
b0:d6:d0:64:47:c2:d2:66:e3:ab:42:ad:a9:6c:9c:
94:32:4b:93:24:d3:da:13:c7:2e:c1:06:2d:01:e1:
00:f6:8b:f4:73:e7:82:6a:a3:83:ab:04:9a:25:04:
fd:8f:5c:ab:2f:29:f2:14:dc:5b:c8:6e:9b:79:2f:
64:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D1:AD:BD:41:1A:06:56:23:85:0D:B8:3B:EF:11:41:AD:5A:1C:B1
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/99GtvUEaBlYjhQ24O-8RQa1aHLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.124.0/22
Signature Algorithm: sha256WithRSAEncryption
57:b4:5c:fe:dd:2d:1b:fa:ca:3b:08:1d:ef:ec:b6:5e:02:6b:
aa:79:14:aa:80:ef:5e:5c:78:77:69:d3:84:74:d0:e8:a1:57:
8a:3a:51:58:da:0a:6b:5c:73:88:19:ba:28:a4:d2:cd:f0:56:
94:83:9d:96:56:e8:c0:1a:b6:3d:e0:e1:53:4d:d4:01:ab:fc:
4d:79:9f:e7:d6:38:7a:02:66:14:94:2b:fc:9f:da:c1:c5:79:
01:c7:97:60:00:40:f4:03:ec:68:44:b9:43:18:69:85:4c:1d:
92:48:e9:d9:da:59:22:f2:2d:9c:7f:45:42:1b:52:ce:fb:b6:
86:03:40:bf:56:60:7f:48:07:34:97:31:d6:d1:ad:85:76:85:
c2:87:cf:d9:ec:38:d9:8a:5c:3e:cf:2f:f3:92:a0:74:12:49:
66:1c:68:de:c0:e5:8c:dc:0a:29:19:cd:69:f0:d1:c3:e1:b4:
73:d9:f0:b3:c3:c1:94:46:27:3f:30:44:79:59:d3:f6:41:5a:
e9:8c:19:cf:43:28:58:af:4e:34:3b:8e:33:da:9e:7d:31:ce:
a9:08:c3:23:91:01:be:00:1f:bb:2a:21:3b:19:1e:cc:0e:e9:
ee:00:8e:fb:f1:e3:b7:55:df:2c:01:79:2e:ae:d8:55:77:5c:
99:39:62:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org