Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/d4799f-947f-4b8a-876e-851cb2758775/1/7-Y3FzlhyF7LaQZDkCtgZXfk2AM.roa
File: 7-Y3FzlhyF7LaQZDkCtgZXfk2AM.roa (raw, json)
Hash identifier: KyljzAC44nJQ+evhnSjv7Q2yaHNLUNgKg8O1sz0U7OY=
Subject key identifier: EF:E6:37:17:39:61:C8:5E:CB:69:06:43:90:2B:60:65:77:E4:D8:03
Certificate issuer: /CN=cb2e04d7ee6961cbeb6a2405141bb1e793b0e794
Certificate serial: 01857139C7C4895B4C17C69062AE0CA83431
Authority key identifier: CB:2E:04:D7:EE:69:61:CB:EB:6A:24:05:14:1B:B1:E7:93:B0:E7:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy4E1-5pYcvraiQFFBux55Ow55Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/d4799f-947f-4b8a-876e-851cb2758775/1/7-Y3FzlhyF7LaQZDkCtgZXfk2AM.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21183
IP address blocks: 185.221.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Jun 2023 15:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c7:c4:89:5b:4c:17:c6:90:62:ae:0c:a8:34:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2e04d7ee6961cbeb6a2405141bb1e793b0e794
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efe637173961c85ecb690643902b606577e4d803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e3:60:e9:89:17:2d:7b:c9:8b:20:1d:c2:f9:
af:a6:56:7f:97:97:21:20:fc:dd:8c:a1:38:25:91:
39:2a:c5:41:6f:48:91:a3:47:bf:c5:b6:e9:46:0b:
8c:c0:2c:a7:93:73:d0:23:ab:21:fa:09:51:50:ee:
c7:f5:8e:68:dd:ca:b7:56:83:51:7b:fb:61:37:24:
a3:23:35:82:fa:a2:a1:65:bb:7a:29:42:6b:18:f6:
a7:d7:fb:e4:01:fb:a8:e0:41:8a:ac:f6:bc:72:c3:
40:de:fb:85:47:38:68:9f:ba:7e:8f:f6:6b:f6:88:
0b:60:66:a3:a6:ea:03:45:54:5a:08:01:ef:fc:56:
66:b7:68:74:e8:f5:a1:48:ea:ce:ed:f9:10:cc:b4:
e5:d8:71:06:8c:5f:da:ce:7a:56:a7:e3:d0:4c:32:
9e:e1:2b:34:bf:48:57:6e:ef:da:b0:f0:ac:0f:c5:
26:0e:dd:73:89:d1:fa:19:8c:30:4b:a5:aa:09:e9:
a4:1b:94:13:d2:33:dd:c5:27:5a:4b:71:4f:56:ec:
fd:66:f4:ed:fe:f4:9f:43:c4:26:0a:63:ab:8b:de:
59:4a:51:94:37:4b:c3:e1:77:5d:93:78:5d:fc:a1:
d7:2e:cf:1b:50:7a:6e:10:44:f8:a6:d9:f1:93:f6:
eb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E6:37:17:39:61:C8:5E:CB:69:06:43:90:2B:60:65:77:E4:D8:03
X509v3 Authority Key Identifier:
keyid:CB:2E:04:D7:EE:69:61:CB:EB:6A:24:05:14:1B:B1:E7:93:B0:E7:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy4E1-5pYcvraiQFFBux55Ow55Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d4799f-947f-4b8a-876e-851cb2758775/1/7-Y3FzlhyF7LaQZDkCtgZXfk2AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d4799f-947f-4b8a-876e-851cb2758775/1/yy4E1-5pYcvraiQFFBux55Ow55Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.252.0/22
Signature Algorithm: sha256WithRSAEncryption
80:df:28:60:e7:66:b4:ca:77:1b:11:9d:da:e1:6b:64:11:c0:
e3:60:4f:2a:2e:21:1d:5a:8e:2c:f7:86:d8:3d:eb:52:dd:09:
3d:f2:6c:73:83:67:48:19:c3:8b:6a:35:bb:41:e9:8e:3a:ed:
8c:d7:fa:58:d1:d0:0c:d8:e8:79:b0:51:41:bb:5f:cd:89:b3:
98:d2:11:ed:32:41:df:4a:0a:2e:a3:9e:4b:67:18:1d:f4:14:
70:f4:dd:71:10:36:32:75:07:88:bf:78:c2:e4:7c:49:dd:4c:
ac:37:94:9d:c5:5b:7a:35:fd:c4:bc:46:10:99:f6:91:49:7e:
af:fe:0b:98:70:08:55:70:fc:3d:c8:ef:05:ab:99:1b:bb:d9:
95:2c:92:86:2c:a8:79:a6:59:92:1f:4b:a9:37:ea:5f:1e:bd:
77:5a:8a:3d:0a:4b:fc:59:b9:44:b2:d1:0a:a9:ea:ac:0b:5c:
7b:fd:b9:47:7e:bd:42:03:4f:b1:29:a7:3b:f7:69:a4:6b:b1:
7e:b9:17:3d:15:13:4c:a1:9c:fa:e5:2f:d3:37:ed:44:4e:b9:
ac:0b:c4:50:d2:13:71:e0:a3:0b:ae:29:00:83:91:2e:63:07:
d5:2c:36:66:31:a8:f2:50:c6:57:93:9f:49:78:7b:3c:be:b1:
1a:a2:28:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:31 2024 by rpki-client on console-fra.rpki-client.org