Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/a3d8f5-0d3c-42fa-8c69-b9c0df70ad3f/1/t2yT5hOQXTeBoHG_MmXqJrUnG8A.roa
File: t2yT5hOQXTeBoHG_MmXqJrUnG8A.roa (raw, json)
Hash identifier: Qtn0jLUpuzkoYsP59lbiIed8f/3VtcxhQ5GURQTo5Q0=
Subject key identifier: B7:6C:93:E6:13:90:5D:37:81:A0:71:BF:32:65:EA:26:B5:27:1B:C0
Certificate issuer: /CN=a40043b3e13aed397f8932cf5d13ff4f4aafe6ba
Certificate serial: 0187B2B46C569B158B794511792196B2BE9D
Authority key identifier: A4:00:43:B3:E1:3A:ED:39:7F:89:32:CF:5D:13:FF:4F:4A:AF:E6:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pABDs-E67Tl_iTLPXRP_T0qv5ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/a3d8f5-0d3c-42fa-8c69-b9c0df70ad3f/1/t2yT5hOQXTeBoHG_MmXqJrUnG8A.roa
Signing time: Mon 24 Apr 2023 09:59:41 +0000
ROA not before: Mon 24 Apr 2023 09:59:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204285
IP address blocks: 185.254.117.0/24 maxlen: 24
185.254.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:b4:6c:56:9b:15:8b:79:45:11:79:21:96:b2:be:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a40043b3e13aed397f8932cf5d13ff4f4aafe6ba
Validity
Not Before: Apr 24 09:59:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b76c93e613905d3781a071bf3265ea26b5271bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c5:0e:1f:14:77:85:81:48:ab:49:99:87:c5:
fc:07:82:d2:84:57:be:e2:4f:e6:cb:f7:ba:d0:f5:
c8:8c:06:d0:e0:32:6e:99:46:72:ea:21:39:d0:aa:
c7:44:4d:cb:c4:24:80:a5:40:1d:5d:cc:b0:b1:48:
b2:c2:53:4b:9b:52:4e:a0:3e:6c:67:b9:56:57:28:
4c:29:0d:9e:5c:fa:a8:4b:4b:6b:d1:ef:de:62:c8:
e3:8b:9e:73:28:65:9f:b3:d8:02:a2:12:e0:a9:5e:
6b:00:34:9b:27:da:82:a9:19:46:16:e4:31:2a:78:
4d:d5:0a:78:2e:6d:84:d9:b2:b3:e8:96:c0:56:7a:
62:fb:35:fc:39:a3:3c:b9:88:85:86:fa:cd:9c:31:
84:57:77:2d:ab:8a:d6:71:b9:3f:f1:cd:1d:72:57:
e9:80:e2:1c:c5:a3:63:b3:ee:87:78:07:b8:9d:c9:
82:de:55:81:e4:88:16:d9:42:97:73:11:89:92:60:
45:55:f6:68:04:ec:52:5a:13:a6:ed:0d:ef:3b:b4:
de:b6:1c:c3:35:a8:34:fd:35:ba:99:05:0c:5f:1f:
98:1c:0f:a9:63:78:86:b4:ca:f2:6c:45:eb:8d:69:
16:f1:d0:52:2b:6a:47:be:a9:a8:d2:e1:83:e8:4f:
87:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6C:93:E6:13:90:5D:37:81:A0:71:BF:32:65:EA:26:B5:27:1B:C0
X509v3 Authority Key Identifier:
keyid:A4:00:43:B3:E1:3A:ED:39:7F:89:32:CF:5D:13:FF:4F:4A:AF:E6:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pABDs-E67Tl_iTLPXRP_T0qv5ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a3d8f5-0d3c-42fa-8c69-b9c0df70ad3f/1/t2yT5hOQXTeBoHG_MmXqJrUnG8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a3d8f5-0d3c-42fa-8c69-b9c0df70ad3f/1/pABDs-E67Tl_iTLPXRP_T0qv5ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.116.0/23
Signature Algorithm: sha256WithRSAEncryption
46:c5:1c:ac:9c:80:0c:28:0c:79:44:8b:3f:d9:68:27:4c:1d:
b2:30:95:57:5b:41:f4:ff:d2:1e:69:1d:45:23:c2:d9:1b:79:
53:1e:b8:0a:d8:a8:87:2c:c4:e5:b2:b6:e4:9a:00:61:7c:bc:
d5:50:9f:4d:3a:f2:42:9c:8f:29:8e:6e:67:65:21:4e:1d:10:
20:a4:44:0b:d3:ab:51:22:de:3c:bb:4b:c4:a0:d7:9c:cf:fb:
d2:19:75:2c:8e:98:d6:67:c8:7f:c8:71:55:1b:69:ef:0e:53:
09:d8:bb:a7:a0:03:b4:dc:85:04:96:8b:0d:09:9d:61:3c:d8:
14:6c:89:c3:f0:98:01:18:26:30:4b:92:c1:ec:48:0a:80:c0:
30:9d:52:d7:57:a2:49:12:61:2d:6c:8c:b5:bd:39:6f:82:47:
3a:c1:bd:2a:f4:d5:53:66:26:ba:b7:e2:2d:88:ff:50:4b:51:
3d:b1:ef:cc:e6:24:6e:e5:7b:e4:d9:33:18:f7:68:f8:b2:8d:
8c:fa:54:70:8f:e4:40:ec:d7:34:6c:94:3c:5d:c2:70:23:6f:
88:3c:8f:b5:4d:42:f9:4f:62:0f:88:fe:ff:d9:62:46:b5:56:
e5:2b:e7:74:51:a3:2e:52:92:cc:2e:b5:bb:1e:78:0b:12:b7:
0e:15:e9:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:55 2024 by rpki-client on console-fra.rpki-client.org