Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1fW1CzCpJJUe8y-pZi49TYBxCkE.roa
File: 1fW1CzCpJJUe8y-pZi49TYBxCkE.roa (raw, json)
Hash identifier: tuUKOzTqJAPsBNQyHoU5UfyFbPDWhf9LlgmafA8F2i8=
Subject key identifier: D5:F5:B5:0B:30:A9:24:95:1E:F3:2F:A9:66:2E:3D:4D:80:71:0A:41
Certificate issuer: /CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Certificate serial: 01856D386D8882CED9D2ED8ADE7A33884027
Authority key identifier: 1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1fW1CzCpJJUe8y-pZi49TYBxCkE.roa
Signing time: Sun 01 Jan 2023 12:04:52 +0000
ROA not before: Sun 01 Jan 2023 12:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202790
IP address blocks: 185.152.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 07:35:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:6d:88:82:ce:d9:d2:ed:8a:de:7a:33:88:40:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Validity
Not Before: Jan 1 12:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5f5b50b30a924951ef32fa9662e3d4d80710a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7e:fb:a5:77:2b:17:d0:81:c9:2b:7b:1e:e3:
d5:e5:13:d9:75:1a:e7:69:af:d2:4d:2a:79:88:8b:
81:db:95:77:f3:5e:08:f9:1e:99:8d:b1:1a:43:f9:
b7:e4:f1:89:49:97:e7:c2:91:7a:dc:ee:8d:98:b7:
20:60:27:4e:15:98:59:1d:f9:e4:34:42:ac:fc:b5:
13:40:83:19:68:6b:79:57:fc:10:bd:3a:22:fa:c0:
1d:ee:92:3d:be:e7:61:45:b2:eb:e6:0e:36:84:13:
d5:c7:b5:69:00:79:c6:fb:00:31:2f:fd:dd:8c:f1:
74:01:90:87:87:95:a1:b8:d0:44:38:63:49:a0:a6:
59:bf:e3:c9:e4:92:ef:4d:3f:14:1f:27:b4:aa:a4:
37:35:8f:c4:87:6d:00:e8:c2:12:28:24:5a:e4:73:
1e:13:7c:cf:02:22:05:99:c0:2d:a9:18:1f:bf:2a:
a6:8b:54:a9:4b:a0:0e:eb:ca:73:2e:bf:1d:c7:22:
d8:9b:62:0d:0c:64:8b:a2:6f:c2:ba:e9:38:07:7f:
ef:80:96:69:d5:30:da:83:e2:b5:b5:14:e9:e6:89:
8f:28:03:52:f2:4e:ae:8d:0c:27:28:3b:48:e9:26:
59:6f:20:4a:0f:b3:29:35:c6:10:7e:e0:fb:4b:4f:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F5:B5:0B:30:A9:24:95:1E:F3:2F:A9:66:2E:3D:4D:80:71:0A:41
X509v3 Authority Key Identifier:
keyid:1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1fW1CzCpJJUe8y-pZi49TYBxCkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/Hg5NLb3phv3CW_O_dWN4UtqHq_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.124.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:f9:9e:d0:f2:39:a5:78:44:2d:b8:13:25:bb:f9:29:a3:61:
dd:f3:67:13:ef:21:32:4b:58:f2:7e:76:06:04:73:68:dd:1e:
b2:ba:39:08:a9:eb:f1:8d:64:5b:70:03:c2:12:d3:db:16:51:
70:52:ec:2c:86:d9:75:ab:9d:64:bc:d8:6b:bf:1d:36:ff:e3:
7f:f9:18:05:b0:52:c1:c7:f0:b3:32:e1:a6:d5:a4:67:49:b3:
69:51:2b:a8:67:b1:42:bd:ac:8f:f5:c5:2c:6d:9e:8d:cb:db:
15:de:69:c9:d5:8e:98:60:d9:f6:a9:22:91:88:ec:ea:35:05:
c0:4f:a7:f4:bc:e3:3d:47:5f:48:0c:a0:ea:69:6a:c7:ad:aa:
85:9c:1f:22:94:e3:0f:ec:9b:d7:73:67:27:ba:c9:bc:b2:ca:
03:ea:5a:d9:e5:f4:bc:98:17:5b:75:04:36:e1:5f:99:1f:d9:
8f:fe:01:24:24:e4:5b:a6:5e:2a:c9:a9:9e:72:3b:71:f4:92:
79:9d:7d:5c:f3:7b:1a:45:45:6a:2e:0d:a4:b8:e7:a9:30:8b:
c9:ad:2d:0b:6e:14:8e:21:8f:19:2e:67:2c:07:e2:3c:24:a8:
a0:47:2c:f0:67:5d:74:5a:d0:15:9a:45:6b:1d:56:2a:99:72:
87:91:f8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org