Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/L6b2IRmQP_M2qklNwPbJrP6_w2o.roa
File: L6b2IRmQP_M2qklNwPbJrP6_w2o.roa (raw, json)
Hash identifier: 5aU7WjeO/qZbb9tqn1eGcOB/H2B0FlUSAagC5h1TZlk=
Subject key identifier: 2F:A6:F6:21:19:90:3F:F3:36:AA:49:4D:C0:F6:C9:AC:FE:BF:C3:6A
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 01856FCB8AC324F8DF03B5F468881353C79D
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/L6b2IRmQP_M2qklNwPbJrP6_w2o.roa
Signing time: Mon 02 Jan 2023 00:04:48 +0000
ROA not before: Mon 02 Jan 2023 00:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202227
IP address blocks: 185.177.40.0/24 maxlen: 24
185.177.41.0/24 maxlen: 24
185.232.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 10:39:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8a:c3:24:f8:df:03:b5:f4:68:88:13:53:c7:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Jan 2 00:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fa6f62119903ff336aa494dc0f6c9acfebfc36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ad:41:72:2e:6c:c7:6c:8c:ce:e3:85:1c:fb:
b1:80:66:89:ee:6f:40:6c:da:d8:03:e4:7b:3d:c1:
44:26:65:6e:5b:6b:4a:58:5d:e7:a4:18:f5:08:43:
4c:e8:94:da:c8:ea:1f:1a:86:c0:17:83:0c:38:4d:
fd:8b:83:6e:8b:bc:ca:d3:f3:ec:4d:3d:5f:0b:d3:
a7:ef:4a:bc:ab:5e:36:60:83:b0:9b:db:b6:8e:0a:
b6:35:f8:3a:de:49:0e:4a:e6:f6:48:e7:bd:58:bf:
bf:95:f1:f0:3f:75:9e:e1:49:d2:30:11:84:54:7d:
ff:b9:86:f9:69:df:8d:94:82:73:85:d8:83:1c:6f:
dc:35:ef:66:55:a6:78:bf:58:ce:99:21:22:4c:d7:
72:6e:8f:91:96:1b:27:28:cc:9d:dc:be:91:59:3c:
8f:d7:4a:0a:91:b1:da:80:c3:27:a1:54:31:ac:3a:
fa:90:0e:c0:16:f3:cb:0e:c4:13:e1:0a:04:d7:3b:
2f:6b:56:0c:78:37:0e:25:ff:98:1b:e8:02:32:fd:
0e:78:48:0e:a7:40:d6:68:0c:84:60:40:10:75:6c:
aa:13:2b:8f:0d:b8:e5:7c:f3:1d:f5:06:1d:02:25:
a4:26:91:84:65:0d:5d:b9:e5:36:f0:3d:66:bd:11:
0d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A6:F6:21:19:90:3F:F3:36:AA:49:4D:C0:F6:C9:AC:FE:BF:C3:6A
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/L6b2IRmQP_M2qklNwPbJrP6_w2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.40.0/23
185.232.135.0/24
Signature Algorithm: sha256WithRSAEncryption
54:1c:27:5b:de:93:82:38:a3:4a:41:ca:c9:5d:90:01:ba:99:
d2:5e:51:45:f8:6d:4e:a6:37:14:77:5d:2c:11:0b:46:c9:77:
a3:4c:e5:2c:1d:1b:31:0d:21:e4:0e:97:77:7f:25:7b:37:30:
d3:ed:33:c4:04:e2:69:da:28:b1:7a:59:ec:ff:af:ec:fa:e3:
ae:5f:ab:e2:9a:16:0b:90:47:db:2c:19:84:26:70:7e:f7:c2:
9d:36:a5:04:27:fb:26:20:70:26:07:aa:5f:1d:aa:f5:ba:45:
b6:63:d6:c3:51:21:65:5c:ae:6d:25:7f:84:62:50:e7:e0:68:
a6:ad:28:e9:72:9c:e7:4e:bf:a0:16:b4:e6:7b:57:8e:c0:a4:
9a:5f:9c:e4:ad:34:4e:b6:7d:b0:e5:cb:0b:07:6b:a3:4c:66:
7d:bf:7e:64:68:c3:78:b7:c1:56:bc:02:29:a5:8d:8f:08:0f:
b8:57:52:de:7c:2c:ed:9b:aa:ad:d7:16:00:39:6a:d8:e3:02:
a1:e8:6c:0f:c2:67:18:a5:56:b9:6a:ac:76:3d:8f:15:3e:08:
2e:47:d9:21:a6:24:3d:75:a0:cc:d5:64:81:25:3f:3a:53:58:
52:86:16:bc:ad:ab:a5:56:91:85:11:b1:44:1f:49:a6:d2:2c:
81:9e:24:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org