Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/eRdxXImmEyIo4DsAR99MbMlwM6k.roa
File: eRdxXImmEyIo4DsAR99MbMlwM6k.roa (raw, json)
Hash identifier: GqGxHajKgJTyfSkFEl71A6H/lTZOHVuPxFL14GEaTl4=
Subject key identifier: 79:17:71:5C:89:A6:13:22:28:E0:3B:00:47:DF:4C:6C:C9:70:33:A9
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 018A6546FDDCB233743EBED1EF87DE1A446B
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/eRdxXImmEyIo4DsAR99MbMlwM6k.roa
Signing time: Tue 05 Sep 2023 12:17:45 +0000
ROA not before: Tue 05 Sep 2023 12:17:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 185.171.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:46:fd:dc:b2:33:74:3e:be:d1:ef:87:de:1a:44:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: Sep 5 12:17:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7917715c89a6132228e03b0047df4c6cc97033a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2e:ca:61:5b:3d:24:ca:b4:89:b6:e4:a0:21:
b7:03:00:ae:6d:27:ab:43:e2:03:e2:f5:fd:0d:ef:
9e:f8:f9:71:86:6f:f4:e1:64:d5:f3:cb:68:04:07:
cf:9c:f9:02:12:68:fe:23:b1:1f:8d:44:59:9c:da:
b7:16:4d:5a:30:e4:31:60:8a:3e:01:26:5c:e4:99:
2d:e0:ff:ad:a5:8a:d8:ec:63:ab:30:b3:8f:94:7e:
d4:b0:2e:b0:07:e2:82:c3:d0:79:b6:6b:c1:41:e0:
f5:70:63:d7:73:9f:05:dc:2a:b4:69:e4:b7:31:d3:
53:db:21:9d:4d:8a:8d:06:e5:4d:c1:57:2d:81:f1:
3f:17:c8:5d:49:6a:80:2a:d7:ee:60:c7:18:61:f7:
91:76:af:97:fd:46:a6:41:04:8c:ca:18:cf:d3:d9:
39:4b:f0:c9:ec:3e:53:7e:6e:6d:ca:fe:df:6f:de:
21:ff:ba:da:2a:59:8a:8d:e4:b5:8d:f2:bc:d4:e0:
45:87:bf:a4:da:08:5a:07:86:86:4b:63:63:61:bb:
0f:c5:58:c5:30:f2:af:2b:5a:4a:86:96:13:c6:3e:
6a:a8:51:01:21:68:39:cd:2c:af:03:79:e9:7b:af:
9a:de:38:a5:64:54:53:5b:bc:56:24:03:93:ba:97:
9d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:17:71:5C:89:A6:13:22:28:E0:3B:00:47:DF:4C:6C:C9:70:33:A9
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/eRdxXImmEyIo4DsAR99MbMlwM6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:a3:29:02:d7:61:b0:e4:7c:7e:7d:52:4d:47:5e:5b:6a:bb:
89:6b:a0:37:45:b4:ad:07:92:e9:67:c1:42:15:e6:ea:0c:38:
f0:67:01:b5:21:d0:f4:e6:15:1f:16:d4:d4:ef:61:0e:d7:dd:
c1:95:6d:69:71:fa:57:e4:d7:ae:7d:d8:6b:76:ce:e8:4a:16:
fe:d3:b4:25:5f:ec:4f:41:9a:49:b6:f1:85:6a:6a:d7:6d:02:
6a:97:fd:bf:3f:ad:d4:33:b8:bf:35:23:2c:66:43:f9:dd:84:
1d:64:29:09:17:d1:b5:32:cd:ab:09:32:7e:9c:5a:04:3c:a7:
d8:75:c3:7d:a0:49:34:a2:87:cb:80:8c:3e:24:18:b2:45:58:
82:a5:eb:da:99:e3:8f:84:c3:c8:25:02:fb:7c:4a:36:c7:53:
84:4d:36:c1:e7:94:ea:a5:7a:6f:f1:38:fc:46:b7:f6:ed:4c:
0a:65:1f:d3:f9:c1:f9:b0:1b:d9:ef:af:81:9f:34:71:0d:8f:
b1:31:65:56:5b:47:5a:d5:10:14:b6:cd:c1:31:7e:44:64:b0:
37:7d:33:b2:a3:1c:96:eb:e8:46:d0:bb:01:23:08:fe:b5:88:
1e:a8:9f:5d:be:8c:b6:91:89:1a:5f:33:65:bb:e6:dc:e5:a2:
c5:54:e0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org