Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/eKlbcA2JFDNTCLhruU6_u32rlNE.roa
File: eKlbcA2JFDNTCLhruU6_u32rlNE.roa (raw, json)
Hash identifier: JgJk6M5vXWMbIhjiHuWWUC8ieq1JRmMWetEoCZDrdwA=
Subject key identifier: 78:A9:5B:70:0D:89:14:33:53:08:B8:6B:B9:4E:BF:BB:7D:AB:94:D1
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0185F34CADDD1A330F69A4CE0A8693B64A76
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/eKlbcA2JFDNTCLhruU6_u32rlNE.roa
Signing time: Fri 27 Jan 2023 12:56:06 +0000
ROA not before: Fri 27 Jan 2023 12:56:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 185.125.200.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Jan 2023 18:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:4c:ad:dd:1a:33:0f:69:a4:ce:0a:86:93:b6:4a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jan 27 12:56:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78a95b700d8914335308b86bb94ebfbb7dab94d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:b4:8d:5b:74:0f:4b:cb:7e:f5:82:01:7f:
9b:47:93:25:db:71:33:f2:dc:b2:57:bc:e9:6e:1a:
80:3e:3b:4c:27:d0:5b:78:6a:16:ff:6e:b3:a1:b9:
8a:c4:05:05:4a:a2:86:d2:22:e3:57:b9:c9:78:72:
55:28:3a:ff:c8:d8:cd:a0:0d:a5:08:0c:4e:97:ee:
df:f6:f3:79:59:64:3e:50:cf:42:8f:f0:22:73:49:
59:e8:b8:9c:4b:ac:d3:dd:b1:a5:fd:48:5a:31:0e:
ad:d4:d7:70:68:9c:11:7b:06:71:cc:26:eb:0a:85:
87:f4:29:22:9e:eb:f1:8d:ab:d1:a5:05:0a:05:1c:
93:0d:1c:0a:79:1b:d3:fd:5a:bd:a0:c6:a2:7d:14:
83:a0:fa:f8:30:5a:a8:97:2b:90:29:b2:26:51:42:
68:5e:c6:3d:db:2f:55:55:a0:9e:24:b5:aa:6b:a3:
45:9b:b4:2c:8d:4c:3f:6f:43:62:a7:e4:1b:e3:b1:
29:ba:1b:ac:68:0e:f0:36:fa:3e:d8:1b:06:43:9b:
98:85:a6:6b:ba:b3:97:67:9e:e8:fd:99:14:96:b9:
bd:d2:f4:5e:67:2e:85:cc:56:22:ab:82:f9:aa:91:
5b:b8:56:55:2e:3a:55:4f:61:64:d1:e6:1b:87:02:
ee:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A9:5B:70:0D:89:14:33:53:08:B8:6B:B9:4E:BF:BB:7D:AB:94:D1
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/eKlbcA2JFDNTCLhruU6_u32rlNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.200.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:a9:bc:7a:22:8f:50:8d:aa:65:6f:7a:95:0e:e3:40:ea:c9:
4a:b4:ac:f3:24:9e:cf:e5:63:32:10:fc:30:c4:ff:9a:56:8e:
37:e5:4d:3d:61:37:8f:59:96:95:84:21:2c:06:59:81:10:88:
29:3e:4e:7c:97:75:ef:e8:a6:cb:1c:aa:18:d8:31:19:8b:ff:
75:cd:28:48:9c:a6:a0:89:5d:ff:80:75:ac:a9:f4:6f:6a:c8:
9f:40:4e:cf:f3:f7:9f:ab:35:cc:a4:bc:ce:10:33:e2:a3:69:
52:e3:05:e3:dc:60:85:23:0e:75:77:49:15:66:86:a2:be:19:
e1:46:be:35:3d:17:35:6a:c2:70:c8:7e:b6:ad:c4:b6:44:a1:
ba:04:ce:b2:b3:10:e8:d8:9b:1d:a6:bd:d6:f7:fb:6b:1b:b9:
2f:b0:fa:83:f7:79:24:d7:81:97:e8:8a:54:83:48:51:4e:de:
bc:34:f7:0c:f0:31:20:9a:7a:b8:ff:cf:69:d6:4f:28:17:d7:
4b:ac:15:3e:84:93:22:e8:42:b5:22:03:96:d0:31:63:04:bc:
c8:d9:c5:01:67:2d:77:05:ce:09:b8:1a:a4:bb:38:70:64:f3:
30:bd:d7:14:8c:13:56:91:a6:3a:82:c7:22:c7:88:84:25:1b:
f0:2a:ed:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org