Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/_CTRTzaAGR19Kv_P_WZBhlfQaL8.roa
File: _CTRTzaAGR19Kv_P_WZBhlfQaL8.roa (raw, json)
Hash identifier: cs/rRl9CVJekQlw55xPrXXr63H/xIa0ZiUx+aYL8xXg=
Subject key identifier: FC:24:D1:4F:36:80:19:1D:7D:2A:FF:CF:FD:66:41:86:57:D0:68:BF
Certificate issuer: /CN=571456649692e60566de008e126bbdd1d2ebed45
Certificate serial: 018BC9E3E4AD980809B423795D957AC62CD9
Authority key identifier: 57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/_CTRTzaAGR19Kv_P_WZBhlfQaL8.roa
Signing time: Mon 13 Nov 2023 18:13:57 +0000
ROA not before: Mon 13 Nov 2023 18:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59853
IP address blocks: 185.68.228.0/23 maxlen: 23
185.68.230.0/23 maxlen: 23
178.216.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:e3:e4:ad:98:08:09:b4:23:79:5d:95:7a:c6:2c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571456649692e60566de008e126bbdd1d2ebed45
Validity
Not Before: Nov 13 18:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc24d14f3680191d7d2affcffd66418657d068bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:10:2e:e8:b4:a4:d3:fc:9e:7f:97:f4:13:2d:
0b:e6:c8:0c:92:6c:a0:5e:00:72:dd:4d:e9:5b:a8:
5f:c6:29:aa:34:f3:38:88:73:94:99:f4:b2:33:64:
99:5b:bd:0b:3e:b0:d8:e1:87:21:35:5f:bd:80:c1:
5d:e7:c6:e1:e0:4b:1d:13:1a:03:b8:ba:bd:ee:19:
a1:03:b0:e9:55:7d:32:67:80:3b:db:a4:43:a8:c4:
a5:c6:3e:3c:e3:56:b1:b0:0e:6f:d8:2f:78:5e:a1:
4a:38:b6:3e:44:6d:37:62:00:f8:8d:8f:1e:94:46:
8a:61:c6:d9:ec:cb:96:26:38:10:56:c6:53:de:47:
38:66:82:63:a9:93:41:0c:73:4a:14:5e:09:d4:5f:
39:ff:e2:77:75:c1:3b:34:fc:e4:e5:df:35:d7:ab:
52:d5:07:51:bd:20:e3:57:ed:4c:55:5a:b9:8c:c6:
f4:2f:7d:2d:0a:ee:8e:90:98:f0:c6:8a:92:4a:eb:
2b:73:eb:bd:62:92:78:e1:61:3d:2d:d3:43:d0:d3:
6d:f5:7c:aa:03:14:4f:b9:12:a7:a6:c1:0e:dd:e3:
2e:a8:fc:87:0a:4e:bf:66:54:6f:9d:e0:f5:c0:bb:
80:93:1f:06:d5:db:1c:d5:b7:fb:1f:f2:e4:ab:de:
f3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:24:D1:4F:36:80:19:1D:7D:2A:FF:CF:FD:66:41:86:57:D0:68:BF
X509v3 Authority Key Identifier:
keyid:57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/_CTRTzaAGR19Kv_P_WZBhlfQaL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/VxRWZJaS5gVm3gCOEmu90dLr7UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.246.0/24
185.68.228.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:01:4f:c3:e8:0c:0b:b9:18:87:26:d0:e9:dd:ad:a1:7e:e9:
99:81:49:23:2b:fe:bb:65:95:77:a6:f8:ac:ef:25:e5:20:b3:
5b:28:ae:e0:40:e1:5e:2b:45:61:5d:f5:b6:ec:73:a2:98:86:
4f:45:c0:7d:28:d4:d3:8d:e1:8a:cb:e9:76:8a:2c:10:94:3c:
43:83:ab:fb:54:d6:a1:2c:46:de:2c:fe:c3:e0:2b:cb:98:9f:
71:6c:25:ae:e3:13:de:f0:b6:0b:a4:11:c9:a1:2b:1a:4d:3f:
44:76:ba:5f:40:91:ae:70:36:1e:4d:12:1f:89:91:ae:df:5b:
f5:c5:2b:c0:14:25:a4:59:60:59:e1:82:2c:6f:88:11:e2:7a:
43:ef:57:c3:d3:64:95:b3:9c:f2:7e:7a:ff:c5:f3:49:4a:f3:
4f:40:f3:4b:d6:91:9c:bf:fe:43:92:f4:f4:24:f0:60:3d:b4:
af:9e:86:be:8f:6c:74:e9:89:dc:37:f8:ee:78:51:aa:76:0b:
98:28:33:6b:6b:55:dd:c1:c9:28:9f:91:28:bf:09:12:2d:3d:
c7:1a:50:5c:06:3d:5e:31:04:a3:ba:05:3f:bc:c8:cd:4b:e1:
ef:af:8f:6c:1e:a3:36:aa:7f:21:e7:38:e1:8d:e9:d5:65:93:
eb:1a:2f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:16 2024 by rpki-client on console-fra.rpki-client.org