Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/c6ShXaQvEOn4bLqbdA-n0R4o7F4.roa
File: c6ShXaQvEOn4bLqbdA-n0R4o7F4.roa (raw, json)
Hash identifier: VqOSjNN141uEmspWtKFFLQlWFqZpPzjBvqWkgkIFiS4=
Subject key identifier: 73:A4:A1:5D:A4:2F:10:E9:F8:6C:BA:9B:74:0F:A7:D1:1E:28:EC:5E
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0185715E495D140CF48569C352619573AF7A
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/c6ShXaQvEOn4bLqbdA-n0R4o7F4.roa
Signing time: Mon 02 Jan 2023 07:24:42 +0000
ROA not before: Mon 02 Jan 2023 07:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136796
IP address blocks: 185.192.58.0/24 maxlen: 24
185.192.56.0/22 maxlen: 24
185.192.56.0/24 maxlen: 24
185.192.57.0/24 maxlen: 24
185.192.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:49:5d:14:0c:f4:85:69:c3:52:61:95:73:af:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 2 07:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73a4a15da42f10e9f86cba9b740fa7d11e28ec5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:42:f2:30:39:fc:d5:cd:6d:36:28:31:a6:4b:
83:69:f0:b5:d3:e5:68:82:b3:a3:d6:f5:3d:4a:ba:
f4:b7:f2:6a:9b:43:6e:11:17:b1:f4:c4:0a:5a:62:
52:8c:97:92:ee:6a:c4:d6:d4:78:bb:99:3a:9c:28:
3f:ee:9c:7a:28:ff:2f:09:0b:6a:c0:18:75:fc:6f:
de:b9:a0:3e:72:81:f5:db:d2:9d:2d:1b:05:68:b2:
2e:42:3b:10:60:cc:79:22:72:89:7d:f5:f2:59:f2:
fe:10:d2:ca:55:85:5b:ce:af:63:93:76:ca:1c:64:
2d:4c:58:6d:45:56:de:e9:bf:0a:9c:47:ec:ef:bf:
3a:d4:ad:49:58:18:cf:9b:ec:dc:2f:7a:86:bc:42:
75:b3:27:14:dd:64:f3:c9:12:1f:df:d7:5a:32:c3:
28:7c:6b:a5:d4:59:fd:81:1a:67:76:a5:66:59:24:
92:e7:29:33:6a:f2:3b:65:e0:36:c2:d5:ab:af:d8:
27:39:45:a0:b9:53:01:c8:0a:58:e2:fa:ce:da:f6:
c9:89:bd:a7:f9:d5:8a:43:9a:cb:b4:a2:9d:99:77:
67:c0:40:ea:8f:2d:53:f0:2e:37:20:5f:ea:2b:14:
70:29:94:4d:7f:f6:79:c0:6f:45:35:f0:9e:b3:b8:
60:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A4:A1:5D:A4:2F:10:E9:F8:6C:BA:9B:74:0F:A7:D1:1E:28:EC:5E
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/c6ShXaQvEOn4bLqbdA-n0R4o7F4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
34:0e:8a:de:75:60:bd:ed:80:74:08:04:2b:99:33:20:db:6b:
1f:b7:09:96:50:24:b4:14:d5:ff:16:5e:26:36:78:3d:e6:dd:
eb:36:b2:fb:b1:0d:5a:17:d3:58:ac:a9:6a:c7:d5:18:8e:f4:
d2:dc:8b:17:61:59:11:30:05:38:8e:00:8f:9a:90:4e:fb:5e:
ea:15:09:bb:ea:a4:c8:dc:02:b1:d5:98:de:a1:fc:ab:61:cf:
00:d3:63:9f:de:f4:82:ea:aa:12:0e:24:3a:30:91:dc:a0:e3:
78:93:1a:bd:3a:e7:52:f4:b6:39:86:b5:74:f8:1b:3d:b2:7d:
84:0e:96:d3:2b:d7:8d:3e:26:02:9b:38:ee:48:e6:00:78:89:
2b:7c:d7:9f:20:8a:66:5e:b9:80:90:38:ab:e7:d9:b7:e5:1b:
fe:72:aa:1f:df:be:41:6e:77:30:86:fa:53:67:2c:b3:ba:6b:
d4:30:f9:f9:1d:bd:71:f1:98:51:ad:1b:f3:98:94:92:e7:1d:
95:f3:d0:5b:17:75:b9:12:b0:20:cf:d6:67:01:27:c2:51:e5:
fa:2b:c9:07:f8:27:a9:12:6e:3d:dd:34:f1:ce:a5:75:eb:5e:
dc:72:96:9b:f9:5a:39:66:5b:0e:08:e8:78:78:a3:ad:6b:e2:
e5:97:c1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:38 2024 by rpki-client on console-ams.rpki-client.org