Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/R4oxNZHuE0k52ZIBD6adu5sW3-Y.roa
File: R4oxNZHuE0k52ZIBD6adu5sW3-Y.roa (raw, json)
Hash identifier: RTV+1pLSMmJh2Ihkz6MiPiWy4TCLVBdWwuCXczX7E3o=
Subject key identifier: 47:8A:31:35:91:EE:13:49:39:D9:92:01:0F:A6:9D:BB:9B:16:DF:E6
Certificate issuer: /CN=26d38293f669db48b6d0bd1036adfdef6bd3d375
Certificate serial: 018CC2DAB40AD841DB40865F78653EB54932
Authority key identifier: 26:D3:82:93:F6:69:DB:48:B6:D0:BD:10:36:AD:FD:EF:6B:D3:D3:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JtOCk_Zp20i20L0QNq3972vT03U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/R4oxNZHuE0k52ZIBD6adu5sW3-Y.roa
Signing time: Mon 01 Jan 2024 02:29:21 +0000
ROA not before: Mon 01 Jan 2024 02:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49956
IP address blocks: 185.163.8.0/22 maxlen: 22
185.114.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 Jan 2024 12:37:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:b4:0a:d8:41:db:40:86:5f:78:65:3e:b5:49:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26d38293f669db48b6d0bd1036adfdef6bd3d375
Validity
Not Before: Jan 1 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=478a313591ee134939d992010fa69dbb9b16dfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:17:af:50:d3:05:28:c1:d2:3b:eb:e0:59:ae:
68:5d:01:c1:a2:37:03:69:fe:e7:74:5a:21:b2:e8:
16:aa:9c:2d:7f:29:40:5e:ce:da:65:bd:ad:58:54:
e0:4c:c4:97:93:5e:f9:82:a5:a5:af:13:b8:77:81:
54:8e:06:cd:8b:31:52:5a:07:f7:5d:c2:5e:fa:59:
ee:e5:26:04:3b:87:c8:9f:82:6c:14:0a:b5:fd:37:
4a:d4:61:ca:c3:d3:29:7f:1d:aa:45:af:05:7e:a8:
0a:96:f8:7e:35:ff:fd:b4:d4:35:57:9e:e3:a4:82:
f6:d0:64:60:12:48:98:4f:36:68:32:5e:d4:5c:a9:
29:25:14:fc:56:d3:3f:bd:4d:3b:00:66:44:e8:c6:
eb:80:40:8c:c6:7f:43:3a:81:6f:75:9d:b9:11:bb:
df:6f:e6:e9:cd:80:b3:11:67:70:e6:29:49:8e:51:
ff:1d:94:c9:38:db:70:9a:ad:c2:2a:c7:3a:64:77:
32:3f:ca:71:c9:3a:7a:f4:24:24:54:ff:ac:bf:89:
73:50:2f:9b:e3:20:3c:d0:df:d8:c2:69:52:04:93:
77:5a:3d:11:b7:c6:91:14:49:28:21:51:e5:09:10:
4c:1e:71:be:99:84:3a:ff:a3:a8:82:c7:d0:c4:c0:
ff:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8A:31:35:91:EE:13:49:39:D9:92:01:0F:A6:9D:BB:9B:16:DF:E6
X509v3 Authority Key Identifier:
keyid:26:D3:82:93:F6:69:DB:48:B6:D0:BD:10:36:AD:FD:EF:6B:D3:D3:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JtOCk_Zp20i20L0QNq3972vT03U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/R4oxNZHuE0k52ZIBD6adu5sW3-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07cc25-8597-430b-bc52-448b9b95b09e/1/JtOCk_Zp20i20L0QNq3972vT03U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.168.0/22
185.163.8.0/22
Signature Algorithm: sha256WithRSAEncryption
64:2b:a6:08:e0:dd:9d:38:64:d0:bb:2e:7e:d9:cb:ad:5b:d6:
5c:ff:71:d0:a6:ab:48:cd:3f:cd:4e:fd:fa:67:73:3c:13:b3:
7c:80:1c:98:11:b2:2d:55:35:26:ad:4d:e3:4e:7a:54:71:7e:
a8:a2:97:c9:f8:53:be:55:ea:a0:e1:ec:31:1b:eb:31:63:0e:
75:02:4d:d3:aa:80:c5:95:b7:54:29:b6:4e:ec:b6:9f:4d:40:
9a:a3:39:82:7d:9b:39:1e:4b:b8:a2:32:f3:96:9d:34:85:ad:
e8:a2:e7:b4:c0:20:c6:41:7b:2b:a9:5f:c6:17:c4:75:64:e7:
7c:87:cf:58:4c:cb:06:c2:ad:4b:2e:65:91:3d:c3:cc:ed:d3:
b3:06:b1:75:1c:32:cc:b1:bd:4c:8c:27:a2:47:2b:26:4d:8b:
e1:63:f1:5d:e3:b8:63:ff:c8:e3:6f:7b:ad:ab:f6:f0:82:43:
9f:d6:7f:f4:25:65:a2:ad:50:03:b1:a1:29:c8:ff:a0:91:56:
70:3d:a8:57:10:f7:9a:53:90:f7:6c:9e:64:2f:a1:37:c4:3e:
ce:31:30:9b:2f:30:d0:01:cf:eb:c8:14:df:b5:0b:24:03:d3:
29:47:3b:5c:56:51:5b:80:5a:79:d7:28:93:13:2c:b8:8d:db:
11:1a:68:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org