Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/d-XfuSfPtZH1gMSZgu8QonYmJFg.roa
File: d-XfuSfPtZH1gMSZgu8QonYmJFg.roa (raw, json)
Hash identifier: H48qkkkmHECxM6XgcW2tG6BQzER4xJswd02iTTD2LLc=
Subject key identifier: 77:E5:DF:B9:27:CF:B5:91:F5:80:C4:99:82:EF:10:A2:76:26:24:58
Certificate issuer: /CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Certificate serial: 018570C2AFB4245AA62E12E2FE4E6D8CDB51
Authority key identifier: A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/d-XfuSfPtZH1gMSZgu8QonYmJFg.roa
Signing time: Mon 02 Jan 2023 04:34:45 +0000
ROA not before: Mon 02 Jan 2023 04:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15704
IP address blocks: 185.111.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:af:b4:24:5a:a6:2e:12:e2:fe:4e:6d:8c:db:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Validity
Not Before: Jan 2 04:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77e5dfb927cfb591f580c49982ef10a276262458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:36:11:d9:82:3b:81:53:cc:38:11:d0:89:d3:
05:38:6e:40:30:8d:ba:5d:99:69:ce:e6:ff:24:f5:
2a:ca:36:87:82:c3:ad:6d:55:aa:c9:6c:46:38:64:
91:ad:8f:40:ec:a0:ad:11:9a:16:43:fc:2b:46:b5:
dd:9a:3b:2b:49:ea:47:e7:be:b2:57:46:98:5f:d1:
82:f9:67:83:5c:16:91:c6:74:d6:74:17:39:60:02:
df:e8:45:0d:4c:ed:b9:82:64:b6:36:24:6d:df:e8:
87:b2:23:03:74:25:0d:14:bf:65:51:36:ae:d1:b4:
14:42:e2:55:7d:6e:5f:4b:c7:c3:73:86:63:2c:9f:
52:5c:13:d7:a4:9d:32:3c:aa:b6:ed:b9:87:19:e8:
3a:45:6f:b5:5f:ba:63:64:8b:59:75:10:55:da:95:
c3:04:4c:fd:24:e7:e0:e0:da:24:95:c1:d0:8e:fe:
9c:e1:36:38:6c:98:db:4c:ce:46:5e:b5:b1:25:89:
cc:d6:79:0d:63:96:e2:31:c1:68:40:ef:3f:49:91:
d1:7c:7f:78:0e:70:7d:f2:e5:f6:b6:73:66:92:0e:
68:79:e3:76:b5:c0:3e:67:82:b8:1d:92:bd:b5:41:
85:e4:d9:89:9c:b1:8d:63:86:00:63:2f:07:d0:4f:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E5:DF:B9:27:CF:B5:91:F5:80:C4:99:82:EF:10:A2:76:26:24:58
X509v3 Authority Key Identifier:
keyid:A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/d-XfuSfPtZH1gMSZgu8QonYmJFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/qOdYAufvuGU-OvWcvxvAZTi8pnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.252.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:1b:21:60:fb:98:f5:d9:56:5e:19:3b:4a:87:f2:8a:c1:2a:
53:0c:d0:eb:1f:8f:49:2d:60:83:3a:10:cf:7c:d1:6e:53:32:
5b:ae:a5:66:be:57:1f:e3:bd:48:9f:45:93:97:04:39:d1:fc:
85:32:14:c5:70:d3:82:b9:0d:a6:fb:7c:70:a3:52:4f:20:75:
66:dd:7a:f0:f9:25:4d:de:0a:93:31:bf:8f:9f:d8:db:fc:40:
c3:ca:e0:25:cc:28:f9:78:27:04:7d:58:6d:0b:9a:e8:2d:6f:
50:ab:66:41:9b:05:1d:22:9e:c2:6a:8a:00:9b:91:ae:09:d5:
84:27:70:64:10:de:84:65:2f:af:b8:f2:bf:c4:87:31:88:b3:
f9:88:73:47:66:44:b0:7b:61:e2:b0:8a:e2:f3:98:f2:92:61:
01:51:d0:d0:0f:fc:e4:e4:53:e5:e3:30:22:4a:e3:ad:70:d1:
98:f6:a9:fb:c3:67:fa:cb:14:5c:6b:64:aa:01:e0:2d:3e:71:
8a:49:b0:1f:67:1c:2c:e4:6c:bf:05:a3:e5:d8:53:ca:82:c7:
b9:64:09:40:d6:28:f2:45:70:ed:62:a7:ff:d9:6b:d8:d0:ec:
b5:5c:93:a2:0d:76:a2:a3:1f:6c:b5:b0:df:1a:f2:53:c3:0e:
08:4f:6a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:23 2024 by rpki-client on console-fra.rpki-client.org