Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/z5DRLvT4zA_Wt6fR0QL7oRp1eeA.roa
File: z5DRLvT4zA_Wt6fR0QL7oRp1eeA.roa (raw, json)
Hash identifier: NL8ayhsHqhrkHqWidegB5pUKk2i44W0Lc3BVmnwOOGc=
Subject key identifier: CF:90:D1:2E:F4:F8:CC:0F:D6:B7:A7:D1:D1:02:FB:A1:1A:75:79:E0
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 018677EB578B568F2D6C66A2720D6435ED6D
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/z5DRLvT4zA_Wt6fR0QL7oRp1eeA.roa
Signing time: Wed 22 Feb 2023 06:59:17 +0000
ROA not before: Wed 22 Feb 2023 06:59:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49368
IP address blocks: 185.225.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:77:eb:57:8b:56:8f:2d:6c:66:a2:72:0d:64:35:ed:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Feb 22 06:59:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf90d12ef4f8cc0fd6b7a7d1d102fba11a7579e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7a:d1:55:b0:2e:73:d5:82:9f:99:63:25:1f:
80:ec:88:70:8c:76:a1:09:28:05:91:83:c9:11:b4:
fc:fd:5c:67:f7:fa:79:9e:21:d7:f9:94:8d:8f:c1:
fe:87:33:85:b9:9a:7b:21:f4:37:78:f4:61:1a:f8:
bc:06:de:7c:bb:ed:6f:61:ab:a6:d1:17:1d:09:e1:
9d:8c:4d:db:0a:1f:8a:96:97:b7:42:97:d7:42:a5:
c5:89:fc:16:4a:c7:fe:37:71:7b:8a:76:52:44:2d:
9d:8b:dc:1c:d6:23:f0:d7:5e:3f:64:66:29:57:7a:
45:91:21:25:d1:59:e9:a0:1d:dd:ee:cd:30:56:e2:
61:d7:36:ad:61:ea:62:2a:f5:ae:00:15:b4:a2:a9:
12:00:31:a1:27:f1:9a:58:f2:3c:61:59:29:5b:17:
ee:a4:42:e2:ff:fd:40:e9:1b:80:30:26:6d:dd:77:
cc:c4:6b:79:19:39:90:5d:ce:a8:36:10:7c:ff:73:
00:49:17:7f:c5:7e:ab:59:2a:ba:21:db:f6:10:9a:
92:cc:5a:89:3c:7b:da:7f:6a:87:53:80:d9:d0:b2:
e4:dc:df:43:84:0d:88:62:31:2e:0a:29:01:33:62:
04:11:58:da:91:09:64:c7:be:42:92:ef:4a:91:84:
c4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:90:D1:2E:F4:F8:CC:0F:D6:B7:A7:D1:D1:02:FB:A1:1A:75:79:E0
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/z5DRLvT4zA_Wt6fR0QL7oRp1eeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.202.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:38:6e:95:9e:28:6a:a1:cd:62:32:c3:54:0d:10:1e:cf:24:
40:e8:5c:85:2e:fa:a3:a6:e0:3d:35:b2:f4:90:b1:bf:14:74:
fa:36:7d:59:3d:c4:ea:df:5f:ae:ba:f6:aa:84:1e:1c:7f:98:
ef:33:68:30:7d:6a:6c:26:34:ba:57:b8:94:8d:fe:d2:b8:58:
03:0e:da:f7:47:bf:a4:66:41:bb:27:30:ab:e9:8b:44:11:05:
5b:53:cf:d1:7d:8d:50:65:16:f1:cc:f2:23:fc:af:5a:24:ad:
73:e5:30:78:96:05:b4:ea:ef:b1:f7:56:ec:76:70:3f:99:92:
25:34:e7:e2:8d:a0:3c:57:8c:79:bf:3f:e7:6c:df:c1:16:92:
30:bb:66:1e:68:05:91:b9:3f:ca:40:90:80:96:f6:d7:76:ce:
6f:b8:fa:da:6a:a0:5b:66:2c:0c:7c:a4:8e:48:31:88:50:71:
5f:90:1f:18:2f:24:b3:83:bc:c6:dc:11:23:9f:13:8f:67:30:
85:8b:25:94:1d:1b:e6:1a:6a:06:3d:8a:34:4d:dd:ec:17:20:
90:0c:b5:73:94:69:09:b9:c5:91:94:97:55:c5:d8:47:c0:4d:
a1:7e:65:93:88:d0:91:2b:8c:62:8b:95:88:d3:8f:cc:9b:cd:
90:65:65:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:34 2024 by rpki-client on console-fra.rpki-client.org