Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/efh9hiKQBR-xxmSAtN99gxV4Vqw.roa
File: efh9hiKQBR-xxmSAtN99gxV4Vqw.roa (raw, json)
Hash identifier: LX72c9OMACiRosExhhCsNZ3QIBmfA4ZKScs2rnnwPK4=
Subject key identifier: 79:F8:7D:86:22:90:05:1F:B1:C6:64:80:B4:DF:7D:83:15:78:56:AC
Certificate issuer: /CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Certificate serial: 01903A440528B1827509514D629024A08A6F
Authority key identifier: 1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/efh9hiKQBR-xxmSAtN99gxV4Vqw.roa
Signing time: Fri 21 Jun 2024 10:07:34 +0000
ROA not before: Fri 21 Jun 2024 10:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197722
IP address blocks: 185.28.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Jun 2024 15:27:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3a:44:05:28:b1:82:75:09:51:4d:62:90:24:a0:8a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Validity
Not Before: Jun 21 10:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79f87d862290051fb1c66480b4df7d83157856ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:37:ef:3a:91:ca:60:40:87:d9:43:10:2a:38:
9d:c9:b9:a0:d3:ed:48:90:f4:10:35:81:36:67:31:
c1:e2:77:3d:fe:80:17:b0:ff:7f:6a:0e:95:c6:51:
37:ef:bb:f4:ab:11:56:1c:c7:b0:07:c9:d9:06:72:
2c:e1:09:7f:19:fe:c0:83:89:ac:f5:f9:74:81:ff:
ae:5b:3f:b8:10:41:ca:8b:4c:27:69:f6:e8:8e:71:
b5:e6:4a:54:eb:2d:c6:c5:dd:cd:49:5a:be:06:64:
87:2e:a3:51:ff:30:03:1d:9f:04:9b:8c:70:9b:88:
b2:0b:2e:35:fd:76:d8:09:aa:f3:35:10:4e:cc:67:
c7:33:b6:56:07:e6:47:7a:92:e0:46:9b:56:17:82:
08:77:ff:60:87:4d:11:97:2f:ed:2e:52:79:10:c2:
bf:0d:d8:1f:5e:0b:4b:9c:44:86:ed:d7:99:fe:90:
e6:31:31:02:23:e3:12:fd:3d:88:d3:9d:1d:24:ab:
05:09:3a:e0:74:6a:07:09:6c:5a:b9:24:aa:8b:50:
f4:b8:3a:bb:81:16:2a:e3:b8:61:73:5e:98:b2:f2:
3b:62:95:d8:74:da:d3:bb:ff:ba:8c:42:55:7c:f9:
17:2d:66:8d:db:f2:4b:c4:27:92:5b:6a:b4:49:b0:
b9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F8:7D:86:22:90:05:1F:B1:C6:64:80:B4:DF:7D:83:15:78:56:AC
X509v3 Authority Key Identifier:
keyid:1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/efh9hiKQBR-xxmSAtN99gxV4Vqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/H5UQYGrZTE98emPlwewmxA-0qog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
53:cd:69:d4:07:ea:6a:22:57:70:78:dc:87:e9:d9:0a:2a:77:
bd:31:d7:19:9b:d9:0e:da:76:27:af:ba:71:32:69:67:5f:85:
0e:58:4d:92:c0:26:e9:ea:be:48:81:96:af:19:7e:94:fa:0a:
5e:f1:c2:6d:a4:03:86:01:58:68:9b:f9:d4:e2:c6:f0:9f:ed:
48:12:5b:d5:2d:1c:1c:d3:1e:23:11:95:11:39:da:c4:2b:b0:
9f:53:c1:66:33:a7:7d:b6:fd:5d:8a:88:08:8c:80:27:e4:f7:
cf:78:dd:1f:00:30:74:82:d9:ae:94:c7:61:25:01:18:16:50:
ae:11:8d:99:a7:23:8a:0b:57:3e:4f:5c:a4:2f:cd:a4:4d:25:
a1:c8:b6:8e:2d:b6:f3:cd:4b:86:02:07:26:9b:45:6c:50:fd:
2a:55:8a:1a:f9:b7:6a:67:2c:5a:26:71:e9:4d:db:0d:cf:27:
d1:df:fc:d1:93:ee:08:72:2c:0a:c8:36:bb:21:29:f7:3a:f5:
ca:58:cc:11:19:d5:8b:95:9a:3f:6a:ac:60:f8:4a:21:85:56:
ee:54:83:c5:55:8d:55:41:25:9a:f4:a8:66:5c:ec:c1:32:6d:
0c:52:62:b7:27:80:d2:f5:ed:d2:a0:e9:20:a4:6e:36:84:20:
82:85:81:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 21:42:13 2024 by rpki-client on console-fra.rpki-client.org