Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/tQzsaUciuVfgJUy8Hv_C3656JKU.roa
File: tQzsaUciuVfgJUy8Hv_C3656JKU.roa (raw, json)
Hash identifier: QOaoDbiOQnhhYDtmcZGBWW1mnAv8yBNoqqBiQX12o+c=
Subject key identifier: B5:0C:EC:69:47:22:B9:57:E0:25:4C:BC:1E:FF:C2:DF:AE:7A:24:A5
Certificate issuer: /CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Certificate serial: 01903A4404D5DE1326EC1EE061107BB284A7
Authority key identifier: 1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/tQzsaUciuVfgJUy8Hv_C3656JKU.roa
Signing time: Fri 21 Jun 2024 10:07:34 +0000
ROA not before: Fri 21 Jun 2024 10:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29119
IP address blocks: 185.28.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 24 Jun 2024 15:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3a:44:04:d5:de:13:26:ec:1e:e0:61:10:7b:b2:84:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Validity
Not Before: Jun 21 10:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b50cec694722b957e0254cbc1effc2dfae7a24a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e5:41:2e:f8:c5:ad:29:14:52:68:90:8c:af:
be:2c:ee:58:d3:c9:29:84:7c:fa:b5:1f:65:b1:85:
7d:fe:02:be:8f:78:46:be:e5:79:26:a7:01:b3:69:
cb:16:a0:81:a3:e6:81:d2:c8:5e:44:1d:d7:7a:36:
b2:01:ce:eb:a4:2a:c0:e4:d1:3c:27:5d:b6:02:60:
10:bc:60:75:e1:df:41:d2:9d:fc:f3:09:d3:a5:6f:
8f:90:23:1e:32:54:75:7f:12:9c:90:40:63:a5:d2:
07:6e:8a:cd:92:33:59:46:c1:3c:7d:52:38:e5:23:
19:51:09:7b:64:a6:01:c5:ec:4f:dc:98:43:fb:ca:
31:57:a3:79:a0:4d:5b:d9:e5:8f:0c:32:dc:fd:49:
f6:28:ad:4b:a0:ff:54:47:ed:3f:3a:fd:7e:e3:50:
44:e6:d8:ca:66:6c:56:40:55:4f:46:a7:f5:83:fc:
ce:cb:b5:b8:fd:bc:2f:3c:db:2f:c5:fe:9d:f4:9a:
fd:33:28:31:d2:50:34:e6:56:69:9f:51:c5:d0:e8:
9d:66:6e:72:da:7e:64:55:df:04:f0:37:b6:b8:6c:
ae:1c:98:43:fc:12:d8:bc:40:c0:98:34:ef:2e:21:
39:ae:7c:a7:75:74:67:5c:df:fc:3b:5f:21:d5:0d:
98:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0C:EC:69:47:22:B9:57:E0:25:4C:BC:1E:FF:C2:DF:AE:7A:24:A5
X509v3 Authority Key Identifier:
keyid:1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/tQzsaUciuVfgJUy8Hv_C3656JKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/H5UQYGrZTE98emPlwewmxA-0qog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
30:19:d7:3a:3b:db:7c:ac:90:dc:be:c8:f4:38:d2:3f:b9:d4:
8a:d6:08:c1:ea:fc:ee:3a:4e:b5:c8:84:59:92:47:c2:31:66:
29:b3:9e:55:d2:e3:82:bf:de:00:c4:01:d5:c7:82:08:67:a5:
ab:01:f7:74:dc:56:41:8d:0a:c8:79:ad:93:a1:e3:23:36:bc:
b7:fe:cf:b7:c1:3a:80:81:05:0a:6c:ef:2d:e1:df:97:f7:18:
a9:3c:66:cf:69:f9:ac:f9:4a:b2:1c:67:02:eb:5f:7e:8b:08:
7d:5d:74:a4:94:b5:88:95:02:15:2b:b7:00:e0:65:1c:db:86:
c0:fe:f0:a5:41:e0:bf:ef:8f:3a:76:27:76:e7:53:80:a4:4a:
eb:f5:42:7d:58:fc:ba:1e:4e:5b:f4:da:5a:3b:c0:30:87:8b:
82:38:b4:a4:a7:f2:30:bc:4a:d6:af:54:20:6c:9f:45:eb:47:
2b:b4:99:16:fd:64:77:cd:bf:9e:14:3b:b1:3b:1f:b9:c0:68:
6c:11:88:4b:16:52:b2:b1:0c:12:3d:53:bf:14:f0:74:ab:b1:
06:95:47:ad:78:7c:05:49:f8:2b:a3:6a:a5:9d:86:2a:da:78:
b2:b5:5b:d2:d3:d2:b8:d5:13:c7:0a:29:1a:8b:a6:64:7c:bb:
21:fb:93:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 18:51:13 2024 by rpki-client on console-fra.rpki-client.org