Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/JWcW1o2jiDobatB44le2OFFOHfw.roa
File: JWcW1o2jiDobatB44le2OFFOHfw.roa (raw, json)
Hash identifier: aB4BoHpF0/RucBGkpgmeabCQCEopZfyWksiRBin0GhU=
Subject key identifier: 25:67:16:D6:8D:A3:88:3A:1B:6A:D0:78:E2:57:B6:38:51:4E:1D:FC
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018571BA34F42FC420F5EF1A4B5C75329AEC
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/JWcW1o2jiDobatB44le2OFFOHfw.roa
Signing time: Mon 02 Jan 2023 09:05:06 +0000
ROA not before: Mon 02 Jan 2023 09:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 185.22.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 16:25:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:34:f4:2f:c4:20:f5:ef:1a:4b:5c:75:32:9a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 2 09:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256716d68da3883a1b6ad078e257b638514e1dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ec:ac:09:a5:8d:2c:b4:8b:83:e4:9e:83:38:
c1:ab:a9:a7:bd:4c:9d:37:23:2e:e3:0f:6a:70:1e:
1d:b1:70:1a:67:ba:f4:e4:28:43:00:29:0e:79:14:
72:4e:cd:47:36:63:c3:f2:52:49:ad:43:b4:6e:8e:
5d:49:bd:6f:1d:1b:5d:cc:89:a0:93:fc:ef:e9:f7:
c5:1d:10:af:ad:14:31:5a:41:ca:12:c7:b5:9c:4d:
1c:02:88:1b:f5:52:ae:55:30:a9:78:e9:a1:dc:14:
79:f8:9a:1b:65:5c:f3:bb:3d:8a:a7:97:7a:5b:f2:
52:df:5b:3e:ad:be:a6:60:95:54:61:76:0b:dd:5c:
45:1e:7b:52:85:4e:e7:2f:39:b6:d2:2e:9e:17:93:
8b:21:50:b5:bb:69:0d:65:8e:44:7d:ff:76:91:59:
45:cc:17:b0:0d:61:18:09:82:f7:35:81:a1:a6:6e:
02:c3:31:dd:ca:31:b9:07:5d:29:10:fd:fb:48:56:
22:f6:8d:7c:14:ba:d2:98:bd:9a:f1:51:c7:d1:9a:
fa:33:37:08:ac:8f:de:31:1e:fa:91:8e:3b:6f:67:
e2:95:ea:95:1c:ec:5b:4d:68:42:89:18:2f:6f:b5:
28:4a:1e:75:d4:3d:77:3e:75:a2:13:b0:d7:b4:23:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:67:16:D6:8D:A3:88:3A:1B:6A:D0:78:E2:57:B6:38:51:4E:1D:FC
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/JWcW1o2jiDobatB44le2OFFOHfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:eb:20:a7:11:1c:b4:13:d8:e0:94:3f:d2:4c:a7:4f:67:45:
1d:10:0d:78:46:f2:a9:b1:f5:de:88:e9:6c:7a:ec:0a:94:a1:
29:eb:24:f1:e2:56:71:86:64:7c:85:6b:88:88:67:09:b1:39:
a6:61:45:15:27:26:e4:a8:e7:9d:6f:f1:0d:ec:37:94:d7:ab:
31:e5:71:51:b2:da:9a:2c:03:86:ad:f1:4f:35:44:af:bc:1a:
d9:d2:e0:fe:40:7e:22:35:62:a6:af:0c:f2:69:2b:c4:80:60:
1c:fe:1e:29:1f:d7:e7:71:f0:66:76:f3:5b:8a:da:9d:80:af:
7f:9a:50:88:d5:b3:c8:0d:08:87:4d:8f:f8:7e:92:f5:1b:c5:
48:4d:ef:bb:48:a0:d1:c4:f4:60:49:54:cd:d8:4d:de:8b:16:
5f:4f:f6:ad:2e:5b:c7:31:e7:d8:7f:24:75:24:e7:1c:42:1d:
a0:b7:67:9d:f1:04:54:0a:ef:74:dd:af:35:c8:c0:03:8a:d2:
e2:04:65:5f:85:29:0e:26:2e:ac:1f:91:9c:0c:21:28:76:74:
6d:f4:5a:85:34:d2:6c:2b:d8:22:ca:7c:cb:6d:fd:c4:27:31:
69:bc:59:57:92:f8:c9:39:a6:5f:48:f6:d7:0b:9b:7e:73:05:
fc:8f:5f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org