Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/ATeiwGlQd0HrhhVKNBcDIoFK-Dc.roa
File: ATeiwGlQd0HrhhVKNBcDIoFK-Dc.roa (raw, json)
Hash identifier: KSvQ/o7jw7b9a6aQLleLsSue98+beE/pWo0xhUOE9GQ=
Subject key identifier: 01:37:A2:C0:69:50:77:41:EB:86:15:4A:34:17:03:22:81:4A:F8:37
Certificate issuer: /CN=47f29d2bd15e024bb97e72b21242b523dc915181
Certificate serial: 01856FF953C606B29EFCE1BF59FC6E4A613F
Authority key identifier: 47:F2:9D:2B:D1:5E:02:4B:B9:7E:72:B2:12:42:B5:23:DC:91:51:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R_KdK9FeAku5fnKyEkK1I9yRUYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/ATeiwGlQd0HrhhVKNBcDIoFK-Dc.roa
Signing time: Mon 02 Jan 2023 00:54:48 +0000
ROA not before: Mon 02 Jan 2023 00:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.53.108.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:53:c6:06:b2:9e:fc:e1:bf:59:fc:6e:4a:61:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47f29d2bd15e024bb97e72b21242b523dc915181
Validity
Not Before: Jan 2 00:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0137a2c069507741eb86154a34170322814af837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:71:3b:82:31:cc:ea:4f:43:24:6d:32:9e:e1:
34:3e:3a:c2:d8:10:30:c9:12:59:bb:2a:68:8d:f7:
7c:b4:7c:92:ea:6f:f0:fd:a5:6c:7c:a1:90:b4:73:
02:22:46:32:4e:14:cc:0e:4e:34:c3:0e:f9:df:4c:
c9:82:88:86:9b:59:ca:ea:bb:24:1a:31:4b:b3:d2:
cf:ec:40:00:82:8e:9c:90:4d:77:ff:43:3f:c7:13:
43:79:b3:1e:ce:43:c6:cf:43:1f:6b:4f:40:e4:87:
f6:60:f6:cb:9a:cf:aa:56:6b:b6:4d:65:ed:86:43:
1a:c4:74:d6:31:72:6c:07:8a:ee:6e:25:38:9d:c3:
a2:95:18:d7:cf:7c:f8:6e:98:a2:8c:a3:c2:fa:92:
92:0d:50:43:5e:8a:a8:56:1a:2f:39:f7:fc:e0:8e:
57:1a:1a:79:a9:76:91:ff:f5:c5:69:2f:a0:77:47:
99:49:5a:74:ef:22:b2:f2:71:39:fd:fb:81:fb:f9:
83:b2:96:fe:e0:39:43:c2:fb:35:9d:31:5e:54:a0:
c1:4e:b9:1c:84:84:44:e8:a3:f4:57:45:07:0e:e0:
b6:64:78:27:bd:2f:33:2f:8c:74:04:78:3f:02:77:
d3:be:ab:c3:5b:14:da:79:5a:d7:9a:8a:7e:36:94:
df:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:37:A2:C0:69:50:77:41:EB:86:15:4A:34:17:03:22:81:4A:F8:37
X509v3 Authority Key Identifier:
keyid:47:F2:9D:2B:D1:5E:02:4B:B9:7E:72:B2:12:42:B5:23:DC:91:51:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R_KdK9FeAku5fnKyEkK1I9yRUYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/ATeiwGlQd0HrhhVKNBcDIoFK-Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32598-2a95-43c4-9b6a-0166532dac56/1/R_KdK9FeAku5fnKyEkK1I9yRUYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.108.0/22
Signature Algorithm: sha256WithRSAEncryption
93:a9:14:65:73:cf:b0:4e:b6:c3:5b:f6:9e:79:cf:04:2a:b0:
bd:06:04:9c:dc:37:2a:2a:c6:79:b8:28:d3:a8:fb:3e:41:53:
be:4a:5b:2a:96:dd:1f:4c:43:79:f9:a6:d3:70:00:c5:46:0b:
39:4b:6c:91:17:02:5a:cd:47:af:1a:39:94:56:f0:b1:8c:58:
f1:fb:4c:02:ec:32:c1:cf:e3:91:c4:ce:ba:28:52:7c:b9:47:
03:c5:e9:5a:ab:cf:ca:be:b1:5e:e8:60:cc:1d:00:47:ee:90:
37:b5:2a:5f:21:1b:08:db:f7:5d:38:c7:35:a3:cb:e8:9c:2c:
d0:1e:70:08:74:66:f6:1d:b1:6e:4b:25:ab:30:86:ed:f9:f4:
eb:95:9f:28:7c:6f:ea:b6:76:f5:00:2c:06:27:b0:76:d7:48:
4a:ae:5b:f2:af:a5:12:f8:01:35:9f:02:3a:0f:7d:5c:87:d6:
f9:45:6e:21:67:00:da:a9:90:76:dd:d0:95:6e:7a:6b:e3:9e:
d5:1e:a3:2b:4b:d8:fe:e6:22:f5:fc:d3:58:ee:74:89:83:35:
7f:6b:e3:94:82:09:64:2e:d7:6f:e0:4d:2c:1f:20:99:13:0e:
bb:60:4f:80:da:20:2e:e5:63:ef:0a:16:9a:c4:a5:da:5a:03:
d9:26:57:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:50 2024 by rpki-client on console-fra.rpki-client.org