Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/2nB2EbNQwmITvt7YdjaElU6A2Dk.roa
File: 2nB2EbNQwmITvt7YdjaElU6A2Dk.roa (raw, json)
Hash identifier: BLNCANyJATmfARDcr2RUl8ZnQvutIk4+H9NIOm0QdtQ=
Subject key identifier: DA:70:76:11:B3:50:C2:62:13:BE:DE:D8:76:36:84:95:4E:80:D8:39
Certificate issuer: /CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Certificate serial: 0187099BA5E7A6AE55756330961D321AC442
Authority key identifier: 53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/2nB2EbNQwmITvt7YdjaElU6A2Dk.roa
Signing time: Wed 22 Mar 2023 13:56:48 +0000
ROA not before: Wed 22 Mar 2023 13:56:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58051
IP address blocks: 185.221.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:09:9b:a5:e7:a6:ae:55:75:63:30:96:1d:32:1a:c4:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Validity
Not Before: Mar 22 13:56:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da707611b350c26213beded8763684954e80d839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:78:38:4b:7d:ce:51:ed:c3:75:d6:65:94:09:
a1:51:9c:29:29:b5:d5:6f:94:f3:e0:2d:12:bc:8e:
4c:e9:ea:ab:6a:a8:e8:09:41:3b:1e:22:c6:3f:77:
74:26:8b:b7:9f:2e:fe:d7:b2:b5:4b:00:db:75:48:
2b:a0:ac:c3:61:27:1a:73:f5:8c:a8:12:25:a0:28:
a0:25:86:75:02:f9:e7:cd:d9:2e:04:5f:34:3c:50:
5b:28:fa:7f:08:4d:06:3c:71:85:c4:26:bc:47:85:
43:c3:76:ee:32:e2:9a:bc:7c:1d:0c:ad:74:91:b7:
73:d9:8a:58:d2:a8:a0:cb:1c:92:1b:53:a3:e8:60:
ad:dc:9b:58:66:70:91:f5:a9:26:d1:cb:4d:08:7d:
68:6f:c4:75:e9:21:49:0c:60:ec:b9:0b:2a:9a:e0:
58:c5:c7:42:23:e6:af:01:84:91:65:67:46:ff:89:
81:e2:69:93:04:3d:13:08:db:05:6d:7b:eb:ed:11:
26:36:00:87:08:61:0f:fa:2a:b5:39:73:bc:b5:51:
75:d1:d5:02:0f:5e:57:2c:5e:c1:e3:01:01:94:8a:
82:33:35:59:49:5b:72:c7:cb:bc:5c:30:e8:b1:8b:
d8:33:28:3c:35:75:1b:fd:27:50:a4:fc:7f:e3:86:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:70:76:11:B3:50:C2:62:13:BE:DE:D8:76:36:84:95:4E:80:D8:39
X509v3 Authority Key Identifier:
keyid:53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/2nB2EbNQwmITvt7YdjaElU6A2Dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.63.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d8:77:96:e2:77:3f:db:4c:f6:ba:81:99:5e:9e:94:02:9a:
4e:d1:41:92:2d:b8:d4:31:e0:03:f5:78:30:49:65:19:79:7c:
7c:82:ba:e7:69:45:4e:7c:75:f1:a5:22:1d:e4:ea:cd:32:9b:
24:59:99:ee:7f:d8:fa:a6:b2:6f:37:fb:28:ea:74:1b:8a:c8:
38:1d:bb:d3:71:c5:d6:16:2b:d6:f8:27:6e:f5:8b:67:cb:52:
05:7b:a9:fc:69:8c:e3:49:5c:5f:88:e1:ed:e7:aa:8c:f2:e4:
d9:08:b7:b8:4e:7b:97:84:e8:44:f9:1c:f0:7e:a5:c2:3d:de:
af:19:48:48:0c:1a:36:24:4a:cf:c8:de:89:f6:ec:18:a9:f8:
b8:06:ab:2d:9f:69:15:ba:ac:0a:d8:9a:99:7f:01:4f:4e:62:
01:df:b6:2e:a2:93:27:99:78:38:34:3a:6b:0a:2d:78:58:4c:
40:12:87:2e:f1:5c:59:49:bd:4d:15:8b:a9:b7:0d:17:d4:d1:
50:99:42:57:59:30:39:ca:27:bb:b8:19:97:af:7a:df:71:30:
69:93:69:c7:19:3f:f8:36:d1:14:b0:4d:f8:18:a5:c2:90:5c:
d0:fd:ab:6b:f6:6d:dd:21:80:4f:1b:7c:ba:54:10:d6:57:60:
24:53:55:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:47 2024 by rpki-client on console-ams.rpki-client.org