Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/_gTzd3hpDkp5-dHAeqpP-X1qzdY.roa
File: _gTzd3hpDkp5-dHAeqpP-X1qzdY.roa (raw, json)
Hash identifier: MtPXKhGA8fXagTy70qldiswPgFMcY3dk/JIYoUPf10k=
Subject key identifier: FE:04:F3:77:78:69:0E:4A:79:F9:D1:C0:7A:AA:4F:F9:7D:6A:CD:D6
Certificate issuer: /CN=519e97470c63fda14c3265eb741a70e3a8b69aff
Certificate serial: 01856DCB035232E2597D8171EE2229A5742E
Authority key identifier: 51:9E:97:47:0C:63:FD:A1:4C:32:65:EB:74:1A:70:E3:A8:B6:9A:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UZ6XRwxj_aFMMmXrdBpw46i2mv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/_gTzd3hpDkp5-dHAeqpP-X1qzdY.roa
Signing time: Sun 01 Jan 2023 14:44:59 +0000
ROA not before: Sun 01 Jan 2023 14:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57151
IP address blocks: 185.1.142.0/24 maxlen: 24
2001:7f8:dd::/48 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:cb:03:52:32:e2:59:7d:81:71:ee:22:29:a5:74:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=519e97470c63fda14c3265eb741a70e3a8b69aff
Validity
Not Before: Jan 1 14:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe04f37778690e4a79f9d1c07aaa4ff97d6acdd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6e:2c:0e:e9:d4:98:23:67:62:35:a8:df:f3:
07:02:87:03:70:15:b8:07:8a:18:e7:29:c8:6b:ca:
5f:0d:48:4a:5d:8a:e2:b5:27:9a:eb:a3:ae:42:9d:
f7:35:80:ad:b3:d0:82:53:fb:c7:a9:93:cd:84:a4:
31:1f:c0:12:c3:47:ec:d5:8e:3d:4e:18:13:c6:1c:
29:a7:62:82:58:aa:5e:a8:59:fc:3c:cb:55:e7:73:
74:4e:61:5a:eb:5e:c1:eb:03:fd:c8:19:c0:c1:18:
19:b7:71:96:4f:26:64:ee:cb:46:4c:d8:1d:8e:a3:
36:8c:0e:f6:4f:4f:ca:2b:04:9f:81:d9:fe:7a:d3:
35:c5:ab:43:7a:62:75:9d:24:58:a0:26:01:93:0b:
da:7c:73:7a:c7:03:6b:63:65:6c:e1:a4:66:61:05:
fd:f3:39:1c:ba:83:30:a1:55:48:aa:99:f0:74:e8:
a7:52:4c:c7:80:c4:f6:57:15:8a:58:75:e0:57:dd:
b5:e4:44:3b:b8:10:7f:e0:77:35:9e:1b:81:06:3d:
1a:77:9f:02:f0:bb:00:af:1b:da:42:67:34:6e:12:
0f:b8:a8:9b:34:1c:25:45:ed:13:b5:fd:98:73:13:
a3:81:3f:87:69:08:99:c4:af:b4:3b:5a:34:35:d7:
95:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:04:F3:77:78:69:0E:4A:79:F9:D1:C0:7A:AA:4F:F9:7D:6A:CD:D6
X509v3 Authority Key Identifier:
keyid:51:9E:97:47:0C:63:FD:A1:4C:32:65:EB:74:1A:70:E3:A8:B6:9A:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UZ6XRwxj_aFMMmXrdBpw46i2mv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/_gTzd3hpDkp5-dHAeqpP-X1qzdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/3fd910-78bc-442a-88ac-8c52de6fa888/1/UZ6XRwxj_aFMMmXrdBpw46i2mv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.142.0/24
IPv6:
2001:7f8:dd::/48
Signature Algorithm: sha256WithRSAEncryption
8c:36:e0:13:07:e6:a1:33:e0:50:86:e2:c7:31:76:28:8f:a1:
6f:c6:61:f0:2e:a5:f7:bd:97:2b:52:f9:de:75:7a:99:4c:af:
87:be:b8:9d:16:72:5f:fb:ab:e6:de:1a:d9:06:d8:53:4e:23:
6e:52:99:c8:aa:00:ae:3b:11:f8:e3:19:9a:52:e2:08:67:e0:
5f:92:ab:ca:26:05:b9:a6:05:c1:0e:a8:f9:c0:61:21:86:05:
e0:2f:40:87:75:99:d7:49:54:ea:71:cf:06:43:bc:91:fa:44:
98:55:ac:27:12:d9:26:94:f7:6e:a8:ea:17:99:98:25:5e:ee:
35:c8:7f:1e:87:d2:f8:0b:5d:5a:77:44:79:a3:7e:ce:b0:2b:
67:2e:4c:55:04:e8:c6:58:31:65:2d:fd:54:76:8a:9e:69:a2:
39:76:fa:c3:21:70:a6:bd:3e:f1:9a:fd:6b:6d:43:28:41:12:
1b:df:46:42:59:2b:4b:77:00:ba:90:ff:ee:89:9c:f7:ee:ee:
c4:15:60:e9:92:b4:74:a1:de:fe:43:09:42:3a:1a:4c:ef:5f:
60:00:8f:18:71:e3:4b:38:e5:cd:05:72:6c:a0:c9:f9:f4:3f:
2c:80:5f:eb:94:ec:f1:6d:73:56:03:dd:4e:b0:6a:35:62:ed:
98:82:44:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:20 2024 by rpki-client on console-ams.rpki-client.org