Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/_mBlQ28K-VZkwRQGVNUdxf65ZtU.roa
File: _mBlQ28K-VZkwRQGVNUdxf65ZtU.roa (raw, json)
Hash identifier: oaOBQmBDMrzUzoow8NWBpii7lU3670fiXy3Ok/YT8S8=
Subject key identifier: FE:60:65:43:6F:0A:F9:56:64:C1:14:06:54:D5:1D:C5:FE:B9:66:D5
Certificate issuer: /CN=e20449fe7f4b2cf1f7fd670e582ebcc97e45f7ff
Certificate serial: 01856CC16FF358CE5D167CABE4825EADFE04
Authority key identifier: E2:04:49:FE:7F:4B:2C:F1:F7:FD:67:0E:58:2E:BC:C9:7E:45:F7:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gRJ_n9LLPH3_WcOWC68yX5F9_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/_mBlQ28K-VZkwRQGVNUdxf65ZtU.roa
Signing time: Sun 01 Jan 2023 09:54:54 +0000
ROA not before: Sun 01 Jan 2023 09:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49605
IP address blocks: 185.29.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:6f:f3:58:ce:5d:16:7c:ab:e4:82:5e:ad:fe:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e20449fe7f4b2cf1f7fd670e582ebcc97e45f7ff
Validity
Not Before: Jan 1 09:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe6065436f0af95664c1140654d51dc5feb966d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3f:a7:2d:b8:c9:f1:b7:20:f1:3a:1c:65:d8:
1e:98:5c:6c:92:22:d4:72:9d:2b:6f:74:10:c6:2c:
c2:cf:00:da:90:40:f7:2f:29:35:17:94:a0:79:5c:
8c:08:fc:ae:af:f6:bd:74:f5:52:82:f3:c4:ad:f5:
e9:c7:aa:e1:e5:52:fa:6c:b6:fb:91:7f:58:0c:17:
b2:42:00:22:00:3a:31:e8:49:c3:1c:01:9b:c9:f7:
74:fa:c4:ab:1b:4b:b8:bd:de:b4:7b:30:b1:e4:a3:
06:ed:f4:27:7e:f4:f5:47:ba:70:fa:13:9d:38:3f:
43:e9:c7:d1:e6:18:fb:15:43:9d:56:9a:0c:af:ef:
fb:13:d9:ca:a1:66:b3:21:95:9d:c8:20:c2:7f:36:
a5:2a:ad:95:52:16:87:fa:46:0f:57:8f:f0:27:9e:
6b:79:fd:39:dd:14:99:05:5b:14:62:e4:ef:5f:f1:
e7:1c:08:3b:49:96:4d:94:1d:1c:4e:df:c6:5d:d2:
ba:54:da:39:a4:95:c6:7d:e0:5f:18:f9:28:ea:59:
d2:6f:9f:5b:64:b8:db:e1:00:4c:e7:e2:87:c8:eb:
70:15:1d:8d:4c:84:f7:4f:74:f7:d5:12:75:3c:8d:
e4:d1:28:2a:6e:dd:a0:01:94:d1:f6:02:21:54:bf:
2e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:60:65:43:6F:0A:F9:56:64:C1:14:06:54:D5:1D:C5:FE:B9:66:D5
X509v3 Authority Key Identifier:
keyid:E2:04:49:FE:7F:4B:2C:F1:F7:FD:67:0E:58:2E:BC:C9:7E:45:F7:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gRJ_n9LLPH3_WcOWC68yX5F9_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/_mBlQ28K-VZkwRQGVNUdxf65ZtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/4gRJ_n9LLPH3_WcOWC68yX5F9_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.72.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:1e:34:5f:03:41:80:3a:a4:fd:20:2c:8c:f3:e7:65:5e:6e:
e9:c7:13:1e:f5:ec:9a:eb:32:d7:3c:e4:5d:2b:ab:93:c1:0c:
8c:14:9c:5f:79:f2:70:bc:08:d2:9b:3f:81:90:b3:84:6e:3a:
d5:a1:7f:67:24:e7:95:88:f8:c1:2b:35:20:c9:d5:5b:f2:d3:
66:a5:13:ab:61:ff:cf:bf:27:db:26:4e:fa:69:eb:1d:97:9c:
09:54:2d:39:9f:f9:e3:7c:02:48:7d:04:b0:d5:53:33:72:84:
c1:12:69:a9:c5:46:82:f3:f8:bf:8c:18:42:2f:3f:9a:1d:3a:
88:63:b8:a1:6d:ef:0c:12:80:ce:a3:b8:97:f0:5e:9b:72:5e:
40:1a:82:f9:4d:40:7e:81:c2:7a:7b:3a:60:17:05:fc:5b:ed:
d8:07:61:95:b9:7a:7c:47:b4:71:8f:9e:2e:54:61:67:5f:ae:
95:d8:01:8f:f0:38:d3:d2:40:50:73:ff:e7:f2:17:6a:74:ed:
b4:5b:eb:d1:27:93:26:e9:6b:62:45:7d:77:31:72:5c:ce:55:
d4:9d:4a:57:f0:f5:4a:b3:da:bc:66:e5:e2:6b:24:26:10:7a:
c0:d9:9f:31:e8:e5:79:7f:a4:6e:00:40:66:7e:6d:88:e4:d8:
12:44:4b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:41 2024 by rpki-client on console-ams.rpki-client.org