Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/lQ_pJSIQ-nIhcM8n1espCl1ULgM.roa
File: lQ_pJSIQ-nIhcM8n1espCl1ULgM.roa (raw, json)
Hash identifier: rbAbz9t69z4X6D+P+l779GkqWKLKKiiKwufmAvv/n28=
Subject key identifier: 95:0F:E9:25:22:10:FA:72:21:70:CF:27:D5:EB:29:0A:5D:54:2E:03
Certificate issuer: /CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Certificate serial: 01856E38E99297A98F9660186941C63E6D10
Authority key identifier: 68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/lQ_pJSIQ-nIhcM8n1espCl1ULgM.roa
Signing time: Sun 01 Jan 2023 16:45:01 +0000
ROA not before: Sun 01 Jan 2023 16:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207620
IP address blocks: 185.249.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Aug 2023 12:59:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:e9:92:97:a9:8f:96:60:18:69:41:c6:3e:6d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Validity
Not Before: Jan 1 16:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=950fe9252210fa722170cf27d5eb290a5d542e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:b3:39:95:e4:5b:c4:cb:0e:5e:6a:98:0e:
d6:20:f9:95:81:90:d4:bc:be:dc:c6:ab:87:15:e8:
b4:e4:61:a1:49:f6:fa:da:40:7f:e6:46:5a:93:f8:
0e:5b:76:50:76:8b:b4:ad:b2:f4:3b:99:5c:bf:f1:
35:50:c4:8e:c8:b8:3d:c3:a2:24:d9:2a:d7:0c:22:
89:d6:48:6b:f4:41:08:10:8e:15:8c:cd:4b:83:ee:
5e:56:53:30:70:4d:ed:ca:8b:6c:87:41:65:48:72:
29:4b:93:4b:06:8e:b1:3d:a6:b9:7f:5a:84:f8:10:
b4:76:83:bf:2e:2a:18:9b:9d:0d:df:d5:7d:0f:2e:
b1:23:f6:ca:25:19:8c:ef:f6:67:a6:bd:bd:45:a7:
c7:33:22:52:91:d6:58:a6:64:f8:26:de:78:0d:f9:
b2:b7:40:90:51:6d:05:db:de:f2:f4:00:af:e5:a5:
39:ea:04:2a:46:70:69:d4:49:8c:72:d4:55:85:9c:
0a:70:99:fa:fe:45:7a:d8:23:8c:13:43:81:23:1c:
2c:20:10:e2:33:05:59:df:84:07:0d:f0:da:b6:b1:
ab:e8:d6:c3:e5:0b:28:74:2c:87:ed:2f:73:94:5b:
e0:d6:a2:41:c9:ac:22:bb:da:cd:1a:11:34:ee:37:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:0F:E9:25:22:10:FA:72:21:70:CF:27:D5:EB:29:0A:5D:54:2E:03
X509v3 Authority Key Identifier:
keyid:68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/lQ_pJSIQ-nIhcM8n1espCl1ULgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/aLIu6kpKO4FlSiJ-2pTg51k3sBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.255.0/24
Signature Algorithm: sha256WithRSAEncryption
82:8d:31:7c:62:0a:e5:bb:e6:6a:4a:62:27:63:8b:eb:7a:ad:
68:ed:74:2b:c4:b8:29:e3:54:2d:eb:5d:c9:23:79:33:bc:d2:
9e:45:21:0a:05:d4:f7:c2:c6:0b:70:dc:67:81:a7:50:76:b0:
be:bd:01:ef:1a:15:ab:b6:9a:84:d7:94:08:c1:52:57:bc:cd:
d9:c1:8e:52:0a:41:7a:bb:d9:c1:c3:06:d1:d6:95:02:36:09:
46:3a:66:21:96:3c:21:10:98:2b:6a:86:fa:6b:43:39:0f:47:
2b:49:f3:f7:a7:8a:e9:12:bd:a2:54:6a:6c:ea:1b:36:f1:b1:
91:58:e4:4f:24:a7:21:85:c8:c6:48:0a:fa:ff:ac:d9:84:85:
ea:5f:76:dd:6f:bb:e1:2b:a7:8e:10:57:d6:1a:f5:c8:0e:88:
28:6e:c6:97:c3:3f:a8:81:74:d3:fb:25:9d:54:a3:af:b9:f2:
ba:f0:58:f7:35:9b:5a:96:82:ae:66:66:b8:4d:b2:88:08:48:
b4:4b:a3:14:2b:bd:a6:b5:98:e5:40:e9:a2:2a:26:40:7e:0a:
c5:fc:b5:a5:f4:74:cf:f8:d7:1c:4a:22:98:38:4d:1d:59:40:
99:ec:0f:4a:e8:b1:62:6e:52:f1:67:b3:23:4c:37:46:82:26:
f9:8b:a7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:50 2024 by rpki-client on console-fra.rpki-client.org