Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jClC5zLeYW5DOemMfDQZy2lw2Cg.roa
File: jClC5zLeYW5DOemMfDQZy2lw2Cg.roa (raw, json)
Hash identifier: O4YuptZDMVkEYhYztpb2Dzqf9Y+GJSPqS5XNiajbYew=
Subject key identifier: 8C:29:42:E7:32:DE:61:6E:43:39:E9:8C:7C:34:19:CB:69:70:D8:28
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018582DDF4E0BE02BD94AEC523C3FCA382EA
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jClC5zLeYW5DOemMfDQZy2lw2Cg.roa
Signing time: Thu 05 Jan 2023 16:57:42 +0000
ROA not before: Thu 05 Jan 2023 16:57:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201670
IP address blocks: 185.229.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:dd:f4:e0:be:02:bd:94:ae:c5:23:c3:fc:a3:82:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 5 16:57:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c2942e732de616e4339e98c7c3419cb6970d828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:08:97:f1:58:1d:ff:fe:87:7d:0e:c7:f8:
63:ea:64:83:26:16:1d:5d:2d:e9:9a:df:80:d6:ff:
b6:c4:3c:3a:4a:f6:70:1b:ce:88:8f:00:1b:ea:79:
fb:b8:b9:b3:70:ab:90:5e:8b:bc:c0:62:bc:28:b7:
61:ca:19:51:09:19:70:e5:a9:43:02:a8:21:a5:2b:
73:eb:a6:2f:9e:e0:26:e1:f5:16:fc:51:c5:13:44:
e0:76:25:61:2c:8f:d4:17:7d:6c:d4:8d:fc:45:f8:
ca:82:48:48:ab:1a:64:eb:7a:82:f2:3b:2d:d8:55:
be:c3:cb:53:1c:47:cc:92:d9:13:99:e2:eb:b5:ce:
7a:ae:b6:a1:ea:8d:f4:04:0e:3d:ba:b4:7a:09:bc:
d8:5c:d1:c8:e1:c2:a4:3e:6e:1b:e2:2a:5f:1f:82:
60:a2:7f:46:e0:ee:25:65:3a:4b:12:3d:29:d4:76:
e9:1d:b3:ab:3c:d9:de:03:8f:ac:82:e4:9f:b8:1e:
f4:a4:68:54:ed:67:4c:3c:b9:58:7b:27:9f:da:af:
48:c7:85:95:ac:08:fe:56:99:1d:a9:3a:0b:8e:a7:
33:ec:e2:b8:21:bf:f3:cc:a7:7e:5e:b5:f6:a0:22:
7a:e9:9b:52:a0:a0:0e:62:fc:43:ae:24:01:2d:d9:
c0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:29:42:E7:32:DE:61:6E:43:39:E9:8C:7C:34:19:CB:69:70:D8:28
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jClC5zLeYW5DOemMfDQZy2lw2Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.64.0/24
Signature Algorithm: sha256WithRSAEncryption
af:e0:92:82:90:54:ca:11:ec:e0:7f:02:84:6a:ee:ff:4b:4d:
cf:8c:d8:b7:ba:df:d7:4d:78:f8:88:a4:cb:a8:70:0d:76:52:
71:a4:11:c6:51:47:73:cb:03:a3:5e:ce:09:8b:ab:b6:1e:35:
9b:bd:35:2c:8d:44:c2:da:aa:db:e3:c5:6a:db:07:2a:8f:49:
0b:e7:46:63:4d:8e:87:37:3b:23:18:00:ba:fc:50:ab:07:bb:
70:38:60:48:64:9a:f2:98:b1:45:0a:c0:4b:ec:a8:c2:30:63:
5e:61:6b:f9:4a:88:4e:16:77:0c:55:f8:89:cd:33:20:46:60:
2e:70:24:9e:69:05:c8:73:f8:06:9b:56:94:b1:a3:f8:44:f6:
05:8d:2f:02:bd:15:3a:e6:38:9f:cf:20:cd:91:66:e3:d0:56:
e8:74:89:d4:c6:b6:6f:40:38:f1:ab:97:49:0b:f8:dc:c5:b0:
0e:09:d4:8e:94:07:f6:4e:e6:23:24:09:be:6b:7b:7b:57:59:
2c:16:9b:2c:28:d4:84:0c:de:d6:69:ed:ee:fe:24:d6:a8:4f:
b6:9e:3b:64:0e:bb:46:2a:13:24:a1:a4:5d:ee:bc:01:ca:0b:
ae:bf:65:04:94:d1:90:b3:1e:4b:34:93:61:76:d6:9c:f6:0f:
df:36:e7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org