Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/Suv5wqk7qgy0HVBSF4feKLXvel8.roa
File: Suv5wqk7qgy0HVBSF4feKLXvel8.roa (raw, json)
Hash identifier: 3wNFbNMuZez0s9VW9sL2xIhFP7NL7QJCHxkGkFNdjq4=
Subject key identifier: 4A:EB:F9:C2:A9:3B:AA:0C:B4:1D:50:52:17:87:DE:28:B5:EF:7A:5F
Certificate issuer: /CN=c3a882b10f1ba9ea4ba1fa7706db64747e62a413
Certificate serial: 0185728CAB4B3743A8CC6B05A9D506CF2AF3
Authority key identifier: C3:A8:82:B1:0F:1B:A9:EA:4B:A1:FA:77:06:DB:64:74:7E:62:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6iCsQ8bqepLofp3BttkdH5ipBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/Suv5wqk7qgy0HVBSF4feKLXvel8.roa
Signing time: Mon 02 Jan 2023 12:54:59 +0000
ROA not before: Mon 02 Jan 2023 12:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205373
IP address blocks: 185.220.160.0/22 maxlen: 24
2a0b:f940::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:ab:4b:37:43:a8:cc:6b:05:a9:d5:06:cf:2a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a882b10f1ba9ea4ba1fa7706db64747e62a413
Validity
Not Before: Jan 2 12:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4aebf9c2a93baa0cb41d50521787de28b5ef7a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:53:8a:1d:1a:64:7b:2d:44:4b:ae:6b:68:
e1:58:5d:74:b6:a6:56:7d:99:b8:57:54:ba:81:ea:
07:95:c0:58:1b:28:e5:d0:03:80:a4:b1:1d:d7:0e:
7a:2a:4f:73:03:12:b6:19:ef:b5:42:58:e0:e3:38:
17:a3:01:e0:56:53:1b:97:6f:d9:28:fa:b4:72:a9:
c8:2c:c2:10:11:a6:fe:82:44:f8:18:e7:08:ff:6c:
8f:57:28:0e:3b:af:9d:08:78:8d:11:b1:ea:e4:4b:
47:06:c2:5a:29:4b:cc:0e:39:41:2e:93:5d:fa:f4:
be:fe:f3:64:6d:21:83:f6:2f:db:20:6f:81:87:5d:
0f:d2:da:9f:b9:bb:8c:c9:f3:61:2c:cc:52:1d:06:
5d:4c:69:b7:c8:e4:20:08:f9:14:25:da:55:c0:a9:
6d:28:7e:51:90:ec:b0:0a:bc:9f:ee:55:e7:92:9d:
cc:20:97:75:b0:e7:d3:2a:90:0c:0d:21:ba:65:02:
f0:7a:d0:6a:32:c1:58:9f:49:fe:cd:68:2f:1e:80:
98:ef:62:31:74:bb:31:b8:cf:55:38:90:21:e8:90:
27:34:fc:29:ec:7d:98:a3:48:5c:0f:90:b1:21:59:
45:39:fb:52:51:02:f7:1d:7e:8b:f5:74:df:44:d2:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EB:F9:C2:A9:3B:AA:0C:B4:1D:50:52:17:87:DE:28:B5:EF:7A:5F
X509v3 Authority Key Identifier:
keyid:C3:A8:82:B1:0F:1B:A9:EA:4B:A1:FA:77:06:DB:64:74:7E:62:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6iCsQ8bqepLofp3BttkdH5ipBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/Suv5wqk7qgy0HVBSF4feKLXvel8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/w6iCsQ8bqepLofp3BttkdH5ipBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.160.0/22
IPv6:
2a0b:f940::/32
Signature Algorithm: sha256WithRSAEncryption
53:81:4b:d4:c4:01:37:bf:81:1d:2e:df:4c:6d:32:74:36:c1:
54:79:40:d4:e2:17:0d:d9:00:10:ec:e8:5d:d8:8a:a3:20:30:
e2:db:05:46:e4:5b:eb:82:8d:ed:75:20:55:ab:fd:62:62:d1:
08:07:2c:61:15:34:e6:26:65:42:14:e2:e8:08:03:a3:6e:f9:
b6:10:fb:ed:2b:4d:8e:86:01:14:08:7c:79:df:45:b5:65:a9:
4d:02:ae:82:88:e2:6e:ac:83:fc:7e:88:db:e6:60:44:6c:c1:
8e:50:f3:d6:56:24:1f:f4:75:46:56:3c:18:a8:92:c3:0c:81:
63:65:30:ca:75:87:33:49:a5:63:1e:94:7c:51:bc:96:46:67:
64:1e:85:fb:05:67:c2:9c:49:c8:f3:ab:d6:41:e9:e6:a8:23:
8f:31:01:94:7d:70:1d:2c:6d:39:64:9a:f4:12:05:e6:e0:25:
e3:8d:d9:d2:fe:f5:e7:22:1d:60:d5:eb:cc:fa:eb:9c:ef:73:
36:44:5d:1b:79:39:a4:4b:2f:d7:5e:cd:06:86:65:2f:be:4d:
62:06:8f:88:b4:5d:ae:89:db:2c:c3:61:fa:d4:f6:0c:a3:4c:
f4:42:8c:d8:31:7e:e0:7c:48:fa:6b:b4:0b:65:73:e8:15:e1:
05:f4:61:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org