Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/Ll-wHHMwVRSaUl6GV323vi6IQFY.roa
File: Ll-wHHMwVRSaUl6GV323vi6IQFY.roa (raw, json)
Hash identifier: wzbzZM0aK9WxAb8nvNc0ltxHIavT0gF7qv6faOurGuQ=
Subject key identifier: 2E:5F:B0:1C:73:30:55:14:9A:52:5E:86:57:7D:B7:BE:2E:88:40:56
Certificate issuer: /CN=4e98acc86f41c4715b10c1dd52631c32a8194a30
Certificate serial: 01856D6F54390E25E631D8F86A721DCDE42A
Authority key identifier: 4E:98:AC:C8:6F:41:C4:71:5B:10:C1:DD:52:63:1C:32:A8:19:4A:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpisyG9BxHFbEMHdUmMcMqgZSjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/Ll-wHHMwVRSaUl6GV323vi6IQFY.roa
Signing time: Sun 01 Jan 2023 13:04:50 +0000
ROA not before: Sun 01 Jan 2023 13:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59925
IP address blocks: 185.66.36.0/22 maxlen: 22
2a03:1e20::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:54:39:0e:25:e6:31:d8:f8:6a:72:1d:cd:e4:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e98acc86f41c4715b10c1dd52631c32a8194a30
Validity
Not Before: Jan 1 13:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e5fb01c733055149a525e86577db7be2e884056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f5:b1:9c:ae:19:af:d5:82:18:b3:08:6b:c5:
f0:3c:6b:6d:b6:59:8b:57:9d:82:a1:25:e0:44:10:
1c:18:2e:55:c8:80:06:ce:d2:dc:0d:2d:92:c1:bc:
4a:74:07:7e:ec:94:c1:4b:2d:4f:53:a1:ef:46:cf:
cd:5c:d3:89:43:8e:27:25:ae:c6:52:e4:6d:8f:49:
47:46:70:e1:d5:46:3d:bf:68:c2:e1:46:a9:b5:81:
a6:23:10:f2:4c:e2:8d:f8:f4:e0:da:5a:78:09:2b:
54:e2:b8:b2:f3:66:3e:d5:24:b0:d8:1f:e8:d1:95:
14:21:9e:d1:aa:5e:6d:3d:8c:aa:62:05:cd:a0:24:
21:a2:e8:b1:f9:b2:e7:57:c1:ca:3a:cb:e5:c1:ab:
67:e7:75:fc:c5:cb:a0:65:bd:c0:a0:2a:10:72:c6:
7a:df:c2:56:d8:c3:3c:3c:47:99:0f:f1:ae:b5:eb:
d9:93:1a:13:78:4c:63:ae:c4:a2:83:dc:8c:79:6a:
1e:fe:69:e3:08:b3:b0:fc:1f:fb:84:2c:41:c4:59:
5a:2c:8b:9c:7b:8f:10:c7:d6:07:d3:86:95:2f:68:
5a:72:e2:94:61:40:71:91:97:dd:61:a6:df:b4:35:
85:05:db:77:f7:64:a0:cc:9f:d7:b3:d5:87:01:11:
d8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:5F:B0:1C:73:30:55:14:9A:52:5E:86:57:7D:B7:BE:2E:88:40:56
X509v3 Authority Key Identifier:
keyid:4E:98:AC:C8:6F:41:C4:71:5B:10:C1:DD:52:63:1C:32:A8:19:4A:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpisyG9BxHFbEMHdUmMcMqgZSjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/Ll-wHHMwVRSaUl6GV323vi6IQFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/TpisyG9BxHFbEMHdUmMcMqgZSjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.36.0/22
IPv6:
2a03:1e20::/32
Signature Algorithm: sha256WithRSAEncryption
74:b8:82:29:dd:7e:1d:25:98:53:91:da:4e:a0:bf:a3:b7:40:
39:d3:91:c3:78:63:5b:52:68:81:53:6e:96:37:f4:90:0a:39:
4b:c3:0d:01:8f:5b:69:36:38:84:6a:47:8e:ea:60:a0:23:9f:
0c:6f:83:c0:4e:e0:60:70:6d:90:36:33:74:27:b1:a0:36:a2:
f3:39:ff:ff:6a:c4:73:b5:e2:ca:cb:bf:a1:8e:1b:1b:2e:02:
3a:03:ca:da:a7:cf:64:ee:80:ef:68:e4:e4:cd:61:17:b6:3b:
fe:cf:6e:58:09:b5:98:4e:3c:10:fc:73:be:2d:86:df:96:13:
58:8d:3a:99:ec:49:92:de:30:08:8d:93:ff:76:ec:3c:98:67:
af:50:90:c5:ca:96:29:cd:af:dc:c4:57:97:a8:12:3b:08:3a:
ef:3a:ec:f9:79:4c:10:45:fc:23:05:5b:2d:ca:6d:cb:4d:eb:
e5:a6:06:84:0d:98:97:82:54:c1:02:35:8d:99:41:39:69:14:
3e:09:76:63:d6:fc:c2:bb:0d:92:f1:25:d4:48:64:e3:ab:18:
28:f6:ac:a9:e9:13:16:2c:d8:12:14:68:a7:98:77:72:b3:91:
b3:54:6c:12:f1:70:68:60:61:45:d9:55:84:70:9e:35:27:1f:
40:f1:d8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:25 2024 by rpki-client on console-ams.rpki-client.org