Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/xxA1HHg-RtSiUFwq7ooe30WIRtA.roa
File: xxA1HHg-RtSiUFwq7ooe30WIRtA.roa (raw, json)
Hash identifier: 3rbbQaG+USqZnBrunkPIHf0j6grQ2u8KCwG1MjvnhrA=
Subject key identifier: C7:10:35:1C:78:3E:46:D4:A2:50:5C:2A:EE:8A:1E:DF:45:88:46:D0
Certificate issuer: /CN=04268ae40737536a464c28493eaf503db9a18f20
Certificate serial: 01856FDDDEBAB8B299DEEB3AC9097C4B7F0F
Authority key identifier: 04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/xxA1HHg-RtSiUFwq7ooe30WIRtA.roa
Signing time: Mon 02 Jan 2023 00:24:49 +0000
ROA not before: Mon 02 Jan 2023 00:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.134.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:de:ba:b8:b2:99:de:eb:3a:c9:09:7c:4b:7f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04268ae40737536a464c28493eaf503db9a18f20
Validity
Not Before: Jan 2 00:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c710351c783e46d4a2505c2aee8a1edf458846d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:24:b8:e6:a4:dd:a4:f7:f7:c7:cf:01:fd:ec:
1b:b4:0e:02:7b:46:fc:31:7d:61:3f:62:5c:92:b5:
00:88:93:34:1c:0d:23:3b:2b:4d:50:25:ef:63:fd:
af:f4:cd:53:5b:18:1b:02:fb:45:14:69:ae:96:d3:
e6:d8:77:72:e6:75:9a:26:ff:ac:38:0d:84:95:55:
77:f6:7b:c1:88:5d:69:a3:5d:d2:f4:a1:a1:56:5a:
20:f8:e3:04:3a:42:6d:10:e5:ed:f5:f3:52:ac:5d:
96:ad:9c:e3:a3:2f:f6:3e:02:24:70:f9:bc:3f:bd:
03:01:e8:3b:04:3d:9e:1a:7c:03:da:a7:a9:a6:63:
e5:09:e2:b1:42:c8:7a:ff:f5:0a:4d:b8:4d:45:6d:
f0:d5:da:4b:77:cd:0e:bd:63:e4:7c:cf:be:9a:26:
b1:11:44:ef:1c:01:0c:47:e1:20:1c:a5:37:a3:0a:
f2:f6:b0:8d:7c:25:a5:c2:fa:d8:d2:01:38:a4:92:
3c:a4:0e:2a:5e:8d:b8:4a:a6:bb:c2:01:6d:d9:81:
85:4e:1f:3c:3a:3b:12:88:a8:f5:dd:7a:ea:b2:29:
33:23:5c:b2:0b:f2:49:f8:f4:24:0e:ab:2e:0c:a0:
dd:72:98:20:e5:82:6f:14:3a:36:06:c8:8b:2b:fb:
ac:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:10:35:1C:78:3E:46:D4:A2:50:5C:2A:EE:8A:1E:DF:45:88:46:D0
X509v3 Authority Key Identifier:
keyid:04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/xxA1HHg-RtSiUFwq7ooe30WIRtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/BCaK5Ac3U2pGTChJPq9QPbmhjyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.79.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e7:86:c5:80:04:4b:f2:10:f6:e8:48:bb:64:25:f2:59:e8:
5f:eb:1d:5e:0f:46:9a:a0:e1:a6:cf:63:49:2b:a1:44:6d:ac:
ad:31:88:2a:cc:b9:42:6e:53:0e:21:0c:ae:b5:0f:28:07:d5:
cd:94:c9:8d:97:f5:94:2f:34:8d:5c:e5:a3:2d:f3:b0:1a:62:
01:e1:00:55:17:b9:1d:93:76:d0:57:1e:a7:a5:1a:a6:27:61:
e6:75:24:bb:32:df:ea:96:20:1f:80:20:26:34:59:26:d8:6c:
de:c1:8c:ea:9b:f7:b5:37:6d:b2:e1:b4:49:a7:d7:ec:5e:d0:
a2:31:77:a7:85:70:0f:ff:c3:fb:8e:bc:a7:40:d8:a4:ed:cb:
50:05:f9:94:e7:e7:5b:05:55:f3:8f:be:db:60:70:dd:b4:7f:
8b:05:8d:d2:6e:57:70:b3:6d:fb:58:8f:c2:37:da:8c:ad:0c:
dd:78:3b:33:5b:23:47:dd:11:a2:ba:fe:0b:22:cf:8e:d5:3e:
55:7c:6f:ca:8b:d4:df:2f:60:7d:8a:8b:05:f5:10:d6:90:56:
d6:a7:49:44:c8:76:b0:12:d8:34:d6:70:69:96:d6:ae:b6:da:
57:a7:8d:34:10:09:b4:eb:12:52:9c:44:47:7a:bf:32:3e:86:
7f:77:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:23 2024 by rpki-client on console-fra.rpki-client.org