Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/SsG7Lz5j0HBNjN8i6POpD29P3PU.roa
File: SsG7Lz5j0HBNjN8i6POpD29P3PU.roa (raw, json)
Hash identifier: yw/HZDRjJnoMAfMmPr+eeM2d3E4GID1J90xcSbqjecg=
Subject key identifier: 4A:C1:BB:2F:3E:63:D0:70:4D:8C:DF:22:E8:F3:A9:0F:6F:4F:DC:F5
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0186A7D814C7187F6ED623243D825AB479F8
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/SsG7Lz5j0HBNjN8i6POpD29P3PU.roa
Signing time: Fri 03 Mar 2023 14:20:01 +0000
ROA not before: Fri 03 Mar 2023 14:20:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206752
IP address blocks: 185.130.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:d8:14:c7:18:7f:6e:d6:23:24:3d:82:5a:b4:79:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Mar 3 14:20:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ac1bb2f3e63d0704d8cdf22e8f3a90f6f4fdcf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6e:cc:03:85:c5:71:f5:d4:78:51:cb:a2:23:
de:5a:bb:f5:00:6c:98:3d:b4:14:76:3c:78:59:76:
83:50:4f:24:32:07:4f:75:12:fd:95:30:0a:7e:92:
4e:06:58:ab:6d:0b:ce:8b:31:d9:f1:8e:74:a8:78:
7d:36:21:80:bd:87:01:c6:c5:0e:ef:3a:dd:8c:4d:
82:6c:4f:41:cc:5d:16:2e:e9:21:e1:7d:7b:e6:cb:
82:8f:45:4c:c3:26:08:5d:b2:d6:7e:61:39:f8:39:
2e:26:1a:3e:0c:65:0b:07:ea:a7:7f:1b:0e:70:ee:
80:61:14:53:f3:8d:69:f6:35:fc:06:24:0f:b4:a4:
8c:4f:33:d0:07:65:b3:b5:ce:41:a8:db:48:82:94:
a2:66:9c:9b:1b:b4:70:78:63:90:2f:c1:6d:57:a9:
67:e6:f3:1e:b3:f4:04:e7:da:0f:14:f4:64:f6:13:
ff:00:9a:19:1f:7f:e7:33:12:e7:35:b4:a8:53:5a:
32:81:61:95:8b:8d:c6:e9:ba:54:06:06:79:fe:b2:
6b:73:45:5c:3e:80:90:f7:52:50:7f:93:b3:87:40:
a9:d5:e2:7c:fd:0f:e3:64:9a:34:cb:5d:3d:52:92:
2b:90:93:86:38:7d:c0:af:05:bf:47:0d:07:7a:10:
d0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C1:BB:2F:3E:63:D0:70:4D:8C:DF:22:E8:F3:A9:0F:6F:4F:DC:F5
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/SsG7Lz5j0HBNjN8i6POpD29P3PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.26.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e8:04:27:7a:95:20:b9:13:40:ec:5a:25:4d:db:2f:c5:f9:
88:22:a1:39:07:8a:08:7b:c2:d6:68:15:c0:2c:58:2c:ad:3a:
39:a0:9a:5c:6d:95:06:55:e7:75:43:54:75:fd:86:e4:55:ab:
0d:29:a0:d1:ac:d0:36:44:6d:6b:bd:0e:25:12:a7:d7:f1:0e:
c6:b9:9b:08:2e:1b:00:71:8b:b7:51:e8:f6:49:ce:f6:dc:f7:
4e:5d:41:6a:05:dc:39:8c:2d:8c:fa:60:0b:58:52:ff:7e:0f:
05:91:e0:bf:4b:7a:8d:25:8f:db:39:db:7f:e9:ab:30:5f:43:
2f:80:3d:ee:93:c4:74:aa:86:e9:5a:eb:db:cc:65:fd:72:a7:
15:4f:bc:88:67:de:7c:af:80:00:3e:ef:71:23:03:22:13:3b:
a4:56:ec:85:55:29:ec:17:a2:b7:c6:f8:df:2c:2a:92:15:fa:
3c:6f:a3:de:de:b2:35:10:b5:87:29:dd:69:63:7b:a3:95:10:
c8:ac:1f:d7:e4:6b:6f:5e:3a:eb:f1:16:7f:05:21:37:71:1b:
a2:45:ca:6e:38:ad:02:ab:2d:2c:59:89:90:19:17:c4:93:ed:
03:af:e5:dc:e7:1f:fc:4a:3d:86:b3:be:bf:60:7e:d1:ca:8f:
5b:76:25:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org