Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M2mBX3qe8IuqpDfl0iAl6DjWlXY.roa
File: M2mBX3qe8IuqpDfl0iAl6DjWlXY.roa (raw, json)
Hash identifier: zsWNdyAaprSBWhcC/xCAwfdGdwAXbtd2jOE7DJsiJPk=
Subject key identifier: 33:69:81:5F:7A:9E:F0:8B:AA:A4:37:E5:D2:20:25:E8:38:D6:95:76
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018650E6DEACACBEED9DE8487352D3EA010A
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M2mBX3qe8IuqpDfl0iAl6DjWlXY.roa
Signing time: Tue 14 Feb 2023 17:09:12 +0000
ROA not before: Tue 14 Feb 2023 17:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 10:21:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:e6:de:ac:ac:be:ed:9d:e8:48:73:52:d3:ea:01:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Feb 14 17:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3369815f7a9ef08baaa437e5d22025e838d69576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:49:cc:fa:aa:88:31:4c:9b:c4:d6:5f:be:07:
00:93:06:44:80:8e:b0:dc:42:91:0b:25:e7:a2:c4:
ef:20:59:92:ab:e3:45:4f:ce:ed:ea:89:03:77:0e:
4d:05:04:6c:25:ad:c0:d4:32:a5:57:17:37:7d:01:
d4:b6:95:cd:28:29:e8:d3:9c:45:ae:e1:28:38:17:
85:cc:9c:d4:05:fc:f1:09:3e:12:6c:12:9b:7f:78:
62:37:27:5f:a1:26:c3:70:2b:97:65:59:54:7a:bd:
70:1e:2a:bf:01:ea:c2:68:07:42:d8:db:cd:d5:7d:
42:0e:fe:c6:5a:d0:92:48:9d:fd:14:b1:d7:a3:76:
88:9d:02:90:38:5e:31:24:c6:91:98:22:17:92:67:
b4:81:5a:bc:82:78:4a:f3:22:42:e9:8f:2e:b8:2c:
e2:23:20:7b:2f:a5:35:34:8d:a3:d2:26:a4:13:cb:
01:c6:04:6c:b5:ef:8c:78:07:f3:79:e7:93:6c:a2:
fa:66:ad:4c:d4:66:29:19:bb:22:21:aa:72:47:37:
e8:e6:e4:1d:69:5a:99:cf:ef:7f:98:1c:c1:c4:cc:
4c:69:09:38:e3:da:c6:62:f3:ca:94:db:5b:0b:52:
7c:63:b1:88:8a:1d:81:7b:13:85:87:a2:d1:60:2e:
a9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:69:81:5F:7A:9E:F0:8B:AA:A4:37:E5:D2:20:25:E8:38:D6:95:76
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M2mBX3qe8IuqpDfl0iAl6DjWlXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
15:17:fd:b0:8c:36:a8:94:e9:60:ef:66:ee:b7:70:4e:bb:b2:
69:68:3f:d1:2a:c0:c7:79:88:cb:83:c2:3b:69:5d:d1:7e:92:
a5:e1:44:b4:59:38:40:93:4e:92:3e:79:6d:01:16:bc:d9:9a:
a9:17:0e:d9:29:57:dc:c3:90:da:ce:8e:37:fc:e7:d4:e8:fe:
95:fe:40:8f:58:09:68:f5:e2:e3:07:96:db:a7:67:22:f5:da:
dc:62:ba:f6:65:31:fa:36:89:9e:21:41:1a:e0:f2:26:c1:1b:
c7:52:e4:06:a5:06:c4:39:80:f2:86:d1:b3:38:78:62:5e:df:
db:08:a7:a7:66:35:1d:d3:c0:c4:54:e3:8f:9c:45:f0:c5:64:
1c:2b:9b:da:e4:49:c6:b3:9d:b1:e2:21:53:3e:d4:cc:2e:34:
f3:aa:82:9e:bd:a5:5b:61:ef:57:a0:66:f4:75:4b:f1:09:58:
22:d1:f0:ba:59:ff:38:4f:e4:e2:2b:e5:37:4b:81:30:0b:ec:
20:ba:d2:f8:85:52:03:a4:46:9e:f6:8a:1b:8b:e8:f9:a6:4b:
eb:7b:82:c6:ff:67:39:91:c0:57:97:99:12:a3:75:00:84:7d:
40:7d:23:c2:ee:e1:a5:5e:8a:2c:ad:a2:d8:0a:68:ae:ea:fd:
3d:22:4a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org