Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/brXtQyLm8uLqPTylZVFNjTPEmGQ.roa
File: brXtQyLm8uLqPTylZVFNjTPEmGQ.roa (raw, json)
Hash identifier: ISQFbMzhOgpmjtTPXR3aNXy6ssv/GyyhDK2HB7GE+XI=
Subject key identifier: 6E:B5:ED:43:22:E6:F2:E2:EA:3D:3C:A5:65:51:4D:8D:33:C4:98:64
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018AF03594982A601F1B5B46AA1B838146F7
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/brXtQyLm8uLqPTylZVFNjTPEmGQ.roa
Signing time: Mon 02 Oct 2023 11:45:57 +0000
ROA not before: Mon 02 Oct 2023 11:45:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35758
IP address blocks: 185.240.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 18:29:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:35:94:98:2a:60:1f:1b:5b:46:aa:1b:83:81:46:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Oct 2 11:45:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6eb5ed4322e6f2e2ea3d3ca565514d8d33c49864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:57:a4:ae:2a:18:b9:55:c8:82:46:e4:93:
42:d5:ef:89:ac:28:38:b9:62:8f:79:46:35:5c:92:
e1:7b:5b:9c:a1:2a:fc:4f:a5:a6:0a:96:91:78:57:
98:80:0f:ab:ba:62:6c:e5:c4:8e:4c:97:81:d1:60:
b7:6e:1e:3a:10:a1:34:48:f2:a9:09:f0:53:7b:01:
c7:34:47:55:d8:c7:e0:eb:79:64:a6:00:36:cf:7c:
5c:31:1f:64:ac:82:fb:c3:6a:ad:ea:18:c4:92:19:
3d:f5:e8:98:05:f5:a4:61:0b:03:bd:24:a5:41:b1:
e9:b6:70:14:ab:62:14:70:6f:bb:95:91:0c:e0:00:
0a:ab:19:c3:ec:c4:5b:86:ed:f3:5e:30:d0:17:9c:
c3:93:db:20:c8:0f:29:23:9e:6b:87:83:51:b4:83:
88:7f:89:d3:18:ce:95:c2:67:cc:b1:cd:28:9e:54:
6d:29:cc:3e:26:24:6e:d6:b7:14:e8:b6:c7:c3:81:
d0:f2:a0:38:ec:b3:c2:b9:5c:fc:2d:a5:8d:e3:12:
9f:34:2d:a9:2c:31:c0:91:09:9b:c4:14:a4:86:5a:
63:fe:60:46:26:72:3b:91:e0:a7:2d:25:a2:90:61:
e0:70:de:e6:08:57:a9:45:6e:3a:1a:1f:87:c0:82:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B5:ED:43:22:E6:F2:E2:EA:3D:3C:A5:65:51:4D:8D:33:C4:98:64
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/brXtQyLm8uLqPTylZVFNjTPEmGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c9:33:9d:18:5e:29:08:7a:a1:69:54:e2:c0:99:3d:a1:39:
58:5c:fb:e8:2f:05:2a:75:60:32:f1:25:60:06:86:0e:75:f8:
2c:cc:86:0b:3e:f0:7d:33:bf:88:17:26:fd:02:95:9f:af:f3:
9f:25:94:ac:69:c1:b6:5d:e8:49:a9:e5:6f:81:08:86:73:97:
73:b1:61:04:68:97:8f:52:54:32:b5:ea:44:b3:8c:3a:65:28:
96:f0:12:7d:13:e6:ed:ca:56:bb:31:b3:b6:77:95:84:e9:cd:
81:04:66:b5:ae:d9:f5:11:39:d2:76:a8:ee:78:ed:d9:ce:c8:
1f:5d:7d:fa:9e:14:41:d0:06:fe:bd:22:fa:2b:3b:b2:f2:73:
c6:5d:8a:aa:9d:17:ff:ef:1c:a9:47:a0:2b:a1:d8:96:f6:13:
60:5c:f0:bb:a8:32:bb:93:0b:a0:95:2c:d2:33:02:ea:ee:e0:
8a:45:5b:8c:f3:a0:5d:81:0e:34:c8:7d:56:43:af:d6:2b:75:
a4:1b:23:f1:a0:88:7e:83:d7:23:95:e8:00:be:f2:55:e5:5f:
ce:db:c5:cb:99:1f:9f:da:45:4d:c2:67:0d:b0:c5:a8:88:3b:
9c:01:c0:55:5d:5a:a1:7a:6a:c1:8d:f6:a5:91:0d:fc:f6:99:
ef:69:21:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org