Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1--ezOPkhhrpAuSqlnBodXIIJyY8.roa
File: 1--ezOPkhhrpAuSqlnBodXIIJyY8.roa (raw, json)
Hash identifier: yGMAtZy+TYQ22ViEDOftyN+63LvbC4TjQm7CWna7fgg=
Subject key identifier: FB:E7:B3:38:F9:21:86:BA:40:B9:2A:A5:9C:1A:1D:5C:82:09:C9:8F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018723027712E0A8C75DE0021BF33424921A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1--ezOPkhhrpAuSqlnBodXIIJyY8.roa
Signing time: Mon 27 Mar 2023 12:19:36 +0000
ROA not before: Mon 27 Mar 2023 12:19:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.230.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 07:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:02:77:12:e0:a8:c7:5d:e0:02:1b:f3:34:24:92:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 27 12:19:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbe7b338f92186ba40b92aa59c1a1d5c8209c98f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:53:2a:19:f0:e4:a7:1d:fa:57:5e:00:e5:
ac:76:ab:44:98:47:c8:52:27:60:69:f4:b0:fb:6d:
04:b0:33:f0:18:b1:95:1d:a9:0a:c5:57:13:c7:89:
11:f9:e3:1b:f7:d0:c0:32:1c:68:f4:0f:bf:85:c3:
b4:fc:92:5d:52:a2:3b:79:11:a2:a4:dc:a4:e2:48:
db:e8:84:a0:15:b8:9f:12:7a:b4:46:d1:78:28:5e:
d6:b0:31:df:8c:23:8b:ed:56:84:a4:b5:7a:9a:c6:
c1:44:da:54:dc:ef:0b:43:fa:61:d0:6e:58:f6:54:
72:fc:36:e2:17:12:1d:c9:1d:75:99:cd:62:27:48:
2e:c0:a3:5e:bf:54:ac:fc:3c:b5:a1:d2:2b:67:d2:
45:80:5b:50:fe:f4:88:51:bd:3f:d3:c6:09:dd:f0:
e9:96:46:4d:c0:53:4c:a9:e6:dc:39:2c:21:f6:66:
59:db:81:dd:38:a1:a8:82:ae:51:6a:88:a8:0c:89:
a6:13:7c:0d:51:cc:e6:da:92:24:c9:44:be:4a:ac:
b5:af:94:d9:57:0f:a4:a8:f2:fa:17:39:40:94:b6:
74:39:cc:6b:52:fb:39:fd:a4:a3:8a:31:a6:26:2e:
07:df:77:6b:54:ef:72:6b:7f:2b:da:33:ce:9a:a2:
6d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E7:B3:38:F9:21:86:BA:40:B9:2A:A5:9C:1A:1D:5C:82:09:C9:8F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1--ezOPkhhrpAuSqlnBodXIIJyY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.52.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:45:48:7e:eb:f2:2d:80:3d:f1:d0:69:ba:e7:bd:74:42:dc:
14:98:5f:73:64:c7:f4:91:09:74:eb:b5:97:56:0f:44:16:5f:
db:92:26:ec:6d:c6:40:5f:98:44:da:19:89:44:23:f1:26:7e:
8a:ea:eb:58:e0:aa:ef:33:62:32:ad:bf:a8:d9:c3:4b:7e:77:
d6:f8:35:0f:b0:55:f4:f0:59:93:75:35:01:91:14:6d:a7:7a:
4e:54:af:92:9f:c2:8a:e2:90:0e:f5:a6:f8:8e:3f:04:ee:ee:
1e:59:86:4a:38:af:01:80:e9:53:3d:4a:a6:ba:39:10:0c:ab:
f7:69:88:8e:96:60:5f:72:71:cf:30:bd:f1:1a:36:bd:6e:8e:
93:31:f6:ca:44:2d:b7:6d:0a:33:79:7e:7d:72:af:51:c5:2a:
93:48:d8:92:77:45:ca:7d:29:a8:45:8b:19:e0:80:28:f4:7e:
e6:95:c1:31:e7:a1:33:80:df:29:53:e5:71:eb:a7:2f:de:e0:
c1:e5:68:f2:05:4b:cf:d7:f9:d5:44:95:cb:9c:45:a5:5c:d7:
2c:a1:aa:47:fc:56:47:5b:82:3d:fb:79:68:7c:1c:9b:f1:72:
fe:15:c3:b6:86:31:d4:13:8a:71:54:e3:73:5c:04:22:2b:e1:
95:e1:46:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org