Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/a32aba-e9c7-40ea-8162-91494ac3b6d5/1/pDgkanF2gqUcDMS_D8FP3Gy02bw.roa
File: pDgkanF2gqUcDMS_D8FP3Gy02bw.roa (raw, json)
Hash identifier: YwKbUK0gO93MxznQVPgmndC5Lv+o3nm2lb+VJABSqxE=
Subject key identifier: A4:38:24:6A:71:76:82:A5:1C:0C:C4:BF:0F:C1:4F:DC:6C:B4:D9:BC
Certificate issuer: /CN=271d84369c155055ad9bd5b471558d3fa7b109d2
Certificate serial: 01856D540AA3B174D21A40143AE7A4C11578
Authority key identifier: 27:1D:84:36:9C:15:50:55:AD:9B:D5:B4:71:55:8D:3F:A7:B1:09:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jx2ENpwVUFWtm9W0cVWNP6exCdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32aba-e9c7-40ea-8162-91494ac3b6d5/1/pDgkanF2gqUcDMS_D8FP3Gy02bw.roa
Signing time: Sun 01 Jan 2023 12:35:02 +0000
ROA not before: Sun 01 Jan 2023 12:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198785
IP address blocks: 185.155.217.0/24 maxlen: 24
185.155.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0a:a3:b1:74:d2:1a:40:14:3a:e7:a4:c1:15:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=271d84369c155055ad9bd5b471558d3fa7b109d2
Validity
Not Before: Jan 1 12:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a438246a717682a51c0cc4bf0fc14fdc6cb4d9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:45:87:cf:b0:97:e2:6b:15:09:40:bc:cb:9d:
54:26:7d:9c:97:44:94:55:78:56:c6:cc:e2:30:43:
97:5b:9b:3d:bc:49:91:4f:38:18:d3:d1:d6:35:ce:
2d:86:5a:b6:1d:12:40:c4:41:ee:ba:6d:0a:3a:df:
fc:12:34:25:9d:3a:ac:82:a9:5f:9d:fc:23:5d:8a:
ed:f1:8a:28:01:7a:48:0c:cb:a9:db:5b:cf:63:1c:
11:0e:01:79:7c:c8:97:e4:9d:02:bc:0e:5d:22:58:
4f:82:26:ff:b7:46:32:c2:d5:24:23:1a:c4:5d:02:
b1:bb:98:95:80:e0:3e:f6:79:24:59:19:97:39:ab:
66:d6:c5:e7:22:d8:1e:ac:10:df:f3:56:e7:fc:5d:
f6:c2:34:3a:b7:77:b0:49:90:aa:c4:f8:a7:4c:1b:
2c:e1:9f:06:15:e4:cb:ff:7d:9f:a2:9b:85:bb:5a:
5c:36:c7:7d:38:8c:ad:6d:36:ed:2f:ee:54:8d:3d:
cb:b0:ab:57:74:c2:29:fe:46:a8:bb:78:8f:86:f2:
7c:a8:78:3e:bd:41:1e:20:56:f1:02:ba:9f:7b:9e:
3f:4a:18:94:93:3b:ac:d6:0b:87:95:b6:b7:71:46:
21:27:f1:50:4e:39:7b:92:f9:db:bc:8b:c7:a6:25:
f8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:38:24:6A:71:76:82:A5:1C:0C:C4:BF:0F:C1:4F:DC:6C:B4:D9:BC
X509v3 Authority Key Identifier:
keyid:27:1D:84:36:9C:15:50:55:AD:9B:D5:B4:71:55:8D:3F:A7:B1:09:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jx2ENpwVUFWtm9W0cVWNP6exCdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32aba-e9c7-40ea-8162-91494ac3b6d5/1/pDgkanF2gqUcDMS_D8FP3Gy02bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32aba-e9c7-40ea-8162-91494ac3b6d5/1/Jx2ENpwVUFWtm9W0cVWNP6exCdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.216.0/23
Signature Algorithm: sha256WithRSAEncryption
72:30:ec:e8:aa:c9:28:c0:8f:49:a6:9a:ef:d1:86:77:e8:34:
b3:87:7c:5e:5d:1a:07:b6:03:bf:ce:15:65:82:82:66:7b:cc:
c8:7b:6d:77:3a:4c:a7:60:21:4e:a2:15:1b:86:1d:ac:ad:b5:
77:02:e9:64:05:3a:96:cb:b7:07:c2:0e:06:e7:e9:9f:a6:6f:
35:42:ee:50:1f:e9:99:51:3b:06:80:eb:50:f7:c7:35:86:b7:
48:2c:c9:d8:45:a5:46:ad:87:05:54:c4:c9:39:84:49:15:ed:
69:91:c8:0b:33:f2:43:6d:05:a7:5d:c0:8c:1e:99:0e:3d:95:
68:be:1f:61:69:8c:1b:f0:9d:da:6f:cb:19:7b:33:aa:48:12:
f9:a2:c7:80:39:fa:18:69:dd:94:f5:7f:09:41:dd:ec:c4:46:
77:94:2f:bf:25:ee:8d:8a:6b:e2:c9:d8:65:fc:bb:2e:73:a0:
3b:df:dc:28:d9:33:ce:47:b3:f8:34:36:6b:d0:c1:10:83:0b:
b3:9c:1c:ac:c1:3a:3d:c8:7e:1a:50:a3:55:55:ef:0e:a1:71:
e9:4c:c5:e9:c4:48:5f:cd:97:db:69:b9:f7:72:a8:d5:62:aa:
bb:56:0d:98:89:60:03:65:6a:df:c2:45:19:f0:d7:bf:5f:40:
c4:1d:9e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:49 2024 by rpki-client on console-fra.rpki-client.org