Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/_AZIYt2fHtpQ3iLorId8XKPi7Io.roa
File: _AZIYt2fHtpQ3iLorId8XKPi7Io.roa (raw, json)
Hash identifier: c+Ej38h3iAveY99oLpxFN22nMNx+CxurZhDXUiCE+XI=
Subject key identifier: FC:06:48:62:DD:9F:1E:DA:50:DE:22:E8:AC:87:7C:5C:A3:E2:EC:8A
Certificate issuer: /CN=97eac753379fd22ff6515033f513dc282463ad2d
Certificate serial: 0185715E71C148AC2DAA192F0DAA1B6E5056
Authority key identifier: 97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/_AZIYt2fHtpQ3iLorId8XKPi7Io.roa
Signing time: Mon 02 Jan 2023 07:24:52 +0000
ROA not before: Mon 02 Jan 2023 07:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21211
IP address blocks: 185.184.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:71:c1:48:ac:2d:aa:19:2f:0d:aa:1b:6e:50:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97eac753379fd22ff6515033f513dc282463ad2d
Validity
Not Before: Jan 2 07:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc064862dd9f1eda50de22e8ac877c5ca3e2ec8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ad:5a:16:f2:ec:0a:af:d8:0f:3f:f6:22:a1:
3d:83:8f:38:fe:1e:bc:0b:59:8e:5a:55:ea:74:a6:
1a:c0:a5:c9:6d:a8:6a:ca:cf:fe:1b:ac:26:b1:27:
88:7e:74:f6:22:a4:9f:a9:32:a8:49:06:0b:d1:a6:
db:b0:72:5c:7b:7d:08:36:95:8b:4d:81:4b:ce:ee:
b8:d6:9a:bb:59:98:f9:96:e2:24:a6:eb:7b:7a:b9:
7e:fb:97:44:9b:1e:e6:2a:1b:48:f5:7c:25:ce:bb:
48:86:f6:08:f4:3f:11:a2:b2:45:18:e6:ca:5b:eb:
9a:d7:80:b4:80:91:26:7f:fa:43:37:99:21:da:1a:
42:9a:2c:71:5a:9f:d0:ba:72:b2:46:8a:de:29:0a:
88:6d:8f:1e:c6:b5:64:bc:ec:3c:d4:50:c2:45:b7:
41:d7:d2:7b:21:69:3b:c3:5b:6a:32:a0:8a:5b:d2:
da:5e:45:96:2a:d1:92:98:ee:29:dd:9a:19:94:bc:
eb:b0:17:11:c5:c2:df:f7:4c:8c:31:35:32:b1:78:
cc:b3:2b:0b:b7:be:5d:bd:3c:50:7c:48:99:1b:d5:
cc:0a:3f:f6:b8:34:e1:2d:11:32:a0:be:c9:b4:49:
fb:4a:c3:81:30:1f:87:cc:da:b6:3d:b2:4c:8d:e7:
37:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:06:48:62:DD:9F:1E:DA:50:DE:22:E8:AC:87:7C:5C:A3:E2:EC:8A
X509v3 Authority Key Identifier:
keyid:97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/_AZIYt2fHtpQ3iLorId8XKPi7Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/l-rHUzef0i_2UVAz9RPcKCRjrS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.144.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:5a:3b:14:5c:5b:14:17:fc:34:09:6f:6c:62:1c:cd:fe:0c:
26:24:cd:e3:ca:e1:a4:14:3c:30:1a:4a:45:30:ed:c4:58:80:
d3:e6:cc:31:24:69:8c:5e:c2:73:b0:2d:8d:42:d3:45:62:1e:
88:02:db:dd:df:96:33:28:f9:42:7a:2b:46:62:40:62:7e:78:
1d:ba:10:fb:6b:77:58:3e:00:da:e2:90:94:27:d3:ae:c6:6d:
9b:22:ae:5e:af:e2:e8:d2:e4:7c:6a:43:4c:04:c1:6d:27:15:
34:51:15:59:bd:d9:66:b8:c2:42:25:38:22:6c:f4:f8:af:08:
f6:64:0a:d8:3b:71:14:26:e0:29:bc:1c:83:b0:b5:30:48:71:
bd:93:90:67:3a:b3:f0:bd:88:0a:a4:b0:38:90:1d:63:7a:4b:
6f:92:1f:0b:24:4b:6d:f1:5a:50:10:50:95:2b:42:ba:69:0e:
ac:f6:6a:a8:27:ff:98:65:86:1e:ce:55:f3:d5:27:d6:f9:2f:
10:7d:48:81:2f:b3:f3:d0:61:8d:60:3c:87:a0:75:81:6a:6f:
30:e3:7f:cf:92:01:a9:49:24:0a:59:21:2a:3c:4a:5c:55:ab:
01:b6:67:b0:56:a4:e6:09:d0:ef:af:c4:51:5f:9f:7c:fa:44:
fd:09:30:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org