Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/q5hH2BkZPkDomZHuBePPKcGP3hI.roa
File: q5hH2BkZPkDomZHuBePPKcGP3hI.roa (raw, json)
Hash identifier: nBJ4g5gVqOAVDEydQy9/sD3WXuOCLzrfLdCTn5mrUDM=
Subject key identifier: AB:98:47:D8:19:19:3E:40:E8:99:91:EE:05:E3:CF:29:C1:8F:DE:12
Certificate issuer: /CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Certificate serial: 01863566646379CE37E7CB7400343A30807E
Authority key identifier: E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/q5hH2BkZPkDomZHuBePPKcGP3hI.roa
Signing time: Thu 09 Feb 2023 08:59:08 +0000
ROA not before: Thu 09 Feb 2023 08:59:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 185.230.228.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 09 Jun 2023 15:42:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:66:64:63:79:ce:37:e7:cb:74:00:34:3a:30:80:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Validity
Not Before: Feb 9 08:59:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab9847d819193e40e89991ee05e3cf29c18fde12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:85:67:70:ab:d2:b2:71:39:e4:99:b6:2b:b8:
fb:a1:d3:b1:87:3f:1d:7b:bc:43:63:0e:78:db:8c:
8a:de:06:dc:5c:ef:a6:3d:8e:ed:58:f8:61:67:34:
96:ae:28:df:93:62:d0:8f:0b:47:c1:60:e3:a4:03:
ff:5a:d0:11:b7:5a:e8:0f:88:db:2e:be:fa:76:74:
02:b5:58:9b:14:2d:7c:84:28:29:f1:c4:f7:f1:23:
d7:4a:5f:64:e3:b6:1d:c9:13:dc:44:3b:0a:23:50:
5d:36:41:66:16:6c:67:66:60:ba:58:f5:b7:40:83:
fc:48:f0:95:f6:c0:48:ad:40:27:46:af:57:16:1b:
8f:48:4d:25:78:66:83:a5:d2:3e:00:bf:9f:d6:bf:
13:06:6c:9b:a1:b0:54:33:27:a5:7a:9b:35:d1:28:
13:ba:90:24:62:e8:00:8a:0e:4a:e7:30:5c:16:dc:
f5:4c:a8:17:70:0e:d5:ea:83:cc:15:d0:86:63:0b:
a0:ad:a9:ae:72:87:84:d9:ce:70:83:2a:96:3f:a6:
8f:80:50:a4:27:4a:68:9a:76:57:b4:6f:fc:cb:97:
15:f8:a7:ab:bf:52:52:f6:7b:f4:c0:61:f7:2d:56:
ce:3f:55:cc:fd:d5:9c:ae:30:27:a3:37:a3:28:3d:
84:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:98:47:D8:19:19:3E:40:E8:99:91:EE:05:E3:CF:29:C1:8F:DE:12
X509v3 Authority Key Identifier:
keyid:E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/q5hH2BkZPkDomZHuBePPKcGP3hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/5vHe2vTb2mDamQ1oVlDmjIiMYQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.228.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:70:8b:b5:f4:07:49:70:38:b4:9a:40:9d:97:b4:9b:16:13:
38:6e:0f:66:ba:b3:1d:ef:37:c9:ba:d6:3a:6a:b5:d4:03:25:
23:e6:32:49:92:20:fd:81:b2:17:ce:e3:d3:8e:07:c2:75:5e:
f1:19:81:3f:9f:6c:36:26:db:ae:79:42:27:59:c0:12:0f:d3:
b2:b6:2c:3d:de:9a:bf:83:b3:59:6d:17:c3:54:51:1f:20:93:
13:8d:79:63:f3:d9:de:9d:9c:e1:7b:97:2c:02:e3:d4:46:92:
0b:f5:7b:86:ea:be:4b:34:7a:92:26:fa:36:40:77:dc:cf:ad:
3d:77:38:69:51:79:0a:6a:10:65:36:5d:33:97:32:59:83:00:
51:26:7a:12:d5:2b:71:36:3d:b9:85:f5:6d:30:81:82:20:1e:
5d:99:e0:92:48:0f:83:98:cd:bb:10:fd:e5:78:99:17:96:43:
c9:27:3d:35:01:23:fa:fe:9b:2e:69:e2:d5:cb:10:06:4d:45:
78:cc:2c:49:40:91:97:d8:5a:ba:61:6d:b6:77:88:f6:f7:59:
42:e5:22:48:f7:0b:fb:c5:9a:b2:5d:9d:0c:1e:dd:8f:0c:85:
3a:01:22:b6:b0:2e:0a:41:51:26:2c:90:fe:76:01:68:c9:2b:
1a:d0:bc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:24 2024 by rpki-client on console-fra.rpki-client.org