Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/0IXd2Sk8aLVfzcl1qTAAaUqMQSY.roa
File: 0IXd2Sk8aLVfzcl1qTAAaUqMQSY.roa (raw, json)
Hash identifier: UlV7ZvQoef18R9YX1g5KSGvnciwfBvRrH36ySJ2NVqE=
Subject key identifier: D0:85:DD:D9:29:3C:68:B5:5F:CD:C9:75:A9:30:00:69:4A:8C:41:26
Certificate issuer: /CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Certificate serial: 0188380F45B77C625599FED9E67FE9DFC046
Authority key identifier: F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/0IXd2Sk8aLVfzcl1qTAAaUqMQSY.roa
Signing time: Sat 20 May 2023 07:28:24 +0000
ROA not before: Sat 20 May 2023 07:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201117
IP address blocks: 185.245.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:38:0f:45:b7:7c:62:55:99:fe:d9:e6:7f:e9:df:c0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Validity
Not Before: May 20 07:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d085ddd9293c68b55fcdc975a93000694a8c4126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:79:27:19:5f:25:00:f4:78:d1:70:f2:91:
f7:30:3f:e7:23:6d:49:ed:6a:6a:7e:cc:b4:3f:a4:
1f:e7:c0:cd:54:64:76:5a:4d:0e:05:dc:d4:eb:96:
dc:71:13:a1:34:e2:d7:7d:00:5b:7e:df:6a:27:85:
17:a3:8c:38:e9:74:1b:72:13:c7:55:c5:c1:ba:04:
08:df:a1:37:5e:b5:7a:20:8b:1b:4b:fb:75:70:42:
56:f4:3b:51:56:ce:da:d5:97:2e:74:3b:a0:d3:3b:
c0:cf:ed:b1:bb:c0:36:c1:9e:05:14:d4:a3:0f:0f:
01:45:a8:23:d4:1e:e4:ae:d6:5a:68:ab:6c:f8:0a:
43:e9:18:9a:24:95:23:97:99:18:ff:d0:4a:b5:c6:
78:e3:84:8f:1f:90:f0:d9:4f:db:df:a8:62:b8:e1:
de:0e:83:18:b1:c2:ca:9d:81:70:02:a1:fe:ac:cc:
18:e6:89:d6:6d:16:8e:1a:bd:3d:24:bb:b7:9d:53:
cd:70:ea:03:bb:28:12:4e:3d:45:d6:a3:77:e9:51:
20:ac:75:27:79:0c:6c:f0:f2:47:51:82:a4:8e:46:
b3:4f:71:a5:05:77:81:a8:5f:a7:8a:ac:f7:6e:61:
63:38:88:d5:03:89:9a:9c:27:51:f8:0e:79:e6:5c:
28:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:85:DD:D9:29:3C:68:B5:5F:CD:C9:75:A9:30:00:69:4A:8C:41:26
X509v3 Authority Key Identifier:
keyid:F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/0IXd2Sk8aLVfzcl1qTAAaUqMQSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/96WNGxKutVgzKN2lJdBphnS7He8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.156.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d0:71:c3:79:31:37:bf:09:9f:64:40:41:cf:ce:a5:50:6b:
d6:9f:32:34:04:59:ed:3a:e1:4b:ec:94:56:4d:36:e3:e9:8a:
a0:aa:39:f5:e9:46:a9:f0:a7:df:51:03:e4:08:6c:87:1c:b3:
8e:26:d2:b9:f8:ef:c4:ab:c2:12:43:26:f8:3c:fc:80:01:68:
69:d3:20:40:d0:84:08:9c:fc:76:b6:6a:30:fb:c1:cd:ff:0a:
b3:e9:0d:65:cf:2c:fa:36:3c:33:d6:a5:86:ad:c3:88:fd:ef:
95:b6:00:34:ca:28:4e:16:ff:a8:3e:dd:65:73:53:51:eb:36:
7e:45:02:9e:55:1b:32:0a:fa:ff:1b:5d:b0:9f:3a:64:d5:c5:
ca:0e:a7:1b:b2:25:dd:08:4d:aa:02:90:d7:2d:9e:c3:97:1e:
c5:a0:99:b2:a5:dc:8c:ee:84:f2:c3:30:f5:5e:21:5a:50:f1:
a0:f2:6d:da:98:36:3b:30:3b:16:98:75:9e:c3:91:5c:e3:cb:
d2:27:61:23:7d:f7:54:b3:0f:e2:7f:c3:54:7f:ca:d4:9a:6f:
0c:68:3d:8a:a0:25:07:43:c0:13:10:d4:0b:84:c9:80:fd:72:
9d:e0:6c:54:ed:13:67:d3:a3:ac:d8:bc:84:c9:b3:f3:71:bf:
d3:83:4c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:31 2024 by rpki-client on console-fra.rpki-client.org