Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V4QVygpmBV9-5pzy8P3EZTfUEWc.roa
File: V4QVygpmBV9-5pzy8P3EZTfUEWc.roa (raw, json)
Hash identifier: dY0gRdGXvWREHoP9wy4fwnbzPt0Cdl4cPFPuJmFBov4=
Subject key identifier: 57:84:15:CA:0A:66:05:5F:7E:E6:9C:F2:F0:FD:C4:65:37:D4:11:67
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 0188B8684E2FFEF9A5AF05A5CE724CBA211F
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V4QVygpmBV9-5pzy8P3EZTfUEWc.roa
Signing time: Wed 14 Jun 2023 05:37:03 +0000
ROA not before: Wed 14 Jun 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34918
IP address blocks: 185.126.0.0/20 maxlen: 20
185.126.0.0/21 maxlen: 21
185.126.8.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 17 Jun 2023 08:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:68:4e:2f:fe:f9:a5:af:05:a5:ce:72:4c:ba:21:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jun 14 05:37:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=578415ca0a66055f7ee69cf2f0fdc46537d41167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:63:b9:f5:da:6f:02:69:9c:17:29:64:72:8d:
ce:8e:48:92:43:b6:17:38:24:88:4a:73:c6:2b:51:
e0:78:05:11:3f:33:62:eb:31:bb:97:f0:6d:5b:3d:
b8:9f:e7:42:79:f7:ee:c8:11:a1:2c:68:bc:e8:4c:
b9:a7:b4:1a:2f:f0:08:7f:b3:62:f1:ed:9c:8a:b0:
4c:b6:65:d7:bf:5f:72:86:87:14:6d:65:92:f5:fe:
c9:94:3b:42:50:ac:1d:e4:8e:6e:2f:35:62:6f:6c:
98:5b:85:39:e0:46:24:bf:eb:74:41:7a:cb:06:3c:
39:ec:47:be:09:1d:4b:be:c8:ba:4d:2e:97:ce:87:
d1:4e:79:c6:20:fe:f2:43:a6:9b:7e:05:bd:a4:c1:
5c:47:d0:e3:90:27:03:08:8d:83:93:44:8d:fc:d6:
20:03:18:d0:af:f0:bd:fc:f9:39:4c:5f:09:2c:c7:
e9:eb:a8:78:44:b5:92:62:7b:3c:57:ad:a4:9b:72:
b1:ae:e8:b2:66:f5:a5:78:25:0d:7f:ea:bf:6b:54:
b8:32:24:38:4e:9c:3e:65:61:48:d5:a7:aa:cd:76:
6b:88:41:6b:e0:f6:ae:06:78:ad:d7:eb:44:c7:e4:
b5:cd:8e:e3:37:0b:12:80:fe:02:00:31:46:43:fd:
a6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:84:15:CA:0A:66:05:5F:7E:E6:9C:F2:F0:FD:C4:65:37:D4:11:67
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V4QVygpmBV9-5pzy8P3EZTfUEWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.0.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:91:2f:27:5f:dc:de:8b:7b:eb:48:64:0e:9b:b8:5c:26:e7:
f0:36:aa:f5:b3:1a:fa:43:ae:3e:49:27:af:ab:bf:c1:d2:3e:
12:3b:c1:f2:15:2e:68:43:d4:17:96:7d:15:15:aa:48:b0:f0:
d3:43:df:aa:c1:fa:da:de:fe:0d:bb:f3:74:01:bc:5e:70:2e:
70:25:25:b8:af:f0:ac:bf:89:99:ee:fb:12:39:54:81:17:92:
55:e4:0a:72:da:52:be:13:4d:ee:a1:4f:49:2a:d7:8f:56:b0:
59:74:79:62:12:cd:39:f7:01:de:b8:d0:73:24:4b:8f:48:47:
3e:9d:8c:00:f1:15:08:32:c0:c7:4c:be:25:e7:df:63:8d:a2:
48:4b:1e:10:f0:c1:df:e0:da:ee:e9:6b:ae:b5:7b:87:73:32:
06:c0:aa:c1:4e:33:e0:99:a4:b1:5c:94:e6:46:33:9b:75:58:
b7:de:73:06:e0:f1:33:86:43:f9:3d:c0:e6:f8:ba:47:68:b1:
c4:73:17:f2:b1:98:70:d2:c1:1f:28:1a:10:a0:d0:f7:46:aa:
80:83:74:35:9b:b3:09:38:83:44:3e:e2:e6:94:48:54:e5:25:
10:f5:57:52:b6:e0:7b:92:52:c6:b6:51:fd:c6:83:dc:34:a3:
bf:46:d4:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org