Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/3i3OlJZzcVK3Ou0rarnoSQtNCIg.roa
File: 3i3OlJZzcVK3Ou0rarnoSQtNCIg.roa (raw, json)
Hash identifier: nMlJEE0uVH8O+VllJbKvbIlYoXzM97BXYcp0edwEy04=
Subject key identifier: DE:2D:CE:94:96:73:71:52:B7:3A:ED:2B:6A:B9:E8:49:0B:4D:08:88
Certificate issuer: /CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Certificate serial: 01856D9406B23FD2657D7CC9AE1687BA4BD6
Authority key identifier: D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/3i3OlJZzcVK3Ou0rarnoSQtNCIg.roa
Signing time: Sun 01 Jan 2023 13:44:55 +0000
ROA not before: Sun 01 Jan 2023 13:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203256
IP address blocks: 185.130.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:06:b2:3f:d2:65:7d:7c:c9:ae:16:87:ba:4b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Validity
Not Before: Jan 1 13:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de2dce9496737152b73aed2b6ab9e8490b4d0888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:19:d0:b8:f7:fd:a5:f1:ed:21:d9:52:9d:b4:
1f:fc:6d:a0:51:4d:c3:ce:23:a4:dc:90:9a:ae:d5:
d2:28:50:22:56:e5:cd:66:15:e6:c7:36:87:b7:66:
f8:26:58:e0:ad:28:02:45:a3:fe:25:f2:be:91:97:
51:6c:25:9e:9b:ec:22:03:94:b5:3a:5c:de:bd:f7:
ac:85:30:e8:4d:d1:9b:a7:99:a1:20:25:25:e4:e4:
51:16:12:92:73:e3:f9:96:5c:a0:e9:61:2d:51:26:
62:40:2c:50:c1:65:49:cc:28:9e:f4:d5:20:51:8d:
06:2a:85:1c:ff:72:21:d4:87:37:bb:4c:2e:7d:df:
d4:5c:b3:3a:58:58:51:88:b5:d7:73:68:9f:1f:9c:
ae:5b:2d:66:95:33:66:fc:ab:e9:94:1f:17:78:6e:
cf:8a:4c:eb:dd:21:bb:47:98:85:58:95:1d:c8:1e:
0a:9f:f1:5c:ad:83:87:4b:ca:e1:2f:15:4f:12:0c:
b0:04:70:a7:77:90:a6:f0:33:fd:04:ce:0b:76:c1:
e5:1c:1d:cb:31:18:20:0a:88:46:45:1c:ea:fc:f2:
38:22:04:32:eb:74:9a:7e:b1:d0:2f:81:91:77:83:
6b:25:ee:ae:77:38:9a:cb:bb:0b:08:4c:a5:66:65:
c2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2D:CE:94:96:73:71:52:B7:3A:ED:2B:6A:B9:E8:49:0B:4D:08:88
X509v3 Authority Key Identifier:
keyid:D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/3i3OlJZzcVK3Ou0rarnoSQtNCIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.228.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ad:23:33:29:c5:ca:64:df:76:8e:37:fd:19:b0:a2:b0:1f:
a6:13:36:d0:18:85:e8:66:bc:4b:6e:7a:d7:36:b5:3e:8d:b6:
7c:13:2e:96:15:56:d8:8e:da:2c:c1:d8:20:5a:77:57:fa:d6:
43:9a:b3:c6:7f:4e:4e:db:83:cc:f7:16:3c:98:f5:ae:cd:27:
32:91:da:0e:6a:35:d9:cc:6a:42:36:f9:06:fe:e0:32:5e:48:
8c:87:29:1e:78:ff:67:78:bf:9a:a5:31:45:d4:8d:c1:a3:fc:
5d:c4:0c:62:b5:10:ec:e2:bc:0b:32:2c:33:53:7c:2c:c8:ee:
71:86:2b:6c:e5:dd:4e:db:7d:7b:2e:88:bf:18:3e:21:3f:d5:
4d:d6:87:b4:2d:11:42:cb:4c:fb:12:a9:15:9e:72:34:57:96:
8d:92:ee:4d:76:ce:0d:ae:db:80:51:e4:91:f8:af:35:05:26:
60:dc:73:b5:40:44:8b:88:1a:74:2b:80:26:7e:cc:44:32:9b:
28:a6:3e:55:d8:7f:04:b0:c3:c7:ba:d0:d6:25:4f:47:93:19:
52:63:6f:c8:35:83:cf:50:0c:da:a0:e8:ef:ac:2a:ad:f3:b1:
79:dd:77:f4:67:42:0d:77:52:65:4d:28:ee:61:74:14:3a:d3:
d5:00:00:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:12 2024 by rpki-client on console-fra.rpki-client.org