Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/tV5s5RWy_20aUe4NzgyfAP2R5Wk.roa
File: tV5s5RWy_20aUe4NzgyfAP2R5Wk.roa (raw, json)
Hash identifier: vR8cJcKop1yTZ9+LpBJ6IjlAR9IrMLtH/8yMwZ/BzQo=
Subject key identifier: B5:5E:6C:E5:15:B2:FF:6D:1A:51:EE:0D:CE:0C:9F:00:FD:91:E5:69
Certificate issuer: /CN=34ba9c223241eb80e2bc71853bb7d2e58286bdd3
Certificate serial: 0192C4820FA22A9B2F19E86CD597C2BE2633
Authority key identifier: 34:BA:9C:22:32:41:EB:80:E2:BC:71:85:3B:B7:D2:E5:82:86:BD:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLqcIjJB64DivHGFO7fS5YKGvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/tV5s5RWy_20aUe4NzgyfAP2R5Wk.roa
Signing time: Fri 25 Oct 2024 16:28:30 +0000
ROA not before: Fri 25 Oct 2024 16:28:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204877
IP address blocks: 185.141.120.0/22 maxlen: 32
2a0d:ff00::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Oct 2024 10:44:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c4:82:0f:a2:2a:9b:2f:19:e8:6c:d5:97:c2:be:26:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ba9c223241eb80e2bc71853bb7d2e58286bdd3
Validity
Not Before: Oct 25 16:28:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b55e6ce515b2ff6d1a51ee0dce0c9f00fd91e569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:de:d3:0d:b9:2d:72:46:37:82:2a:33:c9:a9:
ff:85:bd:e2:ce:49:06:72:25:93:fc:1b:f3:ed:4a:
0c:43:ed:8c:b6:1a:7a:7c:ac:19:78:3b:56:fe:cc:
c9:ed:78:57:2c:93:91:b8:61:cc:05:4f:69:ad:a6:
d7:3b:a7:52:aa:da:69:bf:16:00:11:59:5a:e4:4f:
27:09:96:6c:36:c5:fb:60:6e:97:26:b6:a5:ce:fe:
bc:5c:d9:f7:15:c2:09:5b:5d:fa:f4:ef:85:55:be:
dc:ae:d8:a0:00:1c:eb:a1:84:33:f3:13:2e:91:85:
4f:06:1d:8a:e1:1c:62:f3:d2:8a:bb:56:c7:13:49:
2f:7f:f9:07:3b:07:fd:61:06:21:35:2e:33:26:0a:
c6:41:33:5b:82:9d:5e:e6:f4:0b:3f:c3:04:4a:95:
21:7f:ad:aa:28:21:82:6f:66:bc:cf:51:78:b1:42:
33:3d:2c:f9:c9:a8:96:c1:74:9d:5c:0b:d7:08:35:
a1:b8:03:74:95:a0:fa:b6:02:61:e6:ac:72:39:bb:
c8:87:6f:e9:ee:73:05:60:f1:92:41:8d:2c:c0:80:
7f:d5:34:da:40:44:38:b5:a9:10:c4:60:fa:b9:6d:
2c:e1:a6:0b:47:f1:1d:b8:ca:09:a5:6d:c0:b0:7e:
5b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5E:6C:E5:15:B2:FF:6D:1A:51:EE:0D:CE:0C:9F:00:FD:91:E5:69
X509v3 Authority Key Identifier:
keyid:34:BA:9C:22:32:41:EB:80:E2:BC:71:85:3B:B7:D2:E5:82:86:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLqcIjJB64DivHGFO7fS5YKGvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/tV5s5RWy_20aUe4NzgyfAP2R5Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/NLqcIjJB64DivHGFO7fS5YKGvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.120.0/22
IPv6:
2a0d:ff00::/29
Signature Algorithm: sha256WithRSAEncryption
80:33:10:9f:4a:3e:de:1b:73:43:dd:9d:54:9c:f9:b3:03:72:
de:fd:c0:b4:28:e8:dc:0c:07:6e:e1:6a:09:0a:39:43:d2:2b:
06:9c:7c:92:d6:46:4c:60:bd:40:90:24:9c:dd:11:37:cc:e9:
ad:02:bd:ab:34:94:56:19:94:56:a5:60:bf:39:b1:50:a6:53:
44:2b:41:00:9f:16:69:40:01:de:03:af:6b:2d:34:16:2a:53:
74:c8:2f:5a:56:28:ae:6e:ba:d1:72:ea:e4:b3:c4:e0:83:73:
a6:0a:e2:b8:79:54:5a:4f:e4:7c:4a:14:41:ff:41:48:77:4b:
b9:90:d7:09:df:f9:70:96:84:8e:c4:17:1f:97:54:18:c9:c8:
cd:cd:48:a0:bc:16:29:84:d0:a5:c9:16:b8:15:2b:68:eb:44:
c6:42:58:da:a4:79:c8:9d:7c:13:e7:4d:9d:ce:ca:3f:c2:ab:
36:3c:cc:ed:8f:83:b5:58:65:ef:9a:cc:23:18:43:8c:7d:e3:
2a:12:01:9f:17:b7:a3:18:ce:5c:63:66:53:2b:45:32:d5:45:
e6:cf:49:f9:c9:63:b4:08:ff:05:47:8b:8c:93:93:75:b6:e8:
cf:55:64:0a:94:f2:15:d8:37:52:61:80:35:a4:2d:3d:a7:fc:
ae:5e:6e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 12:39:13 2024 by rpki-client on console-fra.rpki-client.org