Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ETRrgrZPodcGf1FPrapJylQ2TqA.roa
File: ETRrgrZPodcGf1FPrapJylQ2TqA.roa (raw, json)
Hash identifier: cHqB9TlRmurIKUprOrAE8Pcw60Cmuni2bDsNlIUHcSU=
Subject key identifier: 11:34:6B:82:B6:4F:A1:D7:06:7F:51:4F:AD:AA:49:CA:54:36:4E:A0
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 0187D887C45BAC60A8BEBC05756ACA927A76
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ETRrgrZPodcGf1FPrapJylQ2TqA.roa
Signing time: Mon 01 May 2023 18:16:28 +0000
ROA not before: Mon 01 May 2023 18:16:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49305
IP address blocks: 185.228.251.0/24 maxlen: 24
2a0e:3ec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 14 Sep 2023 23:54:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d8:87:c4:5b:ac:60:a8:be:bc:05:75:6a:ca:92:7a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: May 1 18:16:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11346b82b64fa1d7067f514fadaa49ca54364ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:77:1b:1f:a8:34:c2:45:e8:71:c0:f5:cd:e0:
07:e5:95:28:28:a8:65:69:be:9e:3d:4a:4f:5a:8f:
95:66:5b:ea:37:27:5e:29:f2:8c:8b:1b:9d:c5:1d:
20:28:e9:83:ff:fa:16:5a:7b:16:f1:cf:25:f5:10:
af:6c:23:6a:6a:ae:0e:c3:28:26:14:e6:9b:f2:65:
f9:d1:a9:d7:0e:48:7b:91:5d:65:53:9c:6d:6b:64:
04:e1:3f:40:1b:10:25:95:25:fd:7f:8a:c3:61:73:
b7:5a:2e:45:a2:09:4a:17:47:db:0f:93:8c:de:57:
de:6f:bb:e7:1a:f5:ea:ee:3e:dc:ef:94:40:b7:26:
18:bb:e0:de:00:ae:71:0d:59:e9:dd:19:d6:80:09:
63:12:13:4b:f8:09:e8:9c:c1:04:da:e2:e1:17:1a:
db:ee:a0:0d:18:17:24:b8:8e:31:62:31:e2:6b:fe:
60:95:73:ab:37:7f:31:af:45:97:b1:e8:5d:ad:15:
23:7c:79:18:f8:b6:7c:6f:e6:ab:f4:af:20:af:f1:
91:bd:0b:40:d4:27:b2:88:ed:b9:cd:da:51:a9:a9:
2e:b6:b1:44:d0:55:88:b8:e1:27:2a:90:be:cc:27:
5e:92:53:75:32:e7:6f:a1:26:d2:52:b2:51:6f:e9:
64:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:34:6B:82:B6:4F:A1:D7:06:7F:51:4F:AD:AA:49:CA:54:36:4E:A0
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ETRrgrZPodcGf1FPrapJylQ2TqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.251.0/24
IPv6:
2a0e:3ec0::/29
Signature Algorithm: sha256WithRSAEncryption
15:d1:80:4b:34:dd:1e:fd:36:17:8f:86:25:b7:8f:5f:52:ce:
93:42:34:29:27:f7:bc:99:57:0e:a8:ed:c1:db:83:31:6f:89:
6e:e7:57:f8:95:e7:cd:72:79:f0:65:e8:85:ae:e6:c4:d9:55:
3b:0a:4c:3e:29:6c:5d:34:74:01:52:c5:4b:bd:96:c7:08:e3:
1b:9d:2d:6c:30:43:de:17:56:60:d6:42:b8:0c:93:c7:5f:74:
2c:d5:49:8f:6d:3d:d3:70:a3:e0:93:4b:20:17:2c:25:0d:05:
48:2c:72:54:b4:f3:af:06:bf:0a:2a:d2:8b:71:5e:20:70:cb:
b1:9e:d2:bf:ef:1f:37:66:6d:74:69:c6:71:51:09:0c:8a:4a:
6e:21:ef:e7:ad:d4:f5:4e:67:47:5e:3f:ed:4b:20:24:0b:b4:
06:72:c1:fe:44:87:76:ac:bb:d5:7e:c0:c5:a4:b5:d6:86:e8:
6a:e2:fa:c5:e4:0e:5a:1e:6d:30:db:d9:c9:04:50:bf:04:19:
53:f3:0f:1d:6e:1f:df:8a:54:46:8b:70:56:ac:0c:93:9c:3a:
91:75:77:7b:eb:64:4e:57:9a:a3:69:a9:b7:8d:cf:bc:ed:06:
fb:50:6d:a6:ef:37:9c:af:32:77:1b:17:b3:6d:66:5c:82:18:
85:b4:1c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:39 2024 by rpki-client on console-fra.rpki-client.org