Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/2--J4VxwePlEWgIacRIpgneH1Wg.roa
File: 2--J4VxwePlEWgIacRIpgneH1Wg.roa (raw, json)
Hash identifier: K5t92+EWAVHLt7heIlFIQdE4tquPk+Wu2e7nzn06vss=
Subject key identifier: DB:EF:89:E1:5C:70:78:F9:44:5A:02:1A:71:12:29:82:77:87:D5:68
Certificate issuer: /CN=449b18e3296d795d3a9c959be25c70aaab365200
Certificate serial: 01856F3020B6CA4B12B4EC4FCE02AD9456F9
Authority key identifier: 44:9B:18:E3:29:6D:79:5D:3A:9C:95:9B:E2:5C:70:AA:AB:36:52:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RJsY4ylteV06nJWb4lxwqqs2UgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/2--J4VxwePlEWgIacRIpgneH1Wg.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208857
IP address blocks: 185.44.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:20:b6:ca:4b:12:b4:ec:4f:ce:02:ad:94:56:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=449b18e3296d795d3a9c959be25c70aaab365200
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbef89e15c7078f9445a021a711229827787d568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:47:eb:1d:91:62:bd:53:81:7e:78:4e:61:4f:
ca:bb:f6:9c:39:15:b9:40:29:37:29:5c:27:56:f4:
f7:06:10:51:c1:ad:71:a4:7a:54:f1:f1:ed:1f:fe:
90:8f:4a:d2:f5:1a:56:bd:45:54:8a:98:ce:a0:28:
95:a9:66:ee:ac:bb:27:d4:76:83:2a:75:e8:20:66:
fb:cb:5b:e7:80:9c:1f:8a:92:b3:cc:77:47:59:59:
a6:c9:df:1b:a1:55:d2:56:b1:89:06:bf:ef:7b:65:
39:55:ad:04:68:65:e0:4e:2b:1e:18:ef:1b:69:c0:
52:81:5f:56:b1:84:31:cb:44:b1:8d:34:b2:8d:54:
25:e1:96:48:0a:56:55:34:b7:cc:9f:34:20:3e:f3:
28:ea:d0:77:36:b9:a0:cb:c2:0d:05:fb:1a:21:d2:
b0:a5:f1:14:97:08:f9:da:2c:bc:0b:62:fb:58:d5:
da:07:4e:ef:0a:af:49:98:59:54:af:97:b1:10:38:
34:c1:bd:28:8f:16:bb:f6:d6:a2:33:8d:e8:49:19:
ea:92:4f:e6:88:7c:9d:8c:7c:b6:4f:1e:aa:73:5e:
fc:0c:ec:08:e8:a3:d0:f1:84:8f:f1:57:5e:c0:47:
89:e4:ef:57:ce:56:b7:93:48:6c:8e:d1:44:ac:6a:
ec:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:EF:89:E1:5C:70:78:F9:44:5A:02:1A:71:12:29:82:77:87:D5:68
X509v3 Authority Key Identifier:
keyid:44:9B:18:E3:29:6D:79:5D:3A:9C:95:9B:E2:5C:70:AA:AB:36:52:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RJsY4ylteV06nJWb4lxwqqs2UgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/2--J4VxwePlEWgIacRIpgneH1Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/RJsY4ylteV06nJWb4lxwqqs2UgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.208.0/23
Signature Algorithm: sha256WithRSAEncryption
45:d0:a3:b1:bc:29:d0:6d:ea:c5:86:77:c0:cb:e7:f5:7d:88:
56:69:34:95:3c:02:f2:6f:bc:18:ca:6e:87:a2:20:80:c1:85:
f4:ed:5e:da:0a:f6:7e:3e:48:80:50:c5:27:54:65:23:df:a0:
d2:18:c1:da:49:ec:01:39:ca:a5:a8:e2:c1:bc:70:b6:80:84:
d5:f8:a7:24:f8:ab:f0:6c:7e:40:31:64:e0:df:d2:02:32:28:
1a:27:73:da:a3:a4:6e:b7:78:18:ef:c7:12:02:0a:ba:46:49:
82:d5:12:97:cf:1f:5c:8a:cb:6c:53:82:b5:b9:ef:18:f1:43:
8d:da:a0:8f:49:f1:f6:7f:fb:25:09:b7:17:ba:de:ae:e6:59:
2b:eb:0c:65:70:c1:38:ef:c2:59:c7:59:55:31:80:55:e1:db:
b6:53:0b:5c:b6:92:46:83:43:df:de:f2:96:b9:e3:c3:fb:df:
e0:68:18:bb:f7:1c:d6:73:a3:d6:fa:9c:0c:0d:95:18:c6:de:
63:d4:0d:0e:82:aa:95:cd:4b:3a:0d:2e:ae:f0:b1:cc:f6:e6:
d8:bb:74:e7:69:ff:27:16:76:92:d7:d0:97:a5:86:87:76:0b:
81:13:91:55:8a:4d:45:7b:9f:c4:65:18:91:5b:ca:69:b1:cc:
60:53:80:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org