Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/bGH1YoIBY-zBzInvdx5GT8idCCY.roa
File: bGH1YoIBY-zBzInvdx5GT8idCCY.roa (raw, json)
Hash identifier: bMQcnwcCe+leBPTKuzko6+W1xSIsN07Z82uOOMU4nSk=
Subject key identifier: 6C:61:F5:62:82:01:63:EC:C1:CC:89:EF:77:1E:46:4F:C8:9D:08:26
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 01881498AB495BE66D28A35A97E871F7E382
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/bGH1YoIBY-zBzInvdx5GT8idCCY.roa
Signing time: Sat 13 May 2023 10:12:09 +0000
ROA not before: Sat 13 May 2023 10:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 17:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:14:98:ab:49:5b:e6:6d:28:a3:5a:97:e8:71:f7:e3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: May 13 10:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c61f562820163ecc1cc89ef771e464fc89d0826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:f4:b2:d2:7c:67:d0:f9:c8:72:85:06:8a:
dc:2b:e8:20:86:70:f9:fa:8b:92:9a:7c:b9:49:52:
90:f1:84:c0:7b:f3:48:10:dc:6b:ae:14:20:56:67:
58:b0:db:11:a1:37:76:da:31:ce:86:dd:bd:ca:0a:
05:ce:a3:ed:92:a2:80:11:58:5d:df:10:e7:2b:8f:
04:c6:c9:02:c1:03:5c:67:e1:08:73:74:ef:7e:ee:
43:2c:95:c9:b9:1a:2c:06:91:0e:e5:0d:f7:7d:0b:
b0:00:50:0a:a5:98:f9:83:20:d6:8d:a9:74:6e:f8:
4c:ae:e9:1c:d3:73:1a:5a:7f:d1:4a:02:eb:58:e6:
45:e8:18:ad:b8:ad:36:2c:2e:dd:21:30:06:e5:b3:
8f:f7:0e:37:03:d7:d6:55:9a:66:7d:f1:6b:c8:fa:
b3:a3:cb:1a:8c:0f:61:2b:60:f7:aa:44:e6:f8:2f:
fd:13:c6:b4:72:7b:42:41:ef:45:c5:1c:e0:32:a6:
d9:ff:a1:2a:9c:e3:99:30:b6:e1:8a:25:b5:ca:36:
a9:0e:b2:0f:55:3b:16:3c:91:64:d2:d7:c3:0c:f1:
3f:ad:87:3e:39:a8:86:f1:36:f1:16:53:b1:26:1d:
10:66:89:6d:63:88:d0:2a:56:6b:ca:98:1a:27:90:
7e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:61:F5:62:82:01:63:EC:C1:CC:89:EF:77:1E:46:4F:C8:9D:08:26
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/bGH1YoIBY-zBzInvdx5GT8idCCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ad:05:bc:f1:a6:f3:bb:46:b9:32:0f:24:fd:6b:2c:35:bf:
92:50:7e:87:31:67:02:0c:f9:f7:0d:be:ba:37:4c:53:23:16:
3b:02:c0:b5:1c:8e:6c:ee:e6:b8:d6:e5:0b:d0:c1:2d:7a:b9:
04:1e:b7:ef:48:88:a9:39:d0:d2:68:0f:1a:02:0f:7a:64:dd:
3b:70:98:9f:8c:32:83:29:6a:d9:f0:28:8a:b0:a5:74:78:88:
65:ce:df:66:2b:0b:96:ec:d5:71:ba:d4:cd:a4:07:61:bb:46:
c9:c4:ed:e8:1e:ed:06:a4:fa:79:db:cf:6f:94:5d:a9:68:38:
f5:f9:79:19:63:04:a0:f9:fd:b1:4d:cf:33:89:a0:ca:84:47:
21:4b:94:79:70:7c:61:64:bd:ab:25:2f:ee:c3:63:94:dd:1e:
49:b5:23:86:a3:c3:73:ba:bd:32:c6:f8:81:ea:99:65:82:b4:
00:09:67:73:44:69:d5:fe:b0:79:c5:f0:bc:a2:97:d0:8b:aa:
89:80:4f:29:da:db:23:7e:6a:77:cf:08:11:ad:4a:cf:83:bc:
30:60:b1:f8:91:37:f4:da:55:fe:38:64:29:c8:d3:28:78:fe:
2a:05:11:87:10:93:a2:10:9c:f9:fa:84:9f:0d:53:86:97:54:
cf:ef:a2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:14 2024 by rpki-client on console-fra.rpki-client.org