Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cd2bdd-d3c4-4d60-b096-af3a685d579f/1/5-H-i8-MwmsaC9Qig40931MoLAM.roa
File: 5-H-i8-MwmsaC9Qig40931MoLAM.roa (raw, json)
Hash identifier: 2cEOHgie+Xk3glVm/XmKsnuB+IIDYhfEjQj/OJHkVn8=
Subject key identifier: E7:E1:FE:8B:CF:8C:C2:6B:1A:0B:D4:22:83:8D:3D:DF:53:28:2C:03
Certificate issuer: /CN=acb54bcc49291a1f32b7cead4f296882d0531492
Certificate serial: 018B60CD673B4271A9BFCCBE99FBD0B4962D
Authority key identifier: AC:B5:4B:CC:49:29:1A:1F:32:B7:CE:AD:4F:29:68:82:D0:53:14:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rLVLzEkpGh8yt86tTylogtBTFJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cd2bdd-d3c4-4d60-b096-af3a685d579f/1/5-H-i8-MwmsaC9Qig40931MoLAM.roa
Signing time: Tue 24 Oct 2023 08:29:15 +0000
ROA not before: Tue 24 Oct 2023 08:29:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208864
IP address blocks: 185.105.76.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:cd:67:3b:42:71:a9:bf:cc:be:99:fb:d0:b4:96:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acb54bcc49291a1f32b7cead4f296882d0531492
Validity
Not Before: Oct 24 08:29:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7e1fe8bcf8cc26b1a0bd422838d3ddf53282c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d5:f0:0a:c2:cd:55:fd:0b:b1:d9:7c:cb:1e:
3f:58:8f:d8:99:f6:63:c4:f1:49:fc:10:a1:12:b2:
7e:af:38:53:b4:e7:d3:33:37:25:ad:2a:2b:9e:24:
bf:07:fe:e5:f9:ff:05:d5:27:4b:08:20:12:02:32:
9b:90:ce:bd:72:4b:84:f0:e3:11:a9:9f:59:7d:e7:
17:b2:5c:8e:13:c4:ff:0c:a0:d9:1d:8a:93:0d:62:
7a:01:69:ec:b3:ad:eb:22:6f:80:91:b0:8e:20:05:
10:36:f6:d6:2b:a3:f3:1e:1b:09:c9:70:57:fe:55:
21:e9:86:87:87:17:67:d9:96:c0:40:43:ba:86:95:
ac:c1:a2:1a:c4:72:31:10:1e:37:99:83:e7:cf:a6:
50:3d:b6:2b:17:f9:71:42:54:60:b5:9a:17:b7:88:
a9:e1:85:82:39:9e:3d:57:56:b3:e4:29:0b:9f:d0:
68:4b:d3:bb:87:80:e7:de:eb:dc:14:43:56:0d:b7:
5e:1b:f2:3b:38:70:64:e9:cf:66:da:f1:1a:fe:3c:
ee:99:aa:bd:75:ca:41:0f:d0:d9:5b:f0:0d:f9:de:
74:d8:94:3a:31:85:95:a3:36:7b:a8:d6:df:46:37:
e0:69:a5:6f:88:76:f3:d6:ee:fa:f5:02:83:08:90:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:FE:8B:CF:8C:C2:6B:1A:0B:D4:22:83:8D:3D:DF:53:28:2C:03
X509v3 Authority Key Identifier:
keyid:AC:B5:4B:CC:49:29:1A:1F:32:B7:CE:AD:4F:29:68:82:D0:53:14:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rLVLzEkpGh8yt86tTylogtBTFJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cd2bdd-d3c4-4d60-b096-af3a685d579f/1/5-H-i8-MwmsaC9Qig40931MoLAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cd2bdd-d3c4-4d60-b096-af3a685d579f/1/rLVLzEkpGh8yt86tTylogtBTFJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.76.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:ed:23:3c:3e:af:5e:a6:87:0e:e1:e7:cb:f3:26:9a:b2:d7:
bd:89:ed:76:29:e6:8c:3c:d2:65:d5:f7:59:0e:04:dd:19:ca:
d1:ab:d3:99:63:54:d1:65:8b:2e:58:7e:94:5f:1b:12:1e:dc:
a6:28:8e:a1:45:00:10:bb:93:d4:fd:4d:11:19:74:e8:64:f6:
87:8b:b1:02:28:7a:a0:ef:f8:51:c9:49:26:2e:0f:39:ca:58:
b2:b8:04:ad:4f:60:72:3d:29:53:b7:2d:37:a5:37:8c:7d:16:
50:38:0f:89:f9:89:3a:89:c4:7e:69:06:8e:b2:25:cb:3c:9a:
cc:95:83:3d:4f:fb:8c:dd:5b:31:fb:0a:39:9c:85:43:58:31:
b0:2e:a1:83:84:0c:2e:ab:58:6f:8a:85:8f:a3:d7:c1:22:85:
b8:28:1a:50:77:8c:b8:f2:0a:70:32:70:17:33:35:15:85:70:
40:f6:9f:22:ea:de:2f:54:75:3b:f9:77:bf:49:9a:ab:1a:5b:
18:7f:b5:60:00:70:56:b4:5f:5b:e9:cc:04:3f:ee:fc:3d:03:
d1:cc:85:3e:3b:2e:62:23:50:9e:aa:a0:50:c4:d0:54:3e:95:
cc:49:a8:e7:ed:77:65:fd:d4:5e:cb:44:fe:6c:b0:33:6f:07:
b4:87:78:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org