Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/6EfqCQd-lCImY9JeJT2_-wHbGWU.roa
File: 6EfqCQd-lCImY9JeJT2_-wHbGWU.roa (raw, json)
Hash identifier: bNmUBvxBRcOLGz+cdl9Ua5uOZ9Zj5qzwZDzmRKDg4u0=
Subject key identifier: E8:47:EA:09:07:7E:94:22:26:63:D2:5E:25:3D:BF:FB:01:DB:19:65
Certificate issuer: /CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Certificate serial: 0186C5B3FFCE6C76DEC722956DEF67F93AC5
Authority key identifier: 43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/6EfqCQd-lCImY9JeJT2_-wHbGWU.roa
Signing time: Thu 09 Mar 2023 09:29:13 +0000
ROA not before: Thu 09 Mar 2023 09:29:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2060
IP address blocks: 185.136.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Mar 2023 12:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:b3:ff:ce:6c:76:de:c7:22:95:6d:ef:67:f9:3a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Validity
Not Before: Mar 9 09:29:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e847ea09077e94222663d25e253dbffb01db1965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ae:53:59:f0:9b:41:2d:5a:ad:b6:cd:46:3f:
7d:d9:2e:7a:a4:c5:8a:67:c4:35:94:7d:28:ef:63:
9b:07:ce:b7:ec:df:ba:1f:db:fc:b7:b2:c7:54:23:
f8:d9:27:2f:17:5c:9b:fb:f2:9d:87:58:89:e4:9d:
39:34:c7:74:cb:65:4a:b8:e3:d9:53:79:36:45:38:
fa:f3:78:7f:e4:3e:45:dd:aa:74:ee:fa:88:ec:7a:
3d:fb:53:9d:25:83:fc:54:7b:b2:73:9e:bc:a0:c9:
82:f9:87:a6:c0:4b:02:b8:10:1b:73:60:61:03:1e:
af:c1:64:67:09:e0:6f:3e:af:b5:21:24:e4:6c:9b:
af:50:4f:ed:91:73:2e:3a:99:d7:c8:3d:12:7a:dd:
29:02:a3:e0:25:a5:30:64:83:59:83:00:18:6a:b9:
5d:bc:2b:f5:cd:69:80:1f:00:53:d8:e2:87:e7:d3:
01:ab:65:84:0b:9f:13:75:8c:39:d4:cc:5d:e8:f5:
6f:e0:f9:01:04:21:53:d0:3a:bc:f9:07:ed:9d:aa:
60:ef:52:6c:7a:48:37:47:e1:c9:7a:04:93:aa:d0:
b5:7b:90:58:d6:3d:60:8b:fd:4c:80:ba:fa:5f:57:
34:6c:c1:18:18:7d:b7:5c:14:d8:89:7b:16:2c:8c:
61:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:47:EA:09:07:7E:94:22:26:63:D2:5E:25:3D:BF:FB:01:DB:19:65
X509v3 Authority Key Identifier:
keyid:43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/6EfqCQd-lCImY9JeJT2_-wHbGWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/Qy_9NnlukPgSoWEuwfRk3j1eLzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.133.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d2:40:4f:8c:ad:1b:63:9e:76:b3:47:67:47:d6:29:58:ee:
60:b9:af:55:3b:82:b8:b9:fc:c2:ba:73:ff:7d:bd:03:f3:de:
08:4a:16:c8:82:3d:5b:59:34:b4:27:bd:78:4c:4b:c4:5e:7d:
93:e9:83:3d:79:57:88:b7:d0:b8:d8:46:31:80:8c:ea:80:7d:
1d:82:bf:2f:55:cf:dc:75:68:7c:35:06:f1:c2:75:37:e6:45:
6c:78:d5:91:df:c0:4a:2d:4f:07:87:f9:61:2a:e2:7e:58:19:
33:2a:54:87:22:5b:bc:67:6f:7c:6b:cf:56:61:ad:7e:bf:6d:
a4:01:c1:14:49:ed:3f:2b:8a:e3:f4:24:eb:c4:86:75:d3:08:
95:f6:90:2d:fc:d3:75:de:8f:76:03:9a:1c:bc:0c:55:4b:07:
17:96:07:bb:80:44:4b:f5:74:13:b8:e8:5f:0f:71:38:d2:55:
60:c9:1d:7f:ed:0e:cd:f1:75:2f:4c:2a:64:22:5a:d9:db:ba:
6c:c2:05:dd:88:46:f9:9a:f5:6b:98:d3:05:86:67:da:01:0b:
df:7b:91:32:a6:34:d8:c3:0d:fe:16:f3:2c:01:16:87:b3:fa:
02:4a:00:d3:40:11:8e:e3:4f:1e:5b:c6:b1:d0:1f:e3:47:e4:
da:81:8f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:39 2024 by rpki-client on console-fra.rpki-client.org