Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/LsEXYQpcfgSwnoCjg0H2xHV5QXE.roa
File: LsEXYQpcfgSwnoCjg0H2xHV5QXE.roa (raw, json)
Hash identifier: i6iEfNjN1QrPz7ekovoHDOD3yXIDJNBi1+/+0BW+JJk=
Subject key identifier: 2E:C1:17:61:0A:5C:7E:04:B0:9E:80:A3:83:41:F6:C4:75:79:41:71
Certificate issuer: /CN=656d33c5f16e3cdd960ae05c80d9f6f36fc553f2
Certificate serial: 01856F42CB5B938E1A75700B2AFE188D2DFF
Authority key identifier: 65:6D:33:C5:F1:6E:3C:DD:96:0A:E0:5C:80:D9:F6:F3:6F:C5:53:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZW0zxfFuPN2WCuBcgNn282_FU_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/LsEXYQpcfgSwnoCjg0H2xHV5QXE.roa
Signing time: Sun 01 Jan 2023 21:35:26 +0000
ROA not before: Sun 01 Jan 2023 21:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.219.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cb:5b:93:8e:1a:75:70:0b:2a:fe:18:8d:2d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656d33c5f16e3cdd960ae05c80d9f6f36fc553f2
Validity
Not Before: Jan 1 21:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ec117610a5c7e04b09e80a38341f6c475794171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:dc:ca:ce:b1:30:19:73:9d:af:f7:ff:0e:e4:
b1:b1:33:26:3d:f9:43:a9:88:63:bd:06:89:51:ef:
49:3a:82:2b:26:b2:88:02:4f:16:b6:8e:d9:c0:90:
8f:e7:6c:68:db:9e:0c:6b:8a:56:dd:e8:4f:fd:1d:
2e:61:7d:0c:81:1f:f0:8a:7e:f7:28:93:b2:c6:b7:
1b:33:0c:22:10:ab:b1:98:85:ca:c3:6d:42:ae:e2:
16:2f:19:c8:95:59:3f:e5:4d:ed:9e:60:d1:fb:60:
17:ec:0e:98:50:8d:2c:30:fb:f5:c7:2e:7a:3e:d9:
d1:f8:f9:35:0c:66:1d:5f:65:d6:68:c3:5c:47:69:
44:ab:d0:b5:e0:01:c5:42:e5:5c:e0:d1:4b:42:d6:
fa:e4:87:6e:1f:20:ae:e0:03:c5:03:71:c3:c5:64:
7f:31:5e:62:5f:2f:92:83:9c:6f:9c:01:67:c7:4d:
20:ce:6c:5c:30:97:09:3f:ab:e6:0b:3a:dd:ce:ce:
ba:6e:34:fc:c3:dc:d0:19:70:5c:72:4a:fa:94:dc:
3b:a6:08:05:fc:4b:b2:03:48:38:49:cb:6d:e4:fc:
1c:e8:fc:02:aa:f1:96:e5:b7:29:13:f9:b6:d0:bc:
df:02:e1:89:5b:f1:54:60:5d:d7:85:22:af:92:ba:
5c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C1:17:61:0A:5C:7E:04:B0:9E:80:A3:83:41:F6:C4:75:79:41:71
X509v3 Authority Key Identifier:
keyid:65:6D:33:C5:F1:6E:3C:DD:96:0A:E0:5C:80:D9:F6:F3:6F:C5:53:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZW0zxfFuPN2WCuBcgNn282_FU_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/LsEXYQpcfgSwnoCjg0H2xHV5QXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/ZW0zxfFuPN2WCuBcgNn282_FU_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:23:70:68:f8:2c:ae:3d:6a:a4:2d:7d:d1:06:04:78:21:ad:
55:dd:54:3f:9e:ef:5e:83:7e:fa:75:d7:47:24:c5:2e:65:47:
38:d4:35:d5:4d:37:58:92:97:2f:11:d9:ce:5a:29:71:54:8d:
1d:7c:b2:01:41:cd:8c:f4:a2:17:02:dc:08:c9:39:4c:78:9d:
1e:74:c9:86:9b:41:93:a9:7b:83:e4:75:14:54:05:06:67:29:
80:a8:95:f7:12:da:d2:31:46:6f:08:2a:6d:73:01:f6:1c:2f:
75:30:f3:4d:34:dc:18:21:7e:5a:a0:78:f2:b8:6c:14:44:8f:
b1:f8:d7:3a:33:7a:2a:f4:f7:e1:d6:d5:f2:51:8f:2c:d1:74:
e3:de:6a:ec:8f:d8:ae:df:20:5c:c9:09:b0:f7:2e:20:88:77:
6f:b6:5b:13:92:f3:87:14:83:a0:33:e3:06:c7:da:5b:ab:d7:
e3:46:34:34:d3:77:82:fa:d8:35:d7:cb:58:66:ec:a6:9e:55:
a4:a3:42:80:fc:03:a7:fa:be:8f:42:c1:07:07:77:9c:05:71:
88:db:db:b3:63:6f:74:09:37:5d:66:5c:a5:94:80:bf:2e:f4:
64:ac:49:4a:c6:03:60:06:fa:a9:e0:95:ca:cf:b2:77:72:fd:
8a:f7:b8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:02 2024 by rpki-client on console-ams.rpki-client.org