Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/c0ba6f-df6f-4148-8fca-d25aaa804145/1/u6BX9h_4OX9JxqWl1JhGWPkN7ZY.roa
File: u6BX9h_4OX9JxqWl1JhGWPkN7ZY.roa (raw, json)
Hash identifier: lV8dQOcuK3JTibHl7nsm7CRg+vwS3FhPyVMGUs0Ig34=
Subject key identifier: BB:A0:57:F6:1F:F8:39:7F:49:C6:A5:A5:D4:98:46:58:F9:0D:ED:96
Certificate issuer: /CN=4540daa4c245a4725f38041402b6bffded15ea78
Certificate serial: 01856E1411D11D3F8741BDEC9A4F9FC11A68
Authority key identifier: 45:40:DA:A4:C2:45:A4:72:5F:38:04:14:02:B6:BF:FD:ED:15:EA:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUDapMJFpHJfOAQUAra__e0V6ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/c0ba6f-df6f-4148-8fca-d25aaa804145/1/u6BX9h_4OX9JxqWl1JhGWPkN7ZY.roa
Signing time: Sun 01 Jan 2023 16:04:46 +0000
ROA not before: Sun 01 Jan 2023 16:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201746
IP address blocks: 217.61.224.0/23 maxlen: 23
217.61.224.0/22 maxlen: 24
185.49.168.0/22 maxlen: 24
217.61.226.0/23 maxlen: 23
2a01:9f20::/37 maxlen: 37
Validation: Failed, certificate revoked on Mon 14 Aug 2023 21:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:11:d1:1d:3f:87:41:bd:ec:9a:4f:9f:c1:1a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4540daa4c245a4725f38041402b6bffded15ea78
Validity
Not Before: Jan 1 16:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bba057f61ff8397f49c6a5a5d4984658f90ded96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0e:45:13:74:17:92:59:b7:cc:2a:25:ba:80:
b4:c8:54:df:72:30:39:26:da:3d:df:c1:05:ad:0a:
00:55:bc:58:45:fe:43:4c:49:73:ca:7f:09:fc:c6:
ad:dc:52:b2:c5:fe:ed:ba:44:62:cc:a1:b6:f8:96:
5c:d7:e4:23:4d:d0:a2:a5:4b:b1:c5:50:e4:f9:97:
ca:9f:3c:9f:f8:d5:76:a8:d3:f9:b6:87:a0:6d:29:
9d:97:28:5b:f8:c5:b0:11:d8:9b:82:f9:a7:c9:f6:
d3:ba:23:d2:32:45:75:08:c4:be:5f:cd:59:9e:ed:
96:4e:58:af:9e:7f:92:96:c4:13:62:91:70:4b:d8:
02:5a:04:85:07:2b:b6:48:fe:ce:1c:17:7b:57:1c:
95:25:01:9a:ef:bc:81:5b:4e:3f:45:9e:18:9a:8c:
79:e1:16:91:02:f6:33:4a:2b:d5:66:26:b4:af:76:
b3:e4:55:93:c0:21:31:8d:64:01:e8:2e:9a:c7:00:
60:46:67:d0:8a:b7:26:20:d2:c1:2b:e2:4d:d1:96:
39:64:21:b5:97:45:c7:a9:61:d1:23:45:c4:cd:92:
47:6e:f9:0b:35:30:ef:17:dd:ae:25:51:20:0a:98:
df:25:93:34:8b:14:0f:23:ea:36:f4:f9:12:43:09:
24:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A0:57:F6:1F:F8:39:7F:49:C6:A5:A5:D4:98:46:58:F9:0D:ED:96
X509v3 Authority Key Identifier:
keyid:45:40:DA:A4:C2:45:A4:72:5F:38:04:14:02:B6:BF:FD:ED:15:EA:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUDapMJFpHJfOAQUAra__e0V6ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c0ba6f-df6f-4148-8fca-d25aaa804145/1/u6BX9h_4OX9JxqWl1JhGWPkN7ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c0ba6f-df6f-4148-8fca-d25aaa804145/1/RUDapMJFpHJfOAQUAra__e0V6ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.168.0/22
217.61.224.0/22
IPv6:
2a01:9f20::/37
Signature Algorithm: sha256WithRSAEncryption
13:8e:f5:ba:bf:8a:f3:f0:b2:44:6c:3e:4a:fc:b7:c0:54:43:
1d:90:01:b8:fb:3d:07:05:ca:9c:e3:9f:3b:80:20:75:bc:f8:
0e:49:93:8b:cb:df:f5:1b:10:31:59:38:eb:4f:8d:f4:fa:5f:
bf:63:c7:b4:cf:dc:2c:40:c8:12:61:cc:97:ee:ec:0a:42:6c:
2c:68:6e:a3:f3:03:d3:6d:cf:3b:ba:2a:e1:36:21:3d:c7:6f:
d4:87:61:e5:78:27:7e:c1:1c:dd:e1:21:e4:51:b2:85:2a:5c:
59:35:8b:80:18:43:b2:bd:db:8b:14:1d:b6:19:9d:98:94:86:
ac:83:6e:b9:99:cd:c4:27:64:a1:2d:23:85:24:e2:e7:e1:f4:
5e:7b:ea:4a:07:48:bd:4a:52:ae:b1:53:83:0e:c9:3d:e3:bb:
c8:9f:77:86:25:ea:8d:fc:cb:0e:02:c4:ca:74:2a:54:70:2d:
ea:09:d3:2c:e1:de:6d:ee:4d:49:80:98:bb:da:fc:ff:ca:21:
9d:78:6e:5c:98:a6:b3:0b:8c:d1:16:e3:ee:e1:a3:43:67:bd:
1a:cd:17:fc:a2:b4:60:11:ca:f3:b1:32:13:8a:d5:23:17:2b:
ba:ab:6d:67:38:d6:02:e7:46:f8:b5:68:bb:8b:9c:94:28:13:
7a:fa:38:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:27 2024 by rpki-client on console-fra.rpki-client.org