Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/LIvKY-PxJ9gvAAMWsk7AnZIr1qQ.roa
File: LIvKY-PxJ9gvAAMWsk7AnZIr1qQ.roa (raw, json)
Hash identifier: PBAK7GxhIACpaG1YjXwY7e6LLzHVEO0mW7uLaspwEnQ=
Subject key identifier: 2C:8B:CA:63:E3:F1:27:D8:2F:00:03:16:B2:4E:C0:9D:92:2B:D6:A4
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 018571FA1E3B665AEC6B70A645085C1B02C6
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/LIvKY-PxJ9gvAAMWsk7AnZIr1qQ.roa
Signing time: Mon 02 Jan 2023 10:14:54 +0000
ROA not before: Mon 02 Jan 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203226
IP address blocks: 185.174.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 16:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:1e:3b:66:5a:ec:6b:70:a6:45:08:5c:1b:02:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 2 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c8bca63e3f127d82f000316b24ec09d922bd6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ae:ff:3b:2b:9b:b0:c7:69:d6:a9:c3:bb:d0:
4a:78:b4:74:3d:0b:84:f7:19:a4:07:8c:56:97:7a:
99:41:19:cf:8b:e7:02:05:d3:d9:83:14:00:e7:c2:
9d:e2:89:c9:da:05:92:45:01:af:ac:33:c1:e5:e8:
e7:81:0a:ce:c7:16:e1:ad:38:82:29:f5:b2:f2:0e:
ca:5e:08:12:5d:72:de:8f:fe:0d:8f:3c:60:8b:7e:
4c:a3:64:eb:9d:2f:16:89:00:9a:63:11:b8:92:53:
db:f4:d1:b6:aa:11:49:63:56:cb:da:d9:2e:3d:c9:
f4:89:71:9f:b1:e5:95:48:9d:97:51:80:c8:65:e2:
3b:f9:30:1c:e5:f2:f0:70:41:bb:66:48:3d:a2:db:
f6:7f:8f:56:a8:da:8f:36:a1:52:0b:d8:14:ea:93:
3d:84:ab:15:0b:38:37:4b:9c:cd:7b:6a:86:3f:77:
33:3f:a1:1d:69:d2:f7:2f:25:8d:49:0c:15:ca:5a:
d8:aa:b9:cc:52:44:21:aa:3b:96:a3:7b:6c:2a:5d:
9b:78:cf:52:34:ae:1b:8a:ec:ae:c4:7f:60:ce:b6:
bc:f5:ce:bd:f7:67:d1:80:32:1d:d1:05:07:a9:1a:
b1:6a:e4:42:43:eb:9c:8b:88:73:28:d8:08:69:a1:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8B:CA:63:E3:F1:27:D8:2F:00:03:16:B2:4E:C0:9D:92:2B:D6:A4
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/LIvKY-PxJ9gvAAMWsk7AnZIr1qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.40.0/24
Signature Algorithm: sha256WithRSAEncryption
79:75:59:69:75:e3:a6:6a:d0:08:47:2d:04:d4:1f:b8:a2:bf:
a6:6a:27:07:9e:1a:e8:e7:b1:d4:c6:d0:75:19:39:79:14:e5:
ee:83:f8:3a:bd:4a:3b:18:0b:9b:6b:4b:f0:73:69:da:4d:c3:
ef:32:af:7a:e8:41:bc:55:e0:11:41:ec:cd:34:fe:d4:bd:83:
ce:fa:b2:d3:a0:af:f5:6a:d4:85:54:e9:cc:76:06:cf:24:40:
d4:c0:35:b6:09:f1:45:e7:fb:57:ea:1d:37:89:ff:ac:9e:8b:
94:28:bc:e4:cf:10:96:ce:d5:00:3c:23:f8:cc:69:e9:bb:48:
8a:06:98:2e:f0:02:a2:1f:26:bc:3e:ca:f4:3b:61:8c:a7:d7:
ec:a0:a0:91:9b:b8:d3:7b:fd:9b:23:6d:33:e7:7b:f2:c3:55:
d8:76:ae:96:bd:23:25:f8:b2:93:c8:e9:b4:04:80:ee:2d:c0:
75:86:c0:fa:02:b7:df:4f:e0:2b:07:d2:c5:91:65:3b:4d:5d:
7a:12:f6:08:2a:f8:0c:56:42:09:32:60:74:d8:82:8d:ed:bf:
65:ae:f6:f9:b2:ff:04:a5:d5:55:28:1a:6f:92:a9:1b:56:f8:
59:f9:f1:4e:93:3e:b8:33:3c:ec:73:b0:52:6e:c7:e9:e9:54:
11:9a:e2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:27 2024 by rpki-client on console-fra.rpki-client.org