Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3ae56e-bf96-4896-a68d-9cff8496e334/1/t5lWDm7YXnG5zL09PW7RzaE-llc.roa
File: t5lWDm7YXnG5zL09PW7RzaE-llc.roa (raw, json)
Hash identifier: 5ylhR9HZl1aTK2nbk4pkrEi//dmm4Pif0iHySJwqBA0=
Subject key identifier: B7:99:56:0E:6E:D8:5E:71:B9:CC:BD:3D:3D:6E:D1:CD:A1:3E:96:57
Certificate issuer: /CN=4bbbc1069775a804806b50baed7ece848abde8a7
Certificate serial: 01856DC1DC007BFE3DAF6099EA485D6846D5
Authority key identifier: 4B:BB:C1:06:97:75:A8:04:80:6B:50:BA:ED:7E:CE:84:8A:BD:E8:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S7vBBpd1qASAa1C67X7OhIq96Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3ae56e-bf96-4896-a68d-9cff8496e334/1/t5lWDm7YXnG5zL09PW7RzaE-llc.roa
Signing time: Sun 01 Jan 2023 14:34:59 +0000
ROA not before: Sun 01 Jan 2023 14:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206169
IP address blocks: 185.194.152.0/24 maxlen: 24
185.194.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:dc:00:7b:fe:3d:af:60:99:ea:48:5d:68:46:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bbbc1069775a804806b50baed7ece848abde8a7
Validity
Not Before: Jan 1 14:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b799560e6ed85e71b9ccbd3d3d6ed1cda13e9657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ec:57:41:92:c7:ce:74:2d:b5:70:b7:e4:47:
b5:84:f2:6b:d0:33:dd:30:64:87:5c:b1:c4:cd:5d:
d3:3a:cc:31:ce:b2:c9:28:e9:45:a2:d6:01:03:a8:
76:4d:ce:6a:2d:5c:36:f7:f0:bf:d4:6f:0e:4c:25:
64:aa:00:09:a0:ce:39:d8:b3:2b:0b:cb:2b:7e:4e:
96:81:79:6b:91:a4:ba:fa:cb:bd:cf:60:70:8c:75:
6b:97:07:c3:67:03:92:b9:82:cc:01:5a:2c:ae:86:
41:5e:a7:e6:3c:39:9a:be:01:18:ee:ee:f7:e0:03:
f7:40:25:4a:97:64:95:40:0c:48:b5:bc:94:49:05:
7d:69:f9:64:32:75:dd:19:1f:d1:5c:f1:d3:8e:8a:
67:11:6a:54:54:ee:1d:60:4e:5d:9f:56:c9:e4:d7:
f7:de:3d:32:e1:ec:70:5f:31:1a:f5:8a:ad:91:a6:
8e:80:5b:63:dd:5d:38:4f:77:3e:97:2a:d7:18:76:
4c:d1:18:f7:f3:06:60:9a:82:a4:55:70:9b:b0:74:
9b:83:13:3e:15:37:60:a0:99:aa:4f:00:dc:00:f1:
fa:08:d2:dc:11:17:22:0d:f2:51:6d:95:61:da:9e:
72:81:2b:1c:e7:a5:be:0f:bd:56:f7:ed:f2:a1:76:
34:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:99:56:0E:6E:D8:5E:71:B9:CC:BD:3D:3D:6E:D1:CD:A1:3E:96:57
X509v3 Authority Key Identifier:
keyid:4B:BB:C1:06:97:75:A8:04:80:6B:50:BA:ED:7E:CE:84:8A:BD:E8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S7vBBpd1qASAa1C67X7OhIq96Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3ae56e-bf96-4896-a68d-9cff8496e334/1/t5lWDm7YXnG5zL09PW7RzaE-llc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3ae56e-bf96-4896-a68d-9cff8496e334/1/S7vBBpd1qASAa1C67X7OhIq96Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.152.0/23
Signature Algorithm: sha256WithRSAEncryption
95:22:a3:a7:f6:61:e9:50:d8:34:bb:9a:ba:81:44:46:1b:00:
18:10:3a:85:5d:77:19:d1:8a:16:38:02:76:a5:db:e5:59:bd:
87:48:9c:09:90:a1:06:8b:14:d6:a2:cb:a6:25:a7:ac:0d:48:
f3:eb:65:32:62:92:ad:d1:66:37:46:2a:db:30:be:df:ff:ce:
95:55:2a:4b:13:a3:d4:5a:83:d0:50:d2:e8:4d:40:f4:28:4f:
92:62:44:88:c9:05:4d:af:d3:31:c6:9b:f5:77:da:7e:70:f0:
b9:e5:97:8d:92:4d:72:40:e0:da:da:72:56:6c:10:3d:91:91:
ed:65:12:96:7c:9d:93:fb:ad:2e:d5:78:9a:14:d2:9f:a2:c1:
fc:ba:1f:aa:92:40:16:d5:75:00:52:a6:63:a6:02:a1:c5:cb:
44:16:e8:c1:56:d6:44:d7:ce:56:07:6b:d3:89:ea:6c:4e:1b:
57:e1:d1:a5:36:27:0b:d8:9a:d5:03:8c:9f:ca:46:a5:93:6b:
3a:9f:d9:16:3b:ef:94:0e:d2:90:ef:aa:1c:dd:6b:2f:d0:1a:
07:8a:d2:03:4b:0b:a9:09:52:88:95:e0:dd:c5:7b:0c:40:39:
f7:76:f3:8c:e5:f5:a4:5c:1d:28:44:76:fe:f3:bb:59:1e:5d:
bb:dc:40:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:24 2024 by rpki-client on console-ams.rpki-client.org