Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Z6jO_dFPx0ImkbZLYNag8Khoo8M.roa
File: Z6jO_dFPx0ImkbZLYNag8Khoo8M.roa (raw, json)
Hash identifier: kBFLDJdfq+doidnhhrlnK0ecJLKHRQA9kG15tbOS1YI=
Subject key identifier: 67:A8:CE:FD:D1:4F:C7:42:26:91:B6:4B:60:D6:A0:F0:A8:68:A3:C3
Certificate issuer: /CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Certificate serial: 01856F1D9DFBD378F7BE4ADF2EFB39D784A1
Authority key identifier: 54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Z6jO_dFPx0ImkbZLYNag8Khoo8M.roa
Signing time: Sun 01 Jan 2023 20:54:50 +0000
ROA not before: Sun 01 Jan 2023 20:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60267
IP address blocks: 185.87.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:9d:fb:d3:78:f7:be:4a:df:2e:fb:39:d7:84:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Validity
Not Before: Jan 1 20:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67a8cefdd14fc7422691b64b60d6a0f0a868a3c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bc:aa:c8:91:f3:71:ac:e0:27:e6:3c:06:98:
65:7d:f9:70:31:cc:54:e9:de:66:1f:08:6f:4d:49:
27:44:3d:99:24:4f:0b:76:09:32:f9:28:a8:4c:e3:
0c:71:ed:75:cd:22:19:67:cd:c5:dc:ce:61:01:f5:
31:eb:bc:98:68:d0:9a:61:c6:ac:89:3d:41:db:85:
1a:bd:56:82:c6:e7:d8:90:eb:1f:0a:bc:75:0b:74:
29:1d:64:f0:ad:bb:f8:36:5b:0d:e2:58:8c:e6:f4:
02:a2:44:20:15:7e:cd:df:f7:ce:34:8f:81:bb:4b:
25:a5:ab:e1:55:8f:cf:ab:58:25:50:9d:1c:8b:01:
c7:fb:b7:51:c2:e9:39:50:17:bb:51:53:72:0c:81:
fe:e3:21:76:8e:7e:15:ce:65:a7:bc:2d:22:52:52:
5e:97:57:77:a8:d4:db:c5:b8:0f:f7:44:41:fa:45:
51:92:2c:38:f6:9a:81:4c:1a:bd:fc:ce:9a:72:77:
bd:51:a6:9e:55:0b:7d:e3:c1:3b:2b:e2:d3:3a:95:
93:c9:b4:87:0f:b8:47:cd:c4:2a:c4:cc:d4:1d:13:
df:bd:8b:67:4a:e9:8d:35:38:3c:4f:ad:13:46:0f:
18:3c:34:36:62:c4:ad:38:d8:bf:cc:45:b4:04:3e:
4c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A8:CE:FD:D1:4F:C7:42:26:91:B6:4B:60:D6:A0:F0:A8:68:A3:C3
X509v3 Authority Key Identifier:
keyid:54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/Z6jO_dFPx0ImkbZLYNag8Khoo8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/VNb_E0vWVvDOFNQQsCvsVR62miw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.96.0/22
Signature Algorithm: sha256WithRSAEncryption
47:35:d0:45:9b:8d:32:16:ec:0e:8e:b3:7c:e6:4c:b9:7f:b3:
59:e2:89:ca:12:34:93:8c:74:6d:aa:20:25:7f:d2:7c:57:d4:
1e:1c:6d:43:31:0c:af:55:7b:4c:a5:0a:01:10:65:53:aa:d0:
55:21:92:fe:5f:1a:ca:78:4e:3e:56:1a:0e:cd:9e:88:04:e2:
3b:fb:cb:7e:9c:18:5e:56:69:ed:43:ed:1c:de:3c:fc:80:bf:
8b:9b:4e:28:d5:8e:d8:fe:f5:71:84:04:a4:7c:9d:db:58:b2:
7a:94:74:82:12:85:f5:36:fe:ee:c7:08:f8:66:92:b4:f4:b1:
14:4d:4b:32:52:17:cf:0d:ef:04:06:f6:92:9d:dd:af:95:6c:
68:66:f5:54:96:8d:b6:3f:a4:12:b1:89:9e:98:a2:dc:26:ba:
6a:28:cc:42:8e:56:f2:7b:93:ef:0b:e5:d7:3d:b3:88:87:6c:
ce:1b:3a:6f:40:a9:b0:1e:5b:3b:86:40:74:fd:b3:99:1c:0f:
ea:b4:3f:e6:1e:e6:0d:2d:15:17:5e:d6:5b:46:0a:06:1b:af:
80:38:ad:21:da:d5:b5:b8:ab:23:ac:8d:c0:8d:9b:1a:6f:d3:
5d:2f:7c:f5:8c:93:fa:8b:5e:7f:9e:e3:8f:eb:0b:85:bb:c3:
b1:0b:b2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:35 2024 by rpki-client on console-fra.rpki-client.org