Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/2CmwP5qZxVbchSnMzNImvXvVt20.roa
File: 2CmwP5qZxVbchSnMzNImvXvVt20.roa (raw, json)
Hash identifier: +oKZgbgH2FmzmdXmoDS7yodvq6oQ2AqQ3FYUmt6pONs=
Subject key identifier: D8:29:B0:3F:9A:99:C5:56:DC:85:29:CC:CC:D2:26:BD:7B:D5:B7:6D
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 018C3ADA9D9CF2B73BC211355EA2FAE9F601
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/2CmwP5qZxVbchSnMzNImvXvVt20.roa
Signing time: Tue 05 Dec 2023 16:40:54 +0000
ROA not before: Tue 05 Dec 2023 16:40:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.116.168.0/24 maxlen: 24
185.116.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:da:9d:9c:f2:b7:3b:c2:11:35:5e:a2:fa:e9:f6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: Dec 5 16:40:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d829b03f9a99c556dc8529ccccd226bd7bd5b76d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c7:0c:cc:7b:2b:80:45:2c:60:ed:01:20:21:
20:38:92:ac:d3:e6:5c:20:0e:aa:e5:16:21:94:c3:
62:e3:8b:bf:1d:62:af:b2:d4:cc:92:85:b7:4b:8d:
9c:4e:c8:cb:84:6a:94:6a:20:77:fe:fd:93:8d:b3:
db:bb:a4:9d:23:79:c8:9a:eb:8d:b9:6d:08:ed:01:
19:12:ae:c2:f3:a0:aa:fb:4d:bf:82:d5:ef:02:90:
cd:1c:e4:af:10:f1:7d:81:c0:47:7e:f8:82:e2:03:
eb:8f:1e:57:58:d1:c0:5d:86:b7:a4:f8:33:0f:4e:
b4:a4:5e:a9:a0:cf:c5:a1:2a:03:9e:26:b1:60:c2:
87:9f:3c:43:4a:44:f7:f7:d5:e0:ae:00:f9:07:7f:
d8:08:f9:7c:e0:75:7d:05:fb:e4:c4:3f:c5:d2:47:
df:e5:62:5f:18:99:88:fc:0c:a5:7d:bb:1b:81:0e:
d3:67:e2:d5:c9:4b:c1:83:81:e8:07:39:49:61:7f:
02:ce:ad:f4:6e:00:7e:92:e6:1e:3e:58:e2:54:b9:
fb:b0:c7:00:de:2a:d6:8a:2c:76:fa:af:63:04:87:
45:8e:fa:42:54:c5:2f:c8:62:a8:60:19:3a:b6:d3:
67:5e:b9:8a:f9:66:17:6a:15:d4:e6:35:47:70:d6:
cf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:29:B0:3F:9A:99:C5:56:DC:85:29:CC:CC:D2:26:BD:7B:D5:B7:6D
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/2CmwP5qZxVbchSnMzNImvXvVt20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.168.0/23
Signature Algorithm: sha256WithRSAEncryption
62:75:4f:48:36:c6:a1:a4:44:32:07:8d:60:60:dc:ec:3d:57:
f9:08:d2:d0:b4:9a:a8:fd:60:72:e0:b7:56:a2:e6:00:92:c5:
52:37:f4:0c:97:38:cf:b3:64:36:d0:d0:10:90:f0:2f:70:14:
11:03:67:6b:a4:6c:da:bf:9e:90:65:f6:48:3d:30:67:ec:a1:
6b:15:02:83:0f:26:9e:a3:ed:3f:a0:6f:27:b5:14:1a:42:bb:
f5:fe:91:6a:83:b0:12:74:0a:f2:36:14:01:29:8d:7c:60:90:
46:59:88:5a:5d:e9:42:96:6e:f8:25:46:54:49:97:f1:74:b6:
0b:8d:0b:26:b9:f3:d3:1b:f1:d3:49:b9:d2:f6:cc:d8:f6:1a:
55:e0:01:ae:58:f2:d4:41:2e:84:52:92:7b:f0:65:e5:8c:1c:
db:d9:79:38:80:68:6b:31:b5:b7:dc:cd:2e:13:67:ef:cf:eb:
b9:ec:42:14:96:8c:57:f0:0c:cc:da:5b:8e:c8:db:a8:b7:2f:
f4:9b:4b:a3:71:bd:2d:e1:30:56:0f:9b:9e:e7:f4:8d:59:11:
78:c1:92:f0:b1:37:5a:12:b4:20:ae:fe:02:f7:87:5f:27:fd:
19:3b:af:20:42:3b:dd:3e:66:97:97:1c:ce:16:4d:5e:d2:dd:
80:57:94:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:59 2024 by rpki-client on console-fra.rpki-client.org