Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/ac13e2-2a29-4e70-859b-6c30b8ef63b4/1/_pDsJiXc_oFyI2-u4pB5gdLckYY.roa
File: _pDsJiXc_oFyI2-u4pB5gdLckYY.roa (raw, json)
Hash identifier: c4BmfjYNn0ieeSPRmGVYLBnm7gdjGZyBVeuuku4bDYU=
Subject key identifier: FE:90:EC:26:25:DC:FE:81:72:23:6F:AE:E2:90:79:81:D2:DC:91:86
Certificate issuer: /CN=9097f97237ef366de5ab6d758eee543e08d57f5c
Certificate serial: 018B4776BF68B3D9724FB192D47D223AEBFD
Authority key identifier: 90:97:F9:72:37:EF:36:6D:E5:AB:6D:75:8E:EE:54:3E:08:D5:7F:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kJf5cjfvNm3lq211ju5UPgjVf1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/ac13e2-2a29-4e70-859b-6c30b8ef63b4/1/_pDsJiXc_oFyI2-u4pB5gdLckYY.roa
Signing time: Thu 19 Oct 2023 10:24:06 +0000
ROA not before: Thu 19 Oct 2023 10:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56986
IP address blocks: 185.228.96.0/22 maxlen: 22
2a03:bc80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:76:bf:68:b3:d9:72:4f:b1:92:d4:7d:22:3a:eb:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9097f97237ef366de5ab6d758eee543e08d57f5c
Validity
Not Before: Oct 19 10:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe90ec2625dcfe8172236faee2907981d2dc9186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:aa:9e:d8:c8:33:2c:20:0c:53:06:87:9a:4f:
ea:8f:4c:c1:f9:f6:1c:fa:c2:49:51:58:2c:0f:79:
58:d4:1d:78:2c:05:42:58:fc:42:80:66:53:60:67:
ac:53:bb:d1:4c:cc:ad:06:e7:4b:88:c4:7e:7e:87:
85:07:94:36:11:e3:2f:34:3b:55:37:aa:f7:1f:2d:
4e:60:ea:9f:5a:51:9f:06:20:6a:4a:fe:7c:e3:ef:
7c:54:39:0f:99:3d:b3:c0:90:71:e9:73:52:10:35:
3a:ee:19:30:29:eb:bb:dc:44:7c:c8:12:ff:ec:8c:
97:ea:0e:18:9b:04:99:58:b3:43:0b:4b:5a:e0:93:
80:ce:2a:b1:c2:20:51:a1:1d:82:a3:84:33:17:c9:
6d:b4:84:36:3d:5e:20:68:5e:09:05:94:b1:51:f2:
57:1d:80:81:07:1e:b9:17:8d:1e:09:a3:14:0d:82:
38:9b:09:93:83:d0:9f:0e:38:f6:24:b5:7d:ef:dc:
af:ab:c9:4b:e0:e9:b8:66:64:1c:e4:fe:13:c7:fa:
49:a3:a7:e0:6a:76:18:d6:0f:73:ea:12:a5:49:10:
88:b3:5d:6d:65:be:32:aa:99:59:02:5c:93:53:d9:
c6:f6:0e:73:87:85:f7:32:88:86:d6:31:c4:74:51:
a7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:90:EC:26:25:DC:FE:81:72:23:6F:AE:E2:90:79:81:D2:DC:91:86
X509v3 Authority Key Identifier:
keyid:90:97:F9:72:37:EF:36:6D:E5:AB:6D:75:8E:EE:54:3E:08:D5:7F:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kJf5cjfvNm3lq211ju5UPgjVf1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ac13e2-2a29-4e70-859b-6c30b8ef63b4/1/_pDsJiXc_oFyI2-u4pB5gdLckYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ac13e2-2a29-4e70-859b-6c30b8ef63b4/1/kJf5cjfvNm3lq211ju5UPgjVf1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.96.0/22
IPv6:
2a03:bc80::/29
Signature Algorithm: sha256WithRSAEncryption
6e:3f:79:ba:90:5c:22:54:37:0f:66:fe:a8:03:58:54:3e:5e:
d3:97:3d:84:e1:77:63:75:1a:3a:90:92:09:8c:df:5d:1b:b1:
6d:19:c3:f1:5d:40:a3:1e:1f:09:92:13:30:b8:ef:5e:0b:6b:
41:b2:00:6d:2c:4c:40:15:74:01:b8:29:29:20:85:69:1e:19:
87:50:3e:dc:21:a7:39:55:98:08:d7:00:8f:78:5a:42:0b:44:
41:5f:51:33:bd:dc:e5:81:b2:44:7e:54:26:af:ae:1c:b7:2d:
e8:f7:ad:aa:62:1e:5f:34:d1:29:e0:50:4d:3f:20:aa:30:8c:
e9:f5:a6:fb:34:29:22:99:c6:d2:0d:5b:87:2a:67:94:8d:7a:
7f:f1:e5:6e:4d:11:07:e0:93:19:cf:da:0f:53:c0:75:de:cb:
10:f4:ff:c9:1e:aa:f4:b9:aa:91:45:dc:61:ef:4a:a8:32:ce:
0d:51:a9:6f:5d:88:21:78:46:c9:6e:1d:b2:95:1e:a1:5f:6e:
e3:51:f7:4a:cf:e9:e4:f1:05:a3:57:4e:87:86:ea:65:fb:ef:
ae:c6:f8:b7:13:f9:d5:47:c6:52:1c:ea:1a:b8:e7:ff:4c:95:
32:59:58:73:1a:7b:f7:c3:a8:d4:6b:df:6b:e9:ea:02:e8:e5:
bf:bd:2b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:21 2024 by rpki-client on console-fra.rpki-client.org