Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/1XiE6iF3uBUxYupJpwe-s2mLCyo.roa
File: 1XiE6iF3uBUxYupJpwe-s2mLCyo.roa (raw, json)
Hash identifier: 1q1w4V/wWvdtbndNHsgANKK2qIqPDDB/avjgpXV3cCI=
Subject key identifier: D5:78:84:EA:21:77:B8:15:31:62:EA:49:A7:07:BE:B3:69:8B:0B:2A
Certificate issuer: /CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Certificate serial: 01856CF868FDB5566EC61B7317EDA38801DE
Authority key identifier: 4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/1XiE6iF3uBUxYupJpwe-s2mLCyo.roa
Signing time: Sun 01 Jan 2023 10:54:57 +0000
ROA not before: Sun 01 Jan 2023 10:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1136
IP address blocks: 185.36.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:68:fd:b5:56:6e:c6:1b:73:17:ed:a3:88:01:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Validity
Not Before: Jan 1 10:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d57884ea2177b8153162ea49a707beb3698b0b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c2:0d:cb:a3:51:4b:ac:55:8c:33:1b:4f:d3:
71:2d:98:fa:22:cf:2a:2c:d2:81:fb:9d:0c:01:02:
5f:d4:92:72:ee:ed:03:52:31:ab:03:63:91:64:66:
73:4b:95:0c:cf:85:16:c3:58:3b:cf:5b:83:01:03:
86:a0:65:21:fe:fc:83:3f:81:08:19:6c:aa:70:d1:
32:08:42:45:bd:7a:f8:00:80:67:75:a3:bd:7d:3a:
9b:98:22:0b:24:13:a1:e2:33:d0:45:e9:48:30:ff:
e2:f4:90:e2:73:45:d0:7e:87:89:8b:8d:b6:82:90:
23:7f:55:ec:c8:99:29:60:81:cf:15:38:38:92:02:
03:5e:13:85:df:3d:7d:11:b5:92:94:95:24:97:a9:
76:88:3c:7e:69:92:23:ef:b1:a8:4e:5a:61:20:ef:
25:d4:8b:b7:33:54:b2:86:89:29:43:4b:36:7a:00:
03:b6:db:d3:6f:7b:dc:05:b0:91:15:b1:a6:42:76:
01:05:25:92:6e:69:73:59:5a:cb:c6:12:cd:1a:ac:
11:ee:19:35:67:1c:6d:ec:32:03:10:13:33:a0:ec:
17:ec:b6:52:99:e2:2b:8f:65:a8:06:54:ae:c1:f4:
59:87:61:98:38:83:8b:7a:90:0c:55:7e:d6:1c:0a:
e1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:78:84:EA:21:77:B8:15:31:62:EA:49:A7:07:BE:B3:69:8B:0B:2A
X509v3 Authority Key Identifier:
keyid:4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/1XiE6iF3uBUxYupJpwe-s2mLCyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.40.0/24
Signature Algorithm: sha256WithRSAEncryption
53:2b:c9:90:a6:30:ff:52:9c:7a:53:7d:78:65:8f:0d:af:56:
48:d1:1c:20:27:11:53:17:a5:5d:79:90:79:39:b3:2a:ad:40:
a2:9b:28:ed:49:6a:a1:45:86:0a:14:8a:cc:3c:d1:c3:54:74:
9c:c3:ba:14:77:43:84:dd:45:84:01:00:57:7a:33:6e:4f:00:
7a:cf:a5:e9:94:45:d4:15:80:ad:7f:24:18:d8:89:4d:6e:17:
02:5b:8f:86:a2:9a:b3:b0:63:a5:87:20:32:62:c3:0f:c6:d6:
43:4b:36:5e:0d:ec:5d:39:22:7b:da:5f:b3:f4:4d:07:83:d6:
c2:59:3e:ba:11:eb:13:3e:e7:ed:50:7f:ff:96:14:6c:21:34:
d9:a0:cd:6f:fd:5b:2e:0e:56:7a:1d:3e:d0:cb:e2:61:2c:d9:
a1:ca:42:1d:27:2d:42:e3:21:ec:36:53:df:68:1d:db:bf:e1:
82:27:4e:35:88:9c:56:8e:1f:c8:43:93:6e:aa:0d:50:bf:7b:
9f:5b:8a:0d:9a:51:ed:3c:d6:18:10:99:91:c9:bf:71:e7:38:
b8:2a:43:15:b0:a9:8d:0e:7d:42:dc:c4:70:79:e1:cf:be:7f:
e0:c1:92:96:db:f1:93:84:ca:b1:8c:cc:2b:70:b6:fb:b0:5e:
9f:23:bc:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:34 2024 by rpki-client on console-fra.rpki-client.org