Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/EdU03QMX-NvZ4CTHsyWd3RS1OwQ.roa
File: EdU03QMX-NvZ4CTHsyWd3RS1OwQ.roa (raw, json)
Hash identifier: ZYpUvx8Y6DKOgYDvRks1JBd4LenB3l6peE1UKP2kcCg=
Subject key identifier: 11:D5:34:DD:03:17:F8:DB:D9:E0:24:C7:B3:25:9D:DD:14:B5:3B:04
Certificate issuer: /CN=4c3393b2a1bd7919859807838ab1e3b0037b8b4f
Certificate serial: 01856DB87AD6DCC1D585E0AD10F5E850CE23
Authority key identifier: 4C:33:93:B2:A1:BD:79:19:85:98:07:83:8A:B1:E3:B0:03:7B:8B:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDOTsqG9eRmFmAeDirHjsAN7i08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/EdU03QMX-NvZ4CTHsyWd3RS1OwQ.roa
Signing time: Sun 01 Jan 2023 14:24:44 +0000
ROA not before: Sun 01 Jan 2023 14:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208138
IP address blocks: 185.251.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:7a:d6:dc:c1:d5:85:e0:ad:10:f5:e8:50:ce:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3393b2a1bd7919859807838ab1e3b0037b8b4f
Validity
Not Before: Jan 1 14:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11d534dd0317f8dbd9e024c7b3259ddd14b53b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:2d:4a:6b:90:87:20:3b:ee:e5:9f:b2:35:
3e:4a:e1:4b:5a:c1:fa:75:89:c3:3a:81:2f:90:bd:
7b:8f:93:10:18:27:41:c9:0c:8f:b2:06:10:37:ac:
7b:fc:44:b7:cf:e4:ac:14:8d:1e:2a:0b:5e:68:fe:
96:42:a3:f6:47:b0:85:8c:a8:2b:05:df:69:22:57:
0a:02:62:e0:8e:0b:e7:64:00:d1:37:1e:7f:ab:33:
66:15:fa:f3:0d:39:d6:98:e6:2e:24:5c:72:94:7f:
ce:3e:4c:b1:e8:3a:4e:0d:f1:66:27:06:4c:92:df:
9c:33:ad:15:41:98:51:a5:4d:81:b7:0a:60:b0:70:
3e:7f:e6:02:b3:7e:84:19:5a:40:7a:69:75:15:1b:
d8:6b:fc:f9:5a:62:46:30:b5:e3:60:b2:ec:e1:12:
0a:94:bb:9c:1b:64:4c:89:68:56:30:de:d8:06:b7:
1e:3a:4d:eb:2a:8b:36:31:4c:ad:ed:ed:36:14:fc:
98:f8:6d:1e:e6:9a:9a:22:3e:9e:77:b7:f9:37:b3:
2c:1e:97:ee:d0:70:a9:08:ea:66:f5:77:d4:93:f5:
d9:cf:b0:a0:3d:c1:58:35:6e:d9:f9:9c:83:05:1a:
8c:78:eb:7f:83:83:4b:fa:f8:7f:3f:40:df:00:d2:
9b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D5:34:DD:03:17:F8:DB:D9:E0:24:C7:B3:25:9D:DD:14:B5:3B:04
X509v3 Authority Key Identifier:
keyid:4C:33:93:B2:A1:BD:79:19:85:98:07:83:8A:B1:E3:B0:03:7B:8B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDOTsqG9eRmFmAeDirHjsAN7i08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/EdU03QMX-NvZ4CTHsyWd3RS1OwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/TDOTsqG9eRmFmAeDirHjsAN7i08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.40.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:c4:a7:21:62:5d:e8:66:f4:0f:e7:54:c2:6e:5c:19:2c:5a:
95:fd:b5:9f:92:87:3d:16:63:05:a2:ce:5c:8d:6f:5e:aa:4e:
3d:d7:d5:cb:56:60:67:d2:1c:84:22:d5:ea:bc:6e:e0:7d:6a:
ae:0d:61:a6:82:3d:ea:9c:ed:06:6c:d7:30:d5:8b:5f:47:2c:
d7:7e:35:9b:6b:10:52:97:65:87:63:92:46:60:80:22:32:71:
36:c6:f1:6d:54:cc:24:8b:9b:dd:44:67:5b:4d:81:ef:69:a5:
72:72:0f:7f:24:6d:16:4a:45:51:0a:c0:39:3c:73:18:23:6c:
de:58:00:5c:10:f7:b9:ba:8e:1d:bc:50:86:7b:1a:14:b5:cf:
08:a0:5e:57:b6:3f:3e:71:75:85:f0:39:da:a0:06:f0:96:ea:
ab:13:97:87:bc:30:52:58:3e:63:cb:41:b4:0d:43:3a:d1:f1:
24:21:a2:80:04:46:ff:9f:57:d0:b8:dc:df:57:ec:83:59:5e:
f2:27:c2:59:cc:b7:f9:9b:e3:41:04:81:4c:f0:3b:b3:f6:d1:
59:a3:0e:17:a8:03:7c:6c:d2:47:9b:66:f8:f3:b6:98:3e:ca:
9e:85:e4:47:1b:86:51:ee:56:23:c4:41:fd:02:6c:8e:0f:fa:
b5:88:03:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:11 2024 by rpki-client on console-fra.rpki-client.org