Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/dGFbpenu9cxF97DjOw8mlPCxumY.roa
File: dGFbpenu9cxF97DjOw8mlPCxumY.roa (raw, json)
Hash identifier: ZU+k/9IY6UVJ6Ly/YMhujsKCsv7+Goa+t1hN5N4EtZk=
Subject key identifier: 74:61:5B:A5:E9:EE:F5:CC:45:F7:B0:E3:3B:0F:26:94:F0:B1:BA:66
Certificate issuer: /CN=6f4232c19d0a7f7ed769c4715421e6cc18bdb640
Certificate serial: 01857139E93FF62C66C8F6FC2F5EF30376AA
Authority key identifier: 6F:42:32:C1:9D:0A:7F:7E:D7:69:C4:71:54:21:E6:CC:18:BD:B6:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0IywZ0Kf37XacRxVCHmzBi9tkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/dGFbpenu9cxF97DjOw8mlPCxumY.roa
Signing time: Mon 02 Jan 2023 06:44:58 +0000
ROA not before: Mon 02 Jan 2023 06:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.38.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e9:3f:f6:2c:66:c8:f6:fc:2f:5e:f3:03:76:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f4232c19d0a7f7ed769c4715421e6cc18bdb640
Validity
Not Before: Jan 2 06:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74615ba5e9eef5cc45f7b0e33b0f2694f0b1ba66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:d9:44:b0:cb:0a:93:2e:5a:36:7c:61:b0:
38:85:40:88:2b:4b:c3:61:83:b6:cd:db:8b:ae:20:
3c:18:5a:36:59:69:f7:ca:8d:0b:c0:e2:b8:7d:bd:
7f:1e:50:9d:61:52:87:60:3c:21:4f:d0:dd:41:b1:
59:e1:d1:5a:bd:d3:34:bd:2a:9e:52:20:88:0b:68:
43:c6:3f:58:e2:8d:1f:54:a6:3e:cc:ad:99:d9:c8:
d4:4f:f7:2f:a7:4a:9a:fa:b2:e8:e2:b9:9a:b6:5d:
ae:28:1c:49:e5:38:7c:bc:fa:6d:ca:64:38:07:b4:
e1:d9:47:9c:a1:ea:39:ce:aa:7b:ab:27:83:af:df:
f9:c8:c9:b3:53:81:7d:ad:56:bb:30:26:17:7d:e4:
f4:f9:48:eb:d2:b0:e2:0b:71:71:45:a9:8a:79:73:
03:07:ca:13:a5:d6:d2:6d:6f:dc:ee:e4:f0:ea:e1:
4c:97:cc:9c:c3:7d:1e:c8:17:3f:a3:20:94:5c:f2:
5c:ca:a2:39:f2:86:1b:5b:67:2c:79:73:01:ef:26:
dc:1b:c5:4a:35:4e:f4:ad:b5:08:55:73:53:b5:a3:
15:2a:34:40:a0:a6:51:db:8e:79:5f:cc:8b:15:ec:
e9:60:60:76:d4:7b:af:70:14:d4:d4:cd:41:60:69:
85:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:61:5B:A5:E9:EE:F5:CC:45:F7:B0:E3:3B:0F:26:94:F0:B1:BA:66
X509v3 Authority Key Identifier:
keyid:6F:42:32:C1:9D:0A:7F:7E:D7:69:C4:71:54:21:E6:CC:18:BD:B6:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0IywZ0Kf37XacRxVCHmzBi9tkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/dGFbpenu9cxF97DjOw8mlPCxumY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/b0IywZ0Kf37XacRxVCHmzBi9tkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.134.0/24
Signature Algorithm: sha256WithRSAEncryption
41:1e:43:46:e3:da:44:00:bd:45:da:de:7b:a1:ca:09:6e:f9:
ed:96:74:47:e4:c9:15:b2:c0:fb:bd:fb:d5:c2:82:fc:4e:db:
f2:ab:0b:3a:50:b7:1d:45:0b:3c:96:0d:56:01:f7:8c:e1:37:
b1:79:d9:47:c5:ff:b9:33:03:21:31:db:b1:8f:8b:c8:a5:e3:
cd:4d:94:a3:48:0c:21:5b:b7:fb:6d:10:57:82:f0:15:3e:3c:
0f:a0:1e:dd:e1:5c:68:96:8c:21:a1:c1:6c:44:b9:ed:2a:5b:
f3:ff:f3:4b:84:5d:94:a6:ce:35:00:0a:87:c2:44:25:42:6f:
b0:b5:37:f4:c9:18:36:80:95:3e:29:eb:c9:b8:75:85:53:2e:
f7:f1:64:b1:e4:4c:ff:d1:a5:84:d9:8f:b4:34:4b:3d:12:9b:
44:54:0d:b5:f5:6b:04:5a:ca:cc:88:0f:56:da:38:1d:a2:ea:
a9:da:96:88:19:8c:74:0f:f6:87:38:f7:a6:50:a4:9b:c5:78:
55:1a:8a:a0:c5:9f:5a:e0:d9:02:69:eb:e8:96:0a:ad:a8:d3:
c5:40:e3:6c:37:6e:57:d4:44:8f:39:ac:ce:bb:5d:66:7c:df:
b0:9a:23:ac:4f:31:f7:b2:00:e4:47:fb:cf:27:01:b4:d5:3a:
f6:1d:63:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:24 2024 by rpki-client on console-fra.rpki-client.org