Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/01bqfaThrbdtT1gfh0Ri_SXDoiM.roa
File: 01bqfaThrbdtT1gfh0Ri_SXDoiM.roa (raw, json)
Hash identifier: QViYCK6FBjrV4zTy+iCHyJXCdSWmsKAk2v12YM5GJW4=
Subject key identifier: D3:56:EA:7D:A4:E1:AD:B7:6D:4F:58:1F:87:44:62:FD:25:C3:A2:23
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 01857270F6932D835C15AD42F4107873C7F4
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/01bqfaThrbdtT1gfh0Ri_SXDoiM.roa
Signing time: Mon 02 Jan 2023 12:24:43 +0000
ROA not before: Mon 02 Jan 2023 12:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3223
IP address blocks: 185.62.188.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:f6:93:2d:83:5c:15:ad:42:f4:10:78:73:c7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Jan 2 12:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d356ea7da4e1adb76d4f581f874462fd25c3a223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ed:1d:79:f8:42:fb:d1:00:62:5c:7d:e7:e3:
04:51:0c:0d:b1:99:60:8b:53:b3:6d:f9:47:9c:ef:
2c:7e:c2:34:11:48:47:4a:0b:2c:f5:c9:96:2d:6d:
94:db:50:cf:33:ca:ea:2f:66:5e:e0:be:93:02:fb:
cd:51:6d:1c:14:e2:fc:8f:d3:cb:16:09:cd:ab:36:
02:7c:74:9b:3a:16:9c:bf:6d:c3:d8:d4:86:57:f5:
4e:3a:77:53:0c:44:c3:1e:f2:6f:a4:db:c2:09:22:
a5:a0:2f:4d:b9:19:2d:b3:1e:e0:ab:e7:9c:d6:6b:
c7:e0:e8:10:9a:1b:92:d6:19:88:d7:77:e5:87:4e:
f2:ea:16:dd:45:8b:8e:4b:7d:67:1f:34:f9:e4:c0:
d9:ff:1c:0d:dc:e1:56:0b:34:8c:f9:46:52:bb:e0:
94:45:fa:b0:8f:d3:a4:f5:b4:0d:28:0c:13:7a:99:
0a:5b:7c:be:b3:6e:87:05:dc:a6:2a:37:ad:46:0c:
c2:be:79:fe:ed:f0:ba:16:5d:f7:e1:a8:02:04:82:
b7:3c:01:c7:a0:81:fb:f4:76:28:1c:c6:3f:d5:e3:
2d:f6:d8:4e:db:df:61:e1:5e:52:1f:1c:d5:5c:8f:
e9:f0:fa:47:78:1f:14:2e:ef:81:36:e0:fd:e8:2e:
ba:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:56:EA:7D:A4:E1:AD:B7:6D:4F:58:1F:87:44:62:FD:25:C3:A2:23
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/01bqfaThrbdtT1gfh0Ri_SXDoiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.188.0/23
Signature Algorithm: sha256WithRSAEncryption
37:08:50:3b:83:a1:4f:6b:3f:2f:99:9a:c9:81:17:d4:34:4d:
c2:cb:c7:d2:31:81:aa:6f:a8:8f:5b:4f:d8:7d:5c:ea:c7:82:
05:30:35:5c:c1:97:ff:8f:2e:a4:e5:4d:02:53:f1:6c:d1:15:
7a:6c:f8:21:bb:bc:ed:b1:82:b0:79:8b:fc:62:2b:fa:6f:63:
d4:25:5f:a0:1d:38:33:85:0c:bf:f4:51:50:ae:8f:79:e2:52:
dd:7b:d5:4a:a0:d2:62:e5:85:1f:38:97:91:fd:f1:fb:38:25:
67:48:93:4b:e1:6d:6f:16:6a:e8:6e:bd:6f:55:a7:92:92:18:
fb:db:db:8e:71:ad:03:b1:32:6a:5f:a4:f5:00:ab:53:11:1e:
c6:06:27:08:76:68:3c:ea:b7:b2:ed:06:26:6c:44:ae:2f:8f:
68:52:a8:f9:ae:64:27:30:33:d5:35:7f:5e:b9:d5:d8:b3:15:
1f:1e:49:8b:bf:d1:b0:c4:c4:2f:68:43:d4:ff:74:d9:cb:96:
1b:b7:a2:82:5d:32:77:2f:8a:1c:0c:57:3c:e3:4a:71:8e:89:
b0:65:d9:80:60:b7:e2:2e:69:d7:24:cc:34:31:06:a9:d5:92:
63:78:19:ac:f7:09:5a:96:e1:24:5b:87:9a:1f:15:d0:e4:be:
09:6a:ea:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:11 2024 by rpki-client on console-ams.rpki-client.org