Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3dcCoWNr1cVdJPtCWDx3Tria0kw.roa
File: 3dcCoWNr1cVdJPtCWDx3Tria0kw.roa (raw, json)
Hash identifier: qwXBD4YQBl+AC0vcHS/MzaXoCWpbgHSoRI/S+xmYd+s=
Subject key identifier: DD:D7:02:A1:63:6B:D5:C5:5D:24:FB:42:58:3C:77:4E:B8:9A:D2:4C
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01856D4AD20314152D0D1C3A617BB5DFEB29
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3dcCoWNr1cVdJPtCWDx3Tria0kw.roa
Signing time: Sun 01 Jan 2023 12:24:57 +0000
ROA not before: Sun 01 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59432
IP address blocks: 185.126.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 05:12:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d2:03:14:15:2d:0d:1c:3a:61:7b:b5:df:eb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddd702a1636bd5c55d24fb42583c774eb89ad24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:85:f5:48:da:a0:75:93:2d:4f:eb:44:ce:bd:
07:36:0d:f6:83:d0:3f:e0:fb:51:95:f2:3e:db:ab:
99:2f:cf:98:de:70:dd:55:a9:b4:98:94:0b:a7:2c:
22:91:95:23:ef:3c:24:52:0a:8b:18:40:6e:db:02:
63:65:4f:f9:d8:49:32:55:93:04:db:e4:01:d2:18:
a6:fb:63:80:36:d2:b1:a2:89:4d:ba:fa:1e:2d:7d:
6b:e6:d3:30:3c:75:2d:1a:78:57:f4:3e:cb:37:1f:
a6:8c:dc:c5:8f:06:48:e5:2f:60:c0:0d:21:0d:c4:
63:07:6f:fa:ac:af:46:c9:b7:10:d2:19:db:ad:45:
64:42:7b:d0:41:92:82:db:a9:67:82:19:7d:55:67:
73:5e:3d:9d:9f:a6:4f:b3:d8:2b:02:d9:4f:c8:29:
63:fd:d8:11:be:2b:82:8d:ad:e6:77:49:fb:31:00:
43:ac:bb:9b:7a:ac:3c:12:e6:5a:3e:77:21:80:56:
9e:5f:03:50:a3:c3:af:c4:fc:46:7a:86:4a:fc:5d:
de:1f:1f:19:79:4a:57:15:f5:e9:2b:76:e3:8e:8c:
2b:c3:e2:7b:b4:18:19:1c:fc:8e:2c:a5:d9:25:1d:
c8:5d:73:65:2c:84:30:0f:2a:34:c2:95:b7:61:74:
35:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D7:02:A1:63:6B:D5:C5:5D:24:FB:42:58:3C:77:4E:B8:9A:D2:4C
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/3dcCoWNr1cVdJPtCWDx3Tria0kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.134.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:dd:3b:7b:9a:f6:8f:63:10:7c:6f:fb:f9:95:2f:58:93:db:
fc:cc:bd:d3:33:31:61:18:46:fa:c0:10:29:c1:6f:ce:b2:3b:
64:92:6e:6e:f3:d9:07:54:9d:ec:a7:47:91:0f:2b:ac:4d:83:
8c:d0:96:a9:c5:20:1c:d2:da:fd:3d:8a:28:be:32:ad:8f:dc:
1e:31:5b:eb:a6:57:2c:66:ba:94:20:ba:1c:83:e7:d4:fa:46:
9f:12:42:ec:4b:7c:2a:0d:6c:04:8f:6e:17:4d:96:f0:cd:0f:
be:8c:0c:5c:90:6f:7b:96:5b:a9:b7:e3:01:5b:73:e5:c4:8f:
5d:1f:05:84:19:47:a2:25:16:05:14:35:a5:4a:a0:61:32:24:
cb:69:7e:d0:6d:62:f0:3b:35:69:43:5c:90:56:d3:c0:0d:2f:
3b:1d:2a:0a:23:b1:54:17:fd:d8:93:8d:cb:03:a9:ce:f3:22:
f1:16:08:ea:45:f9:89:39:1e:6e:a5:ae:03:04:33:36:60:5b:
da:0e:30:cc:a3:45:fd:13:b2:dc:e8:37:8d:b1:c8:43:12:66:
f3:d8:6d:3b:17:03:6b:96:4c:c5:26:19:91:08:c7:46:3a:bf:
95:e1:c2:1b:fa:93:86:14:60:87:8e:00:5c:c0:71:e8:db:ab:
48:1c:15:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org