Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/1Qhiuy1xxgcZE1xzekqTJDr0bbA.roa
File: 1Qhiuy1xxgcZE1xzekqTJDr0bbA.roa (raw, json)
Hash identifier: a3Mea+YSm5l9QF1w8HUxvzcOCgmYS3kJaIseUfxKE2c=
Subject key identifier: D5:08:62:BB:2D:71:C6:07:19:13:5C:73:7A:4A:93:24:3A:F4:6D:B0
Certificate issuer: /CN=9bbc03f6c5a284fa00dbb5aa609c515b7c589969
Certificate serial: 01856F797CD228B46B9C91C501ECA092F483
Authority key identifier: 9B:BC:03:F6:C5:A2:84:FA:00:DB:B5:AA:60:9C:51:5B:7C:58:99:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7wD9sWihPoA27WqYJxRW3xYmWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/1Qhiuy1xxgcZE1xzekqTJDr0bbA.roa
Signing time: Sun 01 Jan 2023 22:35:10 +0000
ROA not before: Sun 01 Jan 2023 22:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.122.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:7c:d2:28:b4:6b:9c:91:c5:01:ec:a0:92:f4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbc03f6c5a284fa00dbb5aa609c515b7c589969
Validity
Not Before: Jan 1 22:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d50862bb2d71c60719135c737a4a93243af46db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fe:75:cb:ef:8f:a7:96:cf:40:c0:62:7b:36:
6b:67:a1:15:62:b8:cb:b8:84:04:6e:2f:9a:f8:33:
a3:3d:d0:43:a7:3b:e5:6d:11:1c:5b:8d:2d:58:83:
69:48:b2:c2:76:26:cc:25:d0:0a:df:df:32:12:74:
0d:01:22:89:2c:9b:b3:c0:8a:98:d4:69:d7:6d:67:
c3:ac:86:5f:b6:93:d6:cb:5f:f5:ef:46:a0:92:b9:
67:e1:a3:48:27:be:27:73:c2:dc:5b:dc:23:9e:1e:
02:af:00:a2:5e:7a:60:f9:41:e9:50:29:19:ff:61:
b3:ef:55:e3:dd:48:29:2e:0f:f2:76:a4:76:d2:b2:
1f:fe:44:8a:ac:c0:5f:19:83:52:5a:8a:a5:d1:fc:
92:3d:dd:2e:d2:a7:cc:72:7e:bc:41:ea:5d:28:ed:
ec:4d:f5:0c:97:76:d9:9c:14:ca:ac:f5:d3:28:6c:
75:c7:c2:48:81:0b:7f:a5:06:a3:c2:9f:f0:ad:8a:
69:d7:17:8e:e1:59:c4:50:21:6c:d4:6a:43:ad:e7:
38:5c:5e:2e:8b:00:5f:fc:bc:f4:fe:f4:1c:38:24:
35:36:20:97:8a:ee:6f:5a:8e:aa:06:f7:4d:e6:1f:
6d:cf:63:8c:bc:90:2b:b7:82:82:76:77:ca:dc:28:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:08:62:BB:2D:71:C6:07:19:13:5C:73:7A:4A:93:24:3A:F4:6D:B0
X509v3 Authority Key Identifier:
keyid:9B:BC:03:F6:C5:A2:84:FA:00:DB:B5:AA:60:9C:51:5B:7C:58:99:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7wD9sWihPoA27WqYJxRW3xYmWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/1Qhiuy1xxgcZE1xzekqTJDr0bbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/m7wD9sWihPoA27WqYJxRW3xYmWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.214.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a6:3e:07:e8:cb:6b:95:f0:b2:1b:96:2d:20:af:a6:f3:10:
2e:e4:93:39:7b:38:f0:11:b2:ad:31:26:88:80:01:49:a4:3c:
ff:f0:d3:13:7b:64:4f:39:ec:04:08:a8:7d:ef:2e:44:76:bb:
9e:91:84:10:4a:ba:e8:e1:a3:f2:3a:94:c9:b1:f2:22:28:9d:
3a:c3:7e:ae:55:2e:5e:bc:a4:d7:a6:df:a7:e1:7e:61:79:b7:
e5:39:90:89:f0:1a:01:d1:5b:e9:4c:a0:f6:cc:5a:a5:b4:b7:
90:88:d9:c0:e8:ce:46:55:bb:c4:f7:c3:30:74:ee:2a:68:5a:
a9:90:b4:60:47:39:1e:8e:77:46:6b:d4:b8:95:7e:b7:df:6c:
00:a1:cd:d7:86:6d:58:44:b2:b5:4a:55:c9:39:54:79:1c:2c:
96:97:10:a4:1d:0d:f6:d4:84:e6:53:43:c5:aa:70:53:95:0e:
28:2a:c2:72:1a:c0:6a:4c:9f:89:7a:57:94:30:00:e5:86:c6:
f4:1e:c2:19:f2:d7:29:fd:d0:47:f1:fa:38:1e:5c:0b:c4:19:
ac:92:c3:e9:85:b5:9c:8f:2b:47:8c:05:89:07:4f:17:24:56:
bf:3f:b2:f3:d5:a7:f5:46:3d:10:d3:b5:c3:9f:dc:7e:0c:de:
a7:28:e0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:21 2024 by rpki-client on console-ams.rpki-client.org