Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/dpt2rgbrkxcwo7SEsgGlXSKuf6s.roa
File: dpt2rgbrkxcwo7SEsgGlXSKuf6s.roa (raw, json)
Hash identifier: h18zLfmhov0GHK5lF9/W06i26l5RBP/RM+nXYCV00Vg=
Subject key identifier: 76:9B:76:AE:06:EB:93:17:30:A3:B4:84:B2:01:A5:5D:22:AE:7F:AB
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 0185A146B916D49D80E131D36A418BD017D4
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/dpt2rgbrkxcwo7SEsgGlXSKuf6s.roa
Signing time: Wed 11 Jan 2023 14:40:44 +0000
ROA not before: Wed 11 Jan 2023 14:40:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12703
IP address blocks: 185.143.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 08:10:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:46:b9:16:d4:9d:80:e1:31:d3:6a:41:8b:d0:17:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jan 11 14:40:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=769b76ae06eb931730a3b484b201a55d22ae7fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9d:af:95:a4:e3:d5:e4:3f:d2:aa:dd:d7:5f:
72:ac:39:66:88:ab:ab:df:36:6c:db:87:fd:ee:0e:
6a:dd:59:6d:68:0d:58:22:bd:4a:59:74:df:ad:38:
c8:f3:74:0d:5e:28:3e:91:37:74:e1:17:6f:55:fa:
f2:1b:be:03:69:6e:03:2c:fa:67:9c:7b:48:de:0b:
77:07:50:27:bd:0a:2f:d6:29:93:98:04:70:e4:aa:
de:08:7b:46:33:a4:ba:be:5c:79:51:b2:bc:66:40:
57:25:06:94:e9:10:63:12:3d:be:14:f1:4e:78:28:
9a:bb:aa:53:65:fb:f1:57:d7:ca:3b:1f:fd:5b:a1:
91:17:1c:df:2e:dc:b2:a4:60:b1:be:6e:55:f6:6f:
eb:aa:c1:c3:14:c8:bc:5d:85:07:58:27:61:d6:fb:
bf:cf:7f:8b:be:f9:51:b7:90:a6:ae:92:fb:26:9a:
ba:92:bd:7e:f8:5d:ea:33:a9:ab:cd:20:03:c9:53:
7c:4f:47:14:8e:14:48:09:c9:0f:a9:2b:64:18:52:
78:bb:d9:65:75:a7:b6:59:ab:0d:a2:a0:67:b1:fa:
21:b5:09:43:13:0e:e7:d8:17:c4:29:91:f1:18:88:
58:f3:cf:03:e8:de:d3:52:ce:0e:82:fe:13:3c:10:
42:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9B:76:AE:06:EB:93:17:30:A3:B4:84:B2:01:A5:5D:22:AE:7F:AB
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/dpt2rgbrkxcwo7SEsgGlXSKuf6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.76.0/24
Signature Algorithm: sha256WithRSAEncryption
85:fd:92:36:3b:42:e1:b0:a0:bd:a2:56:5a:8c:55:b7:46:3e:
13:27:fe:6e:21:a4:e7:e3:e4:c1:c6:d9:a4:8d:69:2f:bd:df:
7e:6b:7b:3e:03:34:54:3e:29:94:6c:c6:f5:29:38:45:77:52:
9b:17:3a:1e:be:f8:39:cc:dc:57:2f:74:3a:26:25:97:a8:78:
46:7d:f9:3d:10:29:dc:5d:20:7d:b8:bd:19:2e:a1:00:2d:2b:
76:2e:94:c9:0f:a4:6b:82:4e:4e:47:6c:2e:ec:81:59:a8:0e:
51:f0:87:93:ce:3e:13:66:b3:d5:0e:a0:72:42:a0:83:6a:6b:
68:4c:36:8d:03:f0:d7:58:15:6e:25:c4:5b:02:20:dc:0a:f1:
67:22:97:b7:23:80:8c:4b:fb:06:8b:b9:a5:ff:c0:c3:74:75:
3b:9b:54:93:03:f0:1b:87:d5:67:bf:b9:1d:4d:df:9f:34:06:
e6:2c:d8:74:df:1b:fb:e4:d5:9f:b2:ca:4a:8a:bc:3e:2e:7c:
6b:91:d1:40:3d:16:0e:4d:66:54:4e:90:76:e8:7d:ba:bd:6b:
bc:a0:f3:4e:af:91:cf:77:5b:a8:b3:45:1b:a6:8e:f0:46:5d:
60:14:1c:df:90:a5:12:d1:c4:72:58:89:7a:58:b6:7d:b5:bd:
9b:89:b4:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:08 2024 by rpki-client on console-ams.rpki-client.org