Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/310388-6cf4-455d-b551-1eaa3f22df52/1/J3XdIpnA4xZAyi9oe5tsi2Kluwk.roa
File: J3XdIpnA4xZAyi9oe5tsi2Kluwk.roa (raw, json)
Hash identifier: e2k0Q4ZStb0CTYs5ZNNN2p/Pmd+QJ6efnIHjHk0uuWk=
Subject key identifier: 27:75:DD:22:99:C0:E3:16:40:CA:2F:68:7B:9B:6C:8B:62:A5:BB:09
Certificate issuer: /CN=05d089a7148b261a059e666feba59f92a268c16c
Certificate serial: 01856FB11C1712F1DD72D6A1602341052CA4
Authority key identifier: 05:D0:89:A7:14:8B:26:1A:05:9E:66:6F:EB:A5:9F:92:A2:68:C1:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BdCJpxSLJhoFnmZv66WfkqJowWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/310388-6cf4-455d-b551-1eaa3f22df52/1/J3XdIpnA4xZAyi9oe5tsi2Kluwk.roa
Signing time: Sun 01 Jan 2023 23:35:56 +0000
ROA not before: Sun 01 Jan 2023 23:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57325
IP address blocks: 185.239.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:1c:17:12:f1:dd:72:d6:a1:60:23:41:05:2c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05d089a7148b261a059e666feba59f92a268c16c
Validity
Not Before: Jan 1 23:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2775dd2299c0e31640ca2f687b9b6c8b62a5bb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:da:b9:05:5c:ac:98:07:db:49:6f:4f:0f:f8:
cf:dd:e7:0b:ea:96:c2:8a:d1:8f:c8:b8:9f:9d:b0:
b5:fe:ab:63:9f:f6:86:90:76:1b:ab:fb:48:55:c7:
aa:8e:49:f3:60:97:4e:5f:f6:83:9d:34:1e:8c:e0:
b4:35:b7:81:cd:4f:05:94:7e:a7:37:e0:3e:df:d2:
77:45:02:7c:73:bd:b1:14:11:80:0b:1c:85:7b:41:
c2:5d:97:97:3c:ba:9d:8b:0f:a8:ec:c2:d0:ca:3e:
be:89:cd:60:ff:46:da:c1:ca:14:8a:d1:e2:90:fc:
72:b0:3c:e5:30:af:1e:de:f5:44:0f:51:44:c2:52:
9c:bd:36:c0:b5:a4:9a:fa:a0:6b:52:c4:02:e8:18:
28:82:7e:c4:d9:02:1e:91:15:04:95:68:47:68:f9:
44:9f:9a:36:5e:9a:8a:0d:fd:ac:f4:49:39:6f:21:
80:95:eb:fa:ac:a8:6d:2d:c1:f8:11:69:4a:33:cb:
1a:c3:a0:ee:d3:bd:c4:f6:25:33:10:e0:9d:e2:56:
f2:e8:27:72:2b:6f:4e:57:58:a2:e9:10:e7:2e:a4:
e7:52:8c:36:58:4b:cd:9f:9d:30:a3:ec:f8:ff:79:
11:57:02:c4:85:78:0e:bb:c1:7c:cd:55:41:d1:70:
e0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:75:DD:22:99:C0:E3:16:40:CA:2F:68:7B:9B:6C:8B:62:A5:BB:09
X509v3 Authority Key Identifier:
keyid:05:D0:89:A7:14:8B:26:1A:05:9E:66:6F:EB:A5:9F:92:A2:68:C1:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BdCJpxSLJhoFnmZv66WfkqJowWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/310388-6cf4-455d-b551-1eaa3f22df52/1/J3XdIpnA4xZAyi9oe5tsi2Kluwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/310388-6cf4-455d-b551-1eaa3f22df52/1/BdCJpxSLJhoFnmZv66WfkqJowWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.60.0/22
Signature Algorithm: sha256WithRSAEncryption
46:f6:9e:2f:d1:39:ca:cf:74:f3:15:8a:19:c2:b3:da:e6:c6:
9d:78:80:30:6a:53:f9:7b:21:9b:7b:77:be:27:b3:86:93:ee:
5a:06:b5:39:3f:53:36:5d:52:31:a2:99:13:b1:d2:91:71:b8:
37:d5:cc:bb:a3:b0:27:86:76:a2:05:70:ff:4d:de:1d:6f:bd:
45:d2:c9:b6:05:9c:7d:a8:67:29:fd:a2:f2:2d:19:25:8e:b9:
83:ca:9e:6a:ab:7b:6c:77:3f:8b:bd:52:ae:55:51:5f:b2:2e:
0c:ff:94:07:32:32:28:5d:d0:24:cb:28:34:0c:d2:68:31:8d:
99:5d:29:a3:ae:5b:66:82:38:eb:ed:bc:8a:c6:c5:bc:ba:a3:
d9:c9:ca:62:41:02:47:e8:f5:65:06:f4:2f:3f:92:57:5e:00:
d2:a1:bb:c1:bd:1f:f5:f5:7c:8d:0e:66:22:db:e2:d7:d5:46:
98:1c:ca:a9:ed:34:97:47:76:fa:d3:12:10:8e:0e:65:9d:22:
80:f2:07:2d:46:3b:c9:61:a2:ff:35:ac:62:4b:f4:96:1d:72:
42:22:ca:79:f9:6f:a0:2d:dd:89:ed:be:82:4e:6c:14:d4:5d:
d4:8a:4b:2e:36:90:70:f3:58:06:3e:db:4c:6e:0c:12:63:17:
9c:5d:40:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:47 2024 by rpki-client on console-ams.rpki-client.org