Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/C19rAG2gik-RtpH-RsH1fhyhC60.roa
File: C19rAG2gik-RtpH-RsH1fhyhC60.roa (raw, json)
Hash identifier: 3l77/b+hPljUYjguYmIiBW0SnA3PILwWFHDJKoNVIjM=
Subject key identifier: 0B:5F:6B:00:6D:A0:8A:4F:91:B6:91:FE:46:C1:F5:7E:1C:A1:0B:AD
Certificate issuer: /CN=5002a33f5ec6680591c097fdb4aba0e028f40845
Certificate serial: 0185703961EA0D1B30D7AB92790BECEE063F
Authority key identifier: 50:02:A3:3F:5E:C6:68:05:91:C0:97:FD:B4:AB:A0:E0:28:F4:08:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAKjP17GaAWRwJf9tKug4Cj0CEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/C19rAG2gik-RtpH-RsH1fhyhC60.roa
Signing time: Mon 02 Jan 2023 02:04:46 +0000
ROA not before: Mon 02 Jan 2023 02:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58127
IP address blocks: 185.185.112.0/22 maxlen: 22
185.185.112.0/24 maxlen: 24
185.185.115.0/24 maxlen: 24
185.185.114.0/24 maxlen: 24
185.185.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:61:ea:0d:1b:30:d7:ab:92:79:0b:ec:ee:06:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5002a33f5ec6680591c097fdb4aba0e028f40845
Validity
Not Before: Jan 2 02:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b5f6b006da08a4f91b691fe46c1f57e1ca10bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:f6:cf:48:a8:73:a8:9b:d9:f1:c6:f0:5c:
59:a1:6b:e5:be:3c:e1:c7:06:e5:41:62:a4:98:26:
46:7d:39:0c:96:8a:8f:86:a3:ad:55:ce:d4:e8:51:
a1:02:cb:c4:35:61:67:4d:c3:c1:cd:af:49:8c:3d:
a9:a9:f4:9a:85:9c:a8:aa:9a:15:b6:6f:bb:13:ed:
3e:64:04:43:81:d3:6f:ae:5c:1b:b9:ba:e5:dd:6b:
e2:54:39:0b:f3:e5:71:80:dd:d9:05:30:f6:47:b4:
ed:4f:f4:ff:e5:9e:64:c2:43:54:c8:3c:40:d1:9f:
7b:be:f3:0b:54:80:96:0d:68:95:20:09:3b:90:00:
c2:3f:4e:96:4e:dc:f1:08:4f:f3:5f:b2:e8:ad:1a:
51:96:b7:03:ab:93:11:e9:40:2f:73:e5:b1:d7:d2:
5b:2a:fa:c6:3a:2e:ad:21:e5:ea:ee:58:85:81:b8:
03:4a:99:b0:00:84:a9:f7:18:d7:6c:69:44:16:e1:
97:bb:47:7e:e7:6b:b8:53:45:05:15:c1:2d:82:6a:
d7:41:06:b3:75:2a:95:99:3c:4d:a4:27:07:e9:94:
42:ed:c5:c3:e1:7e:94:02:33:2b:74:9e:51:db:79:
94:ad:8a:69:a9:ff:81:d0:c5:b7:18:f3:3f:03:5c:
38:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:5F:6B:00:6D:A0:8A:4F:91:B6:91:FE:46:C1:F5:7E:1C:A1:0B:AD
X509v3 Authority Key Identifier:
keyid:50:02:A3:3F:5E:C6:68:05:91:C0:97:FD:B4:AB:A0:E0:28:F4:08:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAKjP17GaAWRwJf9tKug4Cj0CEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/C19rAG2gik-RtpH-RsH1fhyhC60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67b1ec-208f-4d62-9cbc-ede1e4bb611e/1/UAKjP17GaAWRwJf9tKug4Cj0CEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.112.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:6d:07:d0:74:df:e9:5d:df:80:98:92:6c:cd:d3:78:b6:8e:
43:cc:9c:7a:0c:25:00:f3:03:bd:00:6e:80:5b:60:44:ee:ad:
46:38:7c:d7:6d:ee:6c:26:b1:85:db:b0:80:80:d9:c4:4e:f3:
5c:20:58:85:6d:e1:0d:dc:26:58:64:12:49:e9:f5:c0:db:63:
5a:86:13:f2:f6:7f:86:2b:83:a4:e1:91:54:d1:c9:bc:2f:92:
3a:5d:50:be:c6:d4:d8:b1:77:7b:3a:94:7d:cd:07:06:77:ac:
ce:73:35:d6:a9:65:49:73:87:b2:a3:86:b2:74:b9:90:b9:4b:
3f:c8:5e:d2:51:d5:f3:0b:ab:94:ed:86:9a:1e:0d:b7:17:09:
d8:c4:44:a5:85:03:f4:43:eb:31:8d:84:e0:05:2b:23:89:6a:
f4:55:11:36:b7:27:bf:bb:8b:7f:aa:a9:5f:c7:9b:39:37:62:
03:a0:a9:e4:8a:fb:50:9f:f9:b0:55:a0:07:1a:35:fb:bc:61:
52:79:79:6c:1a:8d:40:ab:6c:2f:6f:52:93:45:68:ce:40:56:
52:7b:a4:82:ea:69:7f:82:4c:79:aa:da:ef:7f:3a:6f:07:ca:
59:49:c7:4a:d6:d9:b0:ad:79:ed:fc:c3:8b:e5:98:16:f7:91:
5a:d5:63:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:50 2024 by rpki-client on console-ams.rpki-client.org