Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/_h1s6ZkSDiMjaXAhqPJGY-xk0Ys.roa
File: _h1s6ZkSDiMjaXAhqPJGY-xk0Ys.roa (raw, json)
Hash identifier: h6Ox/yZjOBwEWyorbgoZUGkJ3CKBoTMnZHsImgMJ3d4=
Subject key identifier: FE:1D:6C:E9:99:12:0E:23:23:69:70:21:A8:F2:46:63:EC:64:D1:8B
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 0185A6E4502090DCE82D936C7DD5EE2B1A69
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/_h1s6ZkSDiMjaXAhqPJGY-xk0Ys.roa
Signing time: Thu 12 Jan 2023 16:50:58 +0000
ROA not before: Thu 12 Jan 2023 16:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31727
IP address blocks: 185.207.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 05 Dec 2023 14:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:e4:50:20:90:dc:e8:2d:93:6c:7d:d5:ee:2b:1a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jan 12 16:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe1d6ce999120e2323697021a8f24663ec64d18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:86:41:e1:f2:10:c6:f5:9f:de:51:ce:28:a7:
89:c4:6b:5e:28:2e:39:46:1e:7f:29:b2:9b:4f:5c:
ed:05:81:55:f0:f5:34:28:2f:a0:9f:dd:eb:b3:8c:
34:8c:eb:ff:02:b2:89:f5:9e:66:44:b4:84:11:d2:
92:1e:7f:b2:72:38:43:c5:4d:d1:41:f7:8a:7e:d7:
ca:e8:22:aa:05:ca:a2:be:2d:00:68:42:a4:39:56:
6b:12:53:fb:dd:c4:a4:79:61:6a:a3:4b:98:fc:dc:
ee:b3:ab:cf:e5:96:e7:69:a2:61:0a:f2:dd:aa:70:
54:44:5d:1d:0d:89:26:93:96:a4:42:03:bc:5b:83:
17:f3:7d:8b:2c:77:57:50:5f:69:3e:49:79:73:c7:
4f:3a:71:68:e9:a4:fb:51:8b:1b:44:f4:02:d9:97:
e2:ca:f1:fb:ce:4c:5d:de:a7:61:87:a1:7e:29:c8:
5f:d5:04:f7:70:cc:00:8b:b0:8d:94:e9:7c:bc:dd:
96:eb:cd:b9:f8:d1:49:d4:1e:b7:80:c1:58:6f:bd:
08:cb:86:1e:8d:86:85:df:7a:bf:d2:1b:f8:31:a5:
2f:e4:c9:0b:70:33:84:8e:fd:fc:37:50:bf:75:f3:
a8:0b:d2:4c:5e:43:e2:58:31:82:57:63:2f:71:7a:
6e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1D:6C:E9:99:12:0E:23:23:69:70:21:A8:F2:46:63:EC:64:D1:8B
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/_h1s6ZkSDiMjaXAhqPJGY-xk0Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.132.0/22
Signature Algorithm: sha256WithRSAEncryption
07:21:b1:82:52:db:eb:f5:38:e4:25:b7:86:fc:fe:d0:0c:78:
5a:ea:b2:2e:38:3b:9c:4d:30:6f:4a:aa:fe:70:ed:e5:a8:17:
16:1b:1a:0b:39:93:41:ab:a1:b4:32:2c:d5:6a:c0:01:0b:19:
12:d8:bd:8a:16:72:a3:01:9e:9d:81:ec:47:b0:f2:b8:45:c9:
0e:1b:d3:76:62:14:c8:dd:5d:0a:29:ac:0a:a0:e7:02:5e:9d:
f0:ac:a1:be:ed:29:85:88:53:51:e2:b4:9b:43:8e:92:a9:85:
81:8b:88:e8:54:e2:86:cf:0f:88:78:b5:36:d9:12:e9:ff:b1:
e7:66:95:83:b6:fd:c9:b7:6a:a0:be:79:6e:91:45:84:77:f5:
22:52:27:75:e3:14:ff:27:50:d9:67:93:13:59:fb:fd:c1:39:
ab:57:5e:af:82:94:07:62:4e:fd:35:14:17:c8:ce:12:8c:f6:
2e:db:1b:82:70:2a:b3:20:cd:01:30:f8:46:fd:55:32:b8:c0:
59:50:83:1e:a0:49:35:1a:13:c6:2a:d0:4f:d0:08:d5:6b:0a:
5b:d4:1f:4e:e0:a8:62:82:bb:78:a7:d4:8b:8a:24:c4:d3:57:
32:91:fd:33:84:48:d2:29:65:15:ba:c4:8d:87:7d:dd:3e:3e:
b4:42:8b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:41 2024 by rpki-client on console-ams.rpki-client.org