Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/D0DXeKVXN1LLb0iEFcsjPpNMrGk.roa
File: D0DXeKVXN1LLb0iEFcsjPpNMrGk.roa (raw, json)
Hash identifier: wEEzhshAOKNiJQnSmXW/y2NnbRSF4pkxI3pLcYs0Bzk=
Subject key identifier: 0F:40:D7:78:A5:57:37:52:CB:6F:48:84:15:CB:23:3E:93:4C:AC:69
Certificate issuer: /CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Certificate serial: 01856D6F84D78BD6BB741DB2D62484C4D6A2
Authority key identifier: 7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/D0DXeKVXN1LLb0iEFcsjPpNMrGk.roa
Signing time: Sun 01 Jan 2023 13:05:03 +0000
ROA not before: Sun 01 Jan 2023 13:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42482
IP address blocks: 185.14.4.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:84:d7:8b:d6:bb:74:1d:b2:d6:24:84:c4:d6:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Validity
Not Before: Jan 1 13:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f40d778a5573752cb6f488415cb233e934cac69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:62:92:7a:05:a8:b6:53:18:2c:67:7d:a3:f8:
a4:a3:ab:25:b2:93:38:59:2e:73:6e:d8:ab:5a:2c:
a4:6f:29:db:8d:8c:92:ed:9e:a2:6d:8d:c7:97:62:
9c:b9:19:b8:0f:6a:07:d7:57:02:03:d8:50:f3:3c:
30:68:7d:b8:1a:66:4c:36:56:12:ac:7b:02:76:e0:
2c:22:a2:80:21:be:d0:06:cb:70:34:23:dd:5f:99:
35:6b:ef:77:c4:05:53:c7:86:4c:fa:80:9c:95:ad:
72:91:c3:3f:b6:6f:16:03:4f:a4:fa:17:fb:a6:d6:
45:94:4c:0b:03:a0:af:cd:75:d6:59:70:76:15:ea:
e0:85:81:43:5c:96:e1:5e:94:4a:64:ad:4c:9c:85:
fb:c2:f1:ac:4c:b5:bf:f7:f7:3c:71:b1:b4:71:03:
2b:d7:0c:54:b9:6e:8b:a5:4b:99:eb:bf:f7:55:2a:
c5:fe:d3:ea:d5:0d:0a:f2:64:c6:9a:b0:bf:a3:93:
5b:fd:c3:52:55:0c:ad:37:f4:cd:c7:b8:7d:6b:5c:
33:7d:ad:54:db:ab:d0:c1:77:d5:d9:60:6a:3b:41:
fc:de:07:c7:95:53:62:60:61:46:86:c2:40:79:8e:
3c:9b:12:79:a1:b9:9a:50:02:29:cb:63:7c:d2:ef:
a3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:40:D7:78:A5:57:37:52:CB:6F:48:84:15:CB:23:3E:93:4C:AC:69
X509v3 Authority Key Identifier:
keyid:7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/D0DXeKVXN1LLb0iEFcsjPpNMrGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/egvN7ozoOcTSBBPIYkI8ygT9xgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.4.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d6:c7:24:46:04:b2:61:00:9c:1e:78:61:18:5c:00:02:a7:
e2:77:76:5d:cd:5f:67:91:31:bc:9e:1b:e6:4a:40:7d:f2:74:
5e:16:58:05:0f:f5:a4:a4:d7:1e:2c:f8:65:bd:02:cd:d6:b5:
d3:17:70:d3:2a:00:70:d7:9d:c2:0b:6a:69:8e:9b:27:98:26:
a8:8e:3b:de:2c:c1:43:d9:1c:a0:9b:4c:ee:ca:59:f4:d6:f5:
f3:3c:0b:60:3f:d6:48:0f:1e:ee:8a:03:de:0a:45:45:35:9c:
97:fa:53:91:3a:87:03:26:2d:b4:8f:1a:75:75:98:cd:07:3d:
48:37:ce:4c:91:58:b6:e2:fa:d4:41:ed:dd:44:4f:39:1b:5c:
8a:a4:96:54:bc:4b:de:03:69:0d:db:a4:e5:29:6e:a1:22:56:
1e:d3:70:22:e5:ad:07:d5:43:2e:49:51:dd:51:1a:5e:b8:e3:
13:bc:42:74:1f:82:3e:61:63:b9:e2:b6:59:11:c6:a5:8d:1f:
6d:a8:ad:d0:3e:89:97:24:9b:2d:b6:65:20:be:54:68:d4:85:
3c:88:4b:e6:cd:81:2b:59:08:d1:8e:a8:e0:23:b6:7d:24:8a:
02:d7:19:12:f4:e5:d5:2c:00:69:4e:4c:3b:91:cb:29:1c:1d:
8d:2c:8a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:46 2024 by rpki-client on console-ams.rpki-client.org