Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4daeba-36b4-4949-8385-8f0d4eef6ab5/1/AnDkGkkhVJncTRj9EtXl_ejxSso.roa
File: AnDkGkkhVJncTRj9EtXl_ejxSso.roa (raw, json)
Hash identifier: +mDQO+nhHLA+mZE7ZgTOmL7Q/kks1J9E5xVcrDQ0Ei4=
Subject key identifier: 02:70:E4:1A:49:21:54:99:DC:4D:18:FD:12:D5:E5:FD:E8:F1:4A:CA
Certificate issuer: /CN=6bd19d69701f13a5977cd2296fa87a252fbf05f7
Certificate serial: 018A609D6D58D6734AE937AAC3B422EC8CFE
Authority key identifier: 6B:D1:9D:69:70:1F:13:A5:97:7C:D2:29:6F:A8:7A:25:2F:BF:05:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a9GdaXAfE6WXfNIpb6h6JS-_Bfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4daeba-36b4-4949-8385-8f0d4eef6ab5/1/AnDkGkkhVJncTRj9EtXl_ejxSso.roa
Signing time: Mon 04 Sep 2023 14:34:04 +0000
ROA not before: Mon 04 Sep 2023 14:34:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203361
IP address blocks: 185.42.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:9d:6d:58:d6:73:4a:e9:37:aa:c3:b4:22:ec:8c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bd19d69701f13a5977cd2296fa87a252fbf05f7
Validity
Not Before: Sep 4 14:34:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0270e41a49215499dc4d18fd12d5e5fde8f14aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:87:9b:58:4d:cc:b5:92:c2:f1:4a:7d:0a:
34:23:0f:df:48:a1:27:e5:3e:a7:a2:9b:b9:8f:4a:
b1:ac:d7:29:60:2f:69:14:e5:d5:5f:a3:b6:0f:ae:
55:49:ce:03:c0:ff:a9:2f:d4:cb:78:64:d2:92:13:
23:12:41:d2:6f:11:64:55:a2:5b:0b:fd:17:ba:67:
2a:aa:32:85:7c:56:f7:87:9e:b5:d3:92:6d:a1:b1:
a8:b1:8b:f6:39:61:70:fa:f6:db:9a:09:74:c2:5b:
c7:63:51:82:b9:c5:e6:b8:58:92:5f:aa:56:9b:9f:
3d:13:4e:1a:ea:a9:f0:3c:c0:2b:10:e0:fe:b8:c7:
87:93:25:72:f3:a1:c1:e1:de:0d:83:db:d5:9d:8a:
86:ea:a7:60:4c:43:79:b3:51:13:0a:44:6f:d9:88:
98:23:25:a3:8a:c6:ba:41:dc:ce:02:48:9f:d4:a7:
5d:ac:a3:92:32:28:68:61:e5:9f:05:f0:c7:17:1a:
da:ed:68:79:70:46:ff:be:61:8f:c5:fc:89:2c:69:
1b:a2:5d:dc:c9:8d:2a:82:30:d5:ca:85:22:51:05:
19:86:ab:21:86:41:5a:92:2f:37:8d:fb:3b:30:53:
9e:d1:d4:d0:5f:dc:af:b0:ba:0f:85:11:7f:d0:64:
b5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:70:E4:1A:49:21:54:99:DC:4D:18:FD:12:D5:E5:FD:E8:F1:4A:CA
X509v3 Authority Key Identifier:
keyid:6B:D1:9D:69:70:1F:13:A5:97:7C:D2:29:6F:A8:7A:25:2F:BF:05:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9GdaXAfE6WXfNIpb6h6JS-_Bfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4daeba-36b4-4949-8385-8f0d4eef6ab5/1/AnDkGkkhVJncTRj9EtXl_ejxSso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4daeba-36b4-4949-8385-8f0d4eef6ab5/1/a9GdaXAfE6WXfNIpb6h6JS-_Bfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.100.0/22
Signature Algorithm: sha256WithRSAEncryption
c6:42:5e:dc:5a:fc:9d:8a:16:8a:f8:00:24:a7:31:9d:3d:27:
45:5b:99:72:cf:31:93:a8:39:5e:9b:a8:a5:76:b4:01:dc:c1:
98:1d:01:19:17:d7:05:39:e7:14:db:90:cf:b7:db:dd:e8:71:
0d:7c:8b:99:fd:a3:47:ac:05:3e:1b:d3:f4:ce:17:8d:cf:9f:
77:b2:cf:44:ab:f8:1a:df:71:61:91:f4:da:ab:00:b6:d4:26:
8f:50:cd:00:84:a8:96:45:4f:62:68:3b:ee:c1:93:53:8b:db:
d5:91:5e:e0:1c:31:a8:46:f6:16:67:90:43:bc:6f:60:5c:b1:
a9:91:09:e0:39:ec:3a:47:3b:9f:e4:4a:3b:9c:5d:1f:78:3e:
b5:32:fa:53:d8:ac:21:4f:cf:ed:54:84:e3:55:98:f7:43:65:
86:04:3b:15:ef:be:e0:bd:9e:98:81:86:18:e8:3d:9e:22:c7:
fe:06:09:64:15:16:8b:42:53:2a:4c:e0:15:60:e1:a5:e0:69:
1a:bb:d0:62:ac:2d:fd:79:92:c2:ca:0d:fc:db:6a:16:79:8e:
f5:cd:0f:84:d2:1b:84:42:72:e3:77:e6:64:c5:bb:8a:68:8c:
ed:46:a3:ff:d4:9f:5d:8e:8a:8e:5f:62:8f:53:a7:16:03:0c:
6b:82:c3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:26 2024 by rpki-client on console-ams.rpki-client.org