Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/12gAoI-9g__xs4_tsYg37PRDlJo.roa
File: 12gAoI-9g__xs4_tsYg37PRDlJo.roa (raw, json)
Hash identifier: A6xLjW9o6CxmVBtshUO2sba+Y8053OH6KeZMxPBCde8=
Subject key identifier: D7:68:00:A0:8F:BD:83:FF:F1:B3:8F:ED:B1:88:37:EC:F4:43:94:9A
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A3757C86293CA6BE23F52D3CCCB40
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/12gAoI-9g__xs4_tsYg37PRDlJo.roa
Signing time: Mon 02 Jan 2023 12:34:50 +0000
ROA not before: Mon 02 Jan 2023 12:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53850
IP address blocks: 185.217.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:37:57:c8:62:93:ca:6b:e2:3f:52:d3:cc:cb:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d76800a08fbd83fff1b38fedb18837ecf443949a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:78:25:05:f1:2a:5c:85:d2:55:14:6a:0b:3d:
b4:a7:f9:11:ef:99:4b:8f:e5:66:ac:de:bd:29:9c:
89:0e:b8:47:16:40:04:45:28:3f:db:e9:ef:ce:2f:
41:2a:eb:12:e0:b5:4d:03:d0:d7:19:83:71:78:b8:
d3:af:fa:32:68:0c:7d:02:47:26:ee:e1:e3:14:9a:
a0:9b:34:ea:ff:a5:f8:21:92:89:0b:f6:47:ad:7d:
95:1e:5c:ea:82:bf:36:75:62:5a:9a:5d:d4:22:c6:
5a:08:70:32:13:7e:26:8a:02:10:51:f3:69:45:f0:
73:a5:2d:c2:20:df:78:89:d7:7d:c8:92:87:05:72:
a1:93:7f:e8:73:d4:75:65:1e:8f:e4:3c:d6:58:be:
7a:87:79:d0:da:56:ac:e4:c0:eb:b7:54:cc:33:d7:
ba:e4:28:8f:9e:a2:0c:27:dc:37:63:6d:16:53:de:
f9:d6:de:ab:94:fb:3b:91:a3:33:5b:4c:39:0c:3d:
3d:1b:26:5f:bc:ab:70:03:28:bc:72:5e:41:46:48:
84:48:85:9b:f7:ae:e9:a8:67:a3:0a:af:43:b5:23:
a2:07:06:74:cd:b8:80:57:85:2a:af:a3:80:2b:ee:
0a:5a:45:c3:6e:f3:36:ee:8b:67:fa:1f:f7:66:1e:
c5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:68:00:A0:8F:BD:83:FF:F1:B3:8F:ED:B1:88:37:EC:F4:43:94:9A
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/12gAoI-9g__xs4_tsYg37PRDlJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.108.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ee:d5:41:ed:80:4e:39:c5:ca:e6:1e:b3:e9:38:8a:ed:4b:
0c:26:f7:36:2a:b8:0c:5e:1d:2d:42:0e:aa:50:0d:60:26:a9:
f1:a0:7a:ee:79:c1:ec:f6:5a:b6:bf:d8:94:b9:d2:28:fa:e9:
11:f1:cf:09:0e:f7:4a:6a:22:a0:3e:1a:44:13:0b:2c:40:2c:
a6:e0:ee:d8:34:e5:e8:08:8d:2b:98:9b:12:8e:3d:c1:61:00:
ce:93:41:c0:4a:da:5e:4c:9e:5a:d6:cc:74:d5:65:42:73:20:
41:60:5c:2a:3b:7f:f4:e8:f3:19:f3:22:51:05:3d:3d:70:db:
5c:42:63:2d:45:aa:c3:f7:de:cc:91:38:af:c9:da:ea:0b:3b:
ab:b9:fd:71:29:12:80:dd:d9:12:19:fa:7b:01:b8:04:23:f3:
eb:81:9c:a0:74:a9:df:79:23:a8:d9:49:a3:38:ec:96:a6:e8:
32:21:d6:2a:c0:97:3b:41:d9:78:76:88:67:de:07:be:6d:35:
70:a8:13:7d:d8:ca:18:d4:6e:eb:86:14:bb:dc:68:fb:01:72:
4a:cb:ad:1a:ad:64:2e:eb:b7:49:91:12:f7:a7:0d:0a:9e:7b:
37:1b:d8:e2:b7:84:62:a8:24:b2:fa:21:88:df:04:97:6b:28:
a7:d2:02:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org