Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9pgSMLyEluWh2f5Jz-ZWlPw7oTw.roa
File: 9pgSMLyEluWh2f5Jz-ZWlPw7oTw.roa (raw, json)
Hash identifier: MSW46xx99abtJ9gHZk+eq2CbJAHQ6HadtgW4+Xmu6qo=
Subject key identifier: F6:98:12:30:BC:84:96:E5:A1:D9:FE:49:CF:E6:56:94:FC:3B:A1:3C
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0188D913A8FB498AFB25FD39EA5162F3E15D
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9pgSMLyEluWh2f5Jz-ZWlPw7oTw.roa
Signing time: Tue 20 Jun 2023 13:52:04 +0000
ROA not before: Tue 20 Jun 2023 13:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38136
IP address blocks: 185.248.184.0/22 maxlen: 24
185.36.192.0/22 maxlen: 24
188.214.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jul 2023 12:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d9:13:a8:fb:49:8a:fb:25:fd:39:ea:51:62:f3:e1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 20 13:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6981230bc8496e5a1d9fe49cfe65694fc3ba13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:22:2a:7d:c7:59:14:dc:7d:df:d2:4c:ee:
ee:31:81:7d:57:3a:b6:de:83:7b:31:6f:d8:2d:0d:
58:3e:42:ec:6e:2a:70:23:b3:a2:1e:02:e6:7f:db:
fc:64:d6:f6:0e:f7:f7:2e:b8:d4:b4:16:7d:6c:f5:
6d:75:f7:fc:d9:36:85:1f:af:30:45:ae:aa:af:ec:
21:99:a3:01:19:0c:39:ac:a5:27:55:7f:1c:fb:1a:
63:16:81:6f:7b:d6:28:4e:e9:6e:58:be:ce:93:b2:
06:72:23:4e:ad:6c:b2:27:ef:c3:a3:4b:fc:9b:58:
ef:26:69:26:92:54:dd:86:4b:59:9e:b2:0a:f9:15:
7d:0c:3c:b7:d6:89:1a:dc:15:27:e1:b2:af:ef:fe:
bf:b6:0a:23:31:4c:3d:bf:a2:65:25:ae:5b:c7:b5:
8c:74:2e:f0:16:71:d3:4e:72:e0:9c:41:e2:3e:33:
4d:18:c0:27:db:03:07:20:3b:91:a8:6a:b7:6c:cf:
ed:02:e1:b9:86:aa:5c:81:c9:c2:f8:3c:aa:3f:54:
49:b2:1a:e1:f1:cd:07:0e:2e:74:4d:d7:7f:37:ba:
82:88:b0:43:a3:d1:cf:d0:fe:00:a5:79:fb:35:c5:
a5:50:39:58:f1:60:ca:bf:1f:e2:eb:72:77:2e:78:
01:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:98:12:30:BC:84:96:E5:A1:D9:FE:49:CF:E6:56:94:FC:3B:A1:3C
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9pgSMLyEluWh2f5Jz-ZWlPw7oTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.192.0/22
185.248.184.0/22
188.214.236.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:fd:ef:15:56:f5:4c:c9:1b:1d:7c:3f:8d:c0:23:d7:a4:bb:
28:db:12:48:3c:78:d7:34:f4:7d:33:23:a8:5c:a3:a5:27:f4:
bf:be:55:1b:e9:ea:5f:1a:e6:fe:e2:66:f5:c6:c1:30:1d:27:
82:36:d3:74:bc:3f:d8:e4:5d:ec:0c:62:31:23:36:b0:5a:d0:
6d:81:67:d7:14:38:00:c3:35:d0:bd:29:19:a9:e0:bc:8c:a8:
b7:4e:59:24:00:67:6a:d7:6b:7e:68:05:a2:58:ea:9f:d4:e9:
40:12:8b:61:b9:71:d5:0b:ef:de:00:32:44:b3:19:7a:21:b2:
2a:bb:78:93:49:38:ad:52:74:95:99:2f:2f:73:68:31:17:62:
22:6d:e1:2d:3a:b1:13:53:70:3e:5d:b3:42:0b:2e:eb:04:bc:
f8:f2:a9:e1:ec:d8:aa:45:7a:b9:5f:43:d5:f7:23:32:12:f2:
61:d4:65:4c:77:76:90:3f:27:3c:96:b0:df:d9:99:6c:d3:ad:
ad:42:c2:1a:5e:d1:58:af:06:09:42:43:50:01:32:d4:7f:b5:
35:99:da:09:50:4c:99:3b:46:08:a1:1d:7d:ac:3c:c3:a7:a8:
23:06:f8:de:d7:1b:a0:7c:2a:d2:ff:3a:c0:02:41:3f:62:74:
52:b1:04:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org