Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/D6xf-YMMvguiaY5vKtm81NZvJAI.roa
File: D6xf-YMMvguiaY5vKtm81NZvJAI.roa (raw, json)
Hash identifier: 93aFOtir0rHb7Wcvr0P8ypqT9wqWK42halS+f9ui3OQ=
Subject key identifier: 0F:AC:5F:F9:83:0C:BE:0B:A2:69:8E:6F:2A:D9:BC:D4:D6:6F:24:02
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 01856B530F69AD8C6D4C52307724E8843A5F
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/D6xf-YMMvguiaY5vKtm81NZvJAI.roa
Signing time: Sun 01 Jan 2023 03:14:43 +0000
ROA not before: Sun 01 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198440
IP address blocks: 206.245.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:0f:69:ad:8c:6d:4c:52:30:77:24:e8:84:3a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Jan 1 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fac5ff9830cbe0ba2698e6f2ad9bcd4d66f2402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:17:34:27:dc:2a:54:da:f3:70:67:92:a4:1a:
13:de:ad:07:4d:a4:c5:2f:b7:53:35:33:9f:bc:d2:
1a:d9:e4:00:fc:8e:80:aa:ab:89:43:c6:8d:eb:3b:
cb:d5:26:d0:f2:b1:69:4e:fd:01:5c:d5:b3:b1:75:
2b:8d:96:ba:af:ed:26:28:0d:07:ad:31:07:f6:05:
3f:c8:ee:2b:fd:dc:99:d0:da:d7:b9:81:a0:a8:d8:
2b:79:cc:37:05:8c:29:f0:32:d9:61:78:62:b2:62:
92:0a:ea:20:b1:f0:33:ca:4a:32:0f:b5:d1:1c:32:
62:8c:f0:5d:82:5e:ca:30:c4:47:9d:a2:9e:11:95:
f0:a0:4d:21:b0:8d:5d:65:6c:99:b5:6a:fd:8f:59:
9f:82:b5:f4:89:77:3f:f4:0d:9d:9e:1d:d5:24:b9:
32:e3:3a:3b:c1:07:0d:b7:16:e9:df:31:9d:c0:89:
8c:cc:09:b7:89:d1:0b:58:48:b6:96:22:76:dd:dc:
39:ce:70:c3:03:dc:62:81:f5:0a:aa:fb:02:c2:81:
bd:03:98:22:e5:f5:e3:08:40:5e:b5:8f:be:69:a7:
c9:72:e7:5e:73:80:3b:04:66:e8:28:fa:a9:0d:68:
18:3f:5e:b9:aa:c5:8e:2e:86:de:91:3f:13:7b:88:
9d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AC:5F:F9:83:0C:BE:0B:A2:69:8E:6F:2A:D9:BC:D4:D6:6F:24:02
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/D6xf-YMMvguiaY5vKtm81NZvJAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.245.192.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:fd:a2:78:7a:7a:d4:01:78:05:df:8f:29:1a:06:b9:fb:93:
ad:b9:e1:44:b5:13:44:fd:45:af:06:b4:4a:64:8f:ae:05:58:
92:be:88:01:de:dc:79:4f:00:de:55:bd:6c:b8:4e:11:61:d2:
87:eb:ba:ac:8e:3d:16:c7:3b:6b:8b:d1:d7:46:5b:08:bc:5e:
29:6f:80:df:67:4e:9a:39:86:d7:f6:d3:eb:1e:bf:d9:2c:5b:
9e:56:b4:68:c8:ab:1f:d5:b5:01:6d:00:7b:90:a5:c4:07:5e:
a2:a3:a7:fb:62:83:68:46:5b:7d:03:e0:ae:93:2d:f9:97:16:
16:9a:8c:1d:c6:3a:17:5c:ee:1d:c7:5c:0f:28:2c:54:64:ba:
7f:60:2b:0f:53:d7:91:30:c2:05:69:89:32:a9:ac:7b:51:ff:
09:21:ec:be:87:be:8c:1e:f3:59:8f:23:df:25:4b:88:ad:fd:
5d:af:2a:eb:a8:78:ff:30:c2:80:d4:74:c5:38:57:d1:05:b7:
0a:53:29:38:ce:42:e7:41:66:c3:a8:09:28:2d:15:d3:eb:ec:
91:2f:0f:0d:17:95:96:f0:5d:81:01:8c:4a:17:12:b7:7d:bb:
e9:f0:d0:60:e8:0a:22:83:a1:7c:41:a7:7a:c4:3b:e4:c4:e3:
d4:52:8f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:10 2024 by rpki-client on console-ams.rpki-client.org