Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/lJPQRtP90oiZlBq7XpBIhaOPuDA.roa
File: lJPQRtP90oiZlBq7XpBIhaOPuDA.roa (raw, json)
Hash identifier: KB7tFaUc2q5IadecPdR0aomdx05G4gjfXRJz2VeLVGY=
Subject key identifier: 94:93:D0:46:D3:FD:D2:88:99:94:1A:BB:5E:90:48:85:A3:8F:B8:30
Certificate issuer: /CN=f7a70fff261ae39910950b46d5777b0e4836d1cb
Certificate serial: 01856DEF7432E327589C37B501589DA481F1
Authority key identifier: F7:A7:0F:FF:26:1A:E3:99:10:95:0B:46:D5:77:7B:0E:48:36:D1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96cP_yYa45kQlQtG1Xd7Dkg20cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/lJPQRtP90oiZlBq7XpBIhaOPuDA.roa
Signing time: Sun 01 Jan 2023 15:24:47 +0000
ROA not before: Sun 01 Jan 2023 15:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 185.202.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:74:32:e3:27:58:9c:37:b5:01:58:9d:a4:81:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a70fff261ae39910950b46d5777b0e4836d1cb
Validity
Not Before: Jan 1 15:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9493d046d3fdd28899941abb5e904885a38fb830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:70:48:cf:aa:4e:79:ce:a1:bf:e9:47:64:7e:
02:b8:7f:e4:8e:e2:b6:cd:5e:8e:54:a9:fe:0a:22:
25:36:33:fb:e8:1d:1d:18:5f:70:7e:8f:b3:75:97:
e7:26:0f:11:15:0a:ad:79:ec:cc:7f:1d:aa:37:2b:
65:b8:cf:cb:22:fd:c4:22:6b:d0:bc:03:f4:35:a0:
e8:ee:f2:66:93:e3:06:5a:47:2d:f3:fc:76:ba:bd:
d9:bc:28:f0:22:f7:27:b1:91:c0:e7:2c:81:24:11:
2b:3d:39:50:16:74:36:60:ac:5f:fb:81:3c:d5:e3:
69:6d:72:b3:8c:dc:7e:31:5b:d7:a4:ea:88:e3:65:
cc:35:83:a7:ec:2b:ed:f4:0d:85:19:6e:0d:52:95:
c9:67:5e:c8:90:31:68:50:3c:9d:b5:d8:98:ee:20:
4b:a2:c8:93:0a:f6:14:fe:fc:29:6e:7d:e7:43:88:
81:46:f3:e8:7d:8e:4f:61:80:9d:b0:1b:70:fb:6d:
53:ef:2f:bd:5c:ec:44:29:2a:0e:fa:e7:6d:55:e9:
ba:fb:14:57:84:b4:a6:1e:39:0a:d1:f4:34:8d:c9:
52:5d:50:d9:91:97:8a:f5:97:d8:40:35:e5:ef:a4:
aa:74:25:5e:5b:11:52:7b:c2:7a:5d:51:84:39:27:
b8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:93:D0:46:D3:FD:D2:88:99:94:1A:BB:5E:90:48:85:A3:8F:B8:30
X509v3 Authority Key Identifier:
keyid:F7:A7:0F:FF:26:1A:E3:99:10:95:0B:46:D5:77:7B:0E:48:36:D1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96cP_yYa45kQlQtG1Xd7Dkg20cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/lJPQRtP90oiZlBq7XpBIhaOPuDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3073b2-ae86-42c3-bdcb-66d5463592d7/1/96cP_yYa45kQlQtG1Xd7Dkg20cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.60.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:91:61:1f:ca:19:69:76:5b:8d:30:02:50:cd:ad:cc:82:83:
f1:ec:24:dc:ef:77:d6:4f:d2:e7:5b:80:82:68:2f:9a:aa:34:
b7:23:22:6d:33:fb:22:ea:52:8a:dd:24:55:e1:92:6e:35:b8:
a0:cd:d3:20:dc:ed:6f:12:63:82:a0:40:37:a0:7a:98:6a:71:
cf:86:82:0d:12:c0:ad:93:69:87:88:90:4b:79:e6:db:66:73:
06:0f:ec:63:d7:54:69:cc:6f:37:19:ec:cb:c7:3b:d8:f4:90:
b7:ee:5c:0a:bc:26:44:06:e3:da:c8:37:04:06:49:6f:ff:17:
63:3a:5f:77:f2:10:31:30:fe:66:80:b5:e2:04:35:a3:c3:43:
34:33:7c:32:9c:b5:16:27:7d:41:75:ff:3b:e5:ef:3d:f6:0d:
1a:27:ac:03:ac:c5:f9:96:4f:a1:40:86:9d:d5:bf:5f:87:6b:
d3:aa:51:87:3f:28:f7:46:a9:12:a1:66:91:31:81:12:6f:ff:
0c:85:af:ab:f0:3e:61:82:ff:35:d4:9b:6f:f2:f4:fc:95:70:
47:d3:ea:61:79:38:be:36:ca:13:a7:e1:84:ad:e8:f6:62:d1:
35:93:fe:f2:56:cf:dc:71:78:89:4c:16:98:ee:2e:3f:a9:ee:
ae:6a:e7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:29 2024 by rpki-client on console-ams.rpki-client.org