Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/3LpCrv8IuWtU1Fai7SKyTyNQZeM.roa
File: 3LpCrv8IuWtU1Fai7SKyTyNQZeM.roa (raw, json)
Hash identifier: qxp+qV4Kw3Uf0cqbi3DVbk+pvI3FFEi36nSR3Src7CA=
Subject key identifier: DC:BA:42:AE:FF:08:B9:6B:54:D4:56:A2:ED:22:B2:4F:23:50:65:E3
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01893301E4B85F2E3C2D447198D41F3BB768
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/3LpCrv8IuWtU1Fai7SKyTyNQZeM.roa
Signing time: Sat 08 Jul 2023 00:58:29 +0000
ROA not before: Sat 08 Jul 2023 00:58:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25780
IP address blocks: 185.206.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:33:01:e4:b8:5f:2e:3c:2d:44:71:98:d4:1f:3b:b7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jul 8 00:58:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcba42aeff08b96b54d456a2ed22b24f235065e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a4:56:3d:23:fb:73:48:40:f2:44:cb:42:f8:
2d:a6:da:80:fc:67:14:30:7c:f2:4f:33:da:74:55:
d4:44:3a:43:06:96:8d:be:5e:e5:a8:cd:d8:8e:f4:
95:e2:43:82:a7:1c:e2:4e:9c:34:b3:5a:79:e1:ed:
d5:6b:bc:8d:4e:7d:9c:8e:aa:c4:05:b3:e3:95:3f:
53:b6:ab:37:7e:c3:50:0d:f1:1d:ca:e3:21:32:26:
02:f2:51:d1:4c:a3:0d:66:7a:16:e4:75:56:cb:50:
8b:91:65:fb:93:28:aa:3f:88:ec:98:9c:13:42:56:
32:3c:a7:34:01:de:56:5c:4f:90:46:50:27:00:ac:
79:c5:cc:ba:e5:30:65:1d:bd:8e:f0:bf:cb:12:96:
98:05:9c:14:48:c7:7f:ad:78:d5:ca:3c:b7:f6:c9:
68:78:8a:a8:60:0a:fa:5a:5b:a0:c6:52:90:47:53:
08:2f:b6:18:ae:0c:53:03:f9:82:c4:25:27:fb:a7:
4a:f1:03:6d:86:c6:3c:73:f5:cd:2e:5d:3f:dc:25:
c3:c7:16:ea:ae:7a:38:3e:1a:c3:bd:42:87:39:21:
70:b6:38:d4:c7:92:ca:14:18:1a:87:2b:c5:90:f7:
bb:97:d9:5e:4e:ad:08:b5:08:f8:7d:87:c4:86:f3:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BA:42:AE:FF:08:B9:6B:54:D4:56:A2:ED:22:B2:4F:23:50:65:E3
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/3LpCrv8IuWtU1Fai7SKyTyNQZeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.168.0/22
Signature Algorithm: sha256WithRSAEncryption
35:ab:60:50:40:7c:e4:92:cc:e8:8e:6b:fa:f6:6c:eb:91:2f:
b4:9f:0b:bf:e0:fd:07:81:b1:72:05:78:85:c4:3c:43:dc:ff:
f1:60:a1:16:9e:e5:fe:5a:1b:77:f7:82:81:05:c0:db:0f:28:
97:e7:82:65:76:1c:7a:a3:67:60:f0:48:7c:37:b2:01:af:c2:
9f:a6:b0:56:af:2d:4d:b0:44:ce:10:e4:16:ab:8d:57:a7:5c:
f4:78:d2:e0:3e:e0:ee:c0:33:67:1f:43:b0:74:7f:62:3b:42:
dd:8a:df:94:6f:1e:04:42:47:5c:09:a6:dd:00:45:58:d4:ea:
18:96:2b:f9:1a:0f:d3:4f:b2:4e:07:29:28:96:3a:18:fd:99:
a1:1d:e6:7b:bb:57:7e:90:af:97:94:3a:97:ca:ac:93:b7:0c:
7f:9c:5d:c6:70:07:fd:75:fc:2d:31:20:2c:e8:ee:9d:c6:4a:
a8:b8:d3:4d:1f:78:94:f2:c5:75:6a:1b:9f:16:28:c1:36:2a:
7e:0a:98:db:fb:03:07:e2:1c:5e:8e:c7:81:20:71:73:79:ef:
b3:02:4b:88:73:c6:ea:03:ec:ab:91:c4:cc:c4:02:08:9b:73:
92:96:a8:f6:8c:f7:37:dd:dc:3e:ac:00:be:be:f6:8e:6b:5b:
90:80:e8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org