Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/PaRIv9d2vNHl6j-XfdmCW0VyJxw.roa
File: PaRIv9d2vNHl6j-XfdmCW0VyJxw.roa (raw, json)
Hash identifier: X8vwfWNr/4UXMfC2DErUqkD+Z9Aom/tq8mo382iYt/c=
Subject key identifier: 3D:A4:48:BF:D7:76:BC:D1:E5:EA:3F:97:7D:D9:82:5B:45:72:27:1C
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 01856CE5EE797E4E434C086BE1CFBDF3B15D
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/PaRIv9d2vNHl6j-XfdmCW0VyJxw.roa
Signing time: Sun 01 Jan 2023 10:34:46 +0000
ROA not before: Sun 01 Jan 2023 10:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60173
IP address blocks: 185.34.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:ee:79:7e:4e:43:4c:08:6b:e1:cf:bd:f3:b1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Jan 1 10:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3da448bfd776bcd1e5ea3f977dd9825b4572271c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:29:f9:4d:e6:08:db:7b:b6:a7:9e:ed:ad:fc:
01:71:8d:da:16:e7:27:51:69:37:ec:9f:9e:81:60:
65:81:d0:de:16:f5:94:21:e9:76:cb:bb:45:86:cf:
59:14:a0:41:45:71:e8:61:3d:75:67:f9:e5:ab:90:
31:ea:e0:4b:70:fc:b1:ae:9d:c2:22:8a:bf:6f:23:
53:9a:6b:a1:3a:30:d5:28:e1:3d:d9:39:4f:9f:0a:
c1:01:8c:00:e0:b4:74:a8:58:2d:1c:41:13:6a:06:
43:5c:ee:2e:46:42:a9:64:06:77:10:9d:eb:ee:76:
ba:62:37:e3:68:3a:2e:19:27:29:39:6d:5e:d7:c8:
7b:47:54:15:4d:e4:13:e7:4e:8d:b2:85:8f:e7:9b:
f8:80:c1:e0:ed:76:c5:09:69:b4:f4:99:c1:38:35:
e6:9a:30:13:92:61:aa:2e:73:6a:91:74:dd:37:42:
7d:36:ae:a4:90:16:a7:7f:a9:6b:54:cf:c2:e8:aa:
54:f9:37:ab:f9:6d:b9:76:0b:27:15:1f:8a:0f:58:
5d:f3:dc:33:8b:55:6b:75:c1:92:60:fa:40:02:01:
29:ee:e3:4a:20:01:02:8f:84:70:87:12:1e:58:0e:
8c:d7:a0:ac:fe:d1:89:8f:11:3f:74:b1:1a:d2:1d:
f7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A4:48:BF:D7:76:BC:D1:E5:EA:3F:97:7D:D9:82:5B:45:72:27:1C
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/PaRIv9d2vNHl6j-XfdmCW0VyJxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:d6:8e:19:2f:33:f0:c0:df:e9:1a:2e:ca:8c:1a:5f:c6:64:
24:31:7e:de:47:80:28:a4:a1:a7:58:c6:2d:84:76:1d:e7:d8:
48:af:7f:5d:6b:e3:0b:9c:76:1c:0b:5e:a7:ef:26:fe:f8:05:
35:fa:4f:93:b1:b3:22:e2:bd:39:88:90:9b:0e:eb:d2:b6:00:
5d:41:54:3c:ad:eb:e3:b7:33:6d:bb:46:3d:32:e9:9e:2e:27:
29:03:e5:05:c8:82:f1:3f:a2:31:83:92:ad:50:e0:75:a1:95:
41:67:26:d3:32:71:0a:bd:d2:70:7a:a6:52:ec:99:8c:22:47:
54:b4:87:f9:08:4c:a2:a2:79:65:b9:56:7d:d9:cc:f7:27:14:
17:21:d9:8d:aa:91:26:d6:5d:a9:04:d2:f9:7b:27:55:05:0e:
d3:1b:38:f0:38:01:26:df:f9:5a:dd:65:2c:77:40:f5:41:2f:
bb:42:4c:dc:62:5d:43:19:3f:a8:b4:d2:37:0c:e0:3d:84:1c:
83:21:06:ce:a8:8d:d8:4c:03:8c:b5:8c:44:fd:dc:f2:8c:57:
42:cb:ea:9e:d6:15:ba:92:37:85:38:0a:c4:eb:cc:4f:cc:29:
6b:d1:0e:2b:0d:0b:8c:33:15:30:15:2d:b6:a1:a7:fa:7e:47:
31:9a:86:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:32 2024 by rpki-client on console-ams.rpki-client.org