Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/bNY0V6GqYYvitbikjKxEp-HPsUk.roa
File: bNY0V6GqYYvitbikjKxEp-HPsUk.roa (raw, json)
Hash identifier: dY0NS+bvGocuyigKi+xpGTYmpGvCenqiBhoCl89BES4=
Subject key identifier: 6C:D6:34:57:A1:AA:61:8B:E2:B5:B8:A4:8C:AC:44:A7:E1:CF:B1:49
Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Certificate serial: 018A18AC12A77D7EE3D3059754CBDAE9A0E5
Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/bNY0V6GqYYvitbikjKxEp-HPsUk.roa
Signing time: Mon 21 Aug 2023 15:17:24 +0000
ROA not before: Mon 21 Aug 2023 15:17:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13037
IP address blocks: 185.169.116.0/23 maxlen: 23
185.169.118.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:18:ac:12:a7:7d:7e:e3:d3:05:97:54:cb:da:e9:a0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Validity
Not Before: Aug 21 15:17:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cd63457a1aa618be2b5b8a48cac44a7e1cfb149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:34:39:36:7e:5b:b2:7b:d1:f7:ca:72:ff:
10:0b:11:eb:6b:7d:0f:95:b9:f2:72:86:9b:3e:15:
52:7e:81:68:01:5e:fd:2d:14:f7:eb:f2:e7:58:4c:
4e:3c:79:ab:1c:e1:be:3e:6c:d5:85:12:d6:f8:92:
ca:6c:fe:6a:02:c1:2a:27:ca:7a:e2:1b:09:dc:a4:
9f:56:03:85:ed:39:eb:e7:9b:c4:8c:da:70:cd:0a:
f5:8b:f7:3e:b0:b4:37:29:99:f1:cd:2c:da:05:49:
f5:4e:7e:42:39:11:24:86:4f:40:52:09:e5:7c:25:
d8:05:b1:73:18:ce:ae:6a:ba:40:5a:45:d7:7b:ab:
97:57:84:8a:b7:8b:ac:bc:7e:28:a7:db:1a:d1:1e:
c1:54:ee:0a:c3:c4:7f:e6:4f:bd:50:90:f7:39:21:
48:85:55:b0:31:0d:6a:50:36:9c:89:6b:98:e4:f0:
88:a6:bb:ba:f7:1a:1d:a1:11:ee:99:22:a1:16:b7:
d5:66:df:b0:b7:21:a6:de:c3:e7:da:72:4b:8e:c3:
0b:19:24:07:a6:bb:fb:d1:7a:4d:8d:86:49:37:a3:
95:d1:30:57:55:ad:5e:f9:23:30:14:40:1a:47:03:
0c:10:e8:82:bb:aa:c6:cc:08:ad:d1:07:fb:37:44:
69:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D6:34:57:A1:AA:61:8B:E2:B5:B8:A4:8C:AC:44:A7:E1:CF:B1:49
X509v3 Authority Key Identifier:
keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/bNY0V6GqYYvitbikjKxEp-HPsUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.116.0/22
Signature Algorithm: sha256WithRSAEncryption
76:c3:ee:69:67:4f:ca:01:1f:2e:bb:b7:c6:34:f6:06:31:13:
22:c5:14:b2:71:bf:80:31:d0:25:56:d6:33:da:55:10:8f:7c:
ba:f1:1f:0f:b6:57:72:fc:eb:40:a2:88:bd:8c:80:b1:39:5b:
06:65:b9:56:63:ff:9f:fe:f3:04:10:39:34:c3:ed:d3:ed:0e:
9f:bf:b4:45:6c:fb:52:b8:02:6e:1d:22:3e:0e:08:51:2b:57:
1d:15:39:48:57:4b:d6:d0:14:2d:56:d7:f6:4f:5a:5b:0e:61:
54:6b:c1:f3:31:a4:95:65:01:89:fd:20:97:98:83:14:91:14:
95:3d:12:01:52:26:85:c1:33:32:18:7d:72:1c:0d:be:56:5c:
e1:e0:68:5e:45:96:67:30:ff:24:91:0b:af:14:05:15:e9:98:
38:cb:1a:45:d1:fb:86:7b:cc:2d:62:0c:2d:ca:d3:4e:91:85:
de:89:55:af:fa:96:9d:e3:8c:bb:eb:43:10:95:08:06:4c:80:
9f:16:21:82:6d:bf:1c:e0:a9:0c:c1:cf:16:05:48:40:0d:05:
b6:3c:93:06:b8:ed:00:8b:a8:88:cb:cd:67:49:68:cb:ad:e1:
63:2c:bc:f2:92:3a:35:ee:e9:77:c4:4b:2f:75:32:68:1c:bc:
db:0b:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org