Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/4de49c-aa58-44af-b02a-1e8d219f87af/1/Lgem4NVDt6z5fEQrS8HNm-RQOns.roa
File: Lgem4NVDt6z5fEQrS8HNm-RQOns.roa (raw, json)
Hash identifier: u2inWE6LPBT7CEbeVhdzP/+LAdLK3meen8lq0TZobCI=
Subject key identifier: 2E:07:A6:E0:D5:43:B7:AC:F9:7C:44:2B:4B:C1:CD:9B:E4:50:3A:7B
Certificate issuer: /CN=2a8c588951260a11a3efbd6d816bd56f82f2fc34
Certificate serial: 018570C2C01282EE3ACB18011CB85D06C65B
Authority key identifier: 2A:8C:58:89:51:26:0A:11:A3:EF:BD:6D:81:6B:D5:6F:82:F2:FC:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoxYiVEmChGj771tgWvVb4Ly_DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/4de49c-aa58-44af-b02a-1e8d219f87af/1/Lgem4NVDt6z5fEQrS8HNm-RQOns.roa
Signing time: Mon 02 Jan 2023 04:34:49 +0000
ROA not before: Mon 02 Jan 2023 04:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199328
IP address blocks: 185.20.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:c0:12:82:ee:3a:cb:18:01:1c:b8:5d:06:c6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8c588951260a11a3efbd6d816bd56f82f2fc34
Validity
Not Before: Jan 2 04:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e07a6e0d543b7acf97c442b4bc1cd9be4503a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3f:1b:3d:5c:ff:4c:06:93:d2:9d:cf:1f:81:
f8:6c:a0:3b:c8:c8:54:c4:e4:ca:1a:77:cc:f9:14:
ec:d0:2c:6a:07:c6:43:e0:63:eb:c4:e9:7b:6d:2b:
2c:e5:a1:ba:43:df:0f:f1:ac:06:d9:a8:33:e8:5f:
0a:f4:dc:ee:89:10:1c:63:e7:5e:7c:7e:34:1e:34:
98:9a:6b:18:a2:bf:0c:ec:23:63:af:37:77:d6:22:
cf:33:f7:04:f4:3b:94:39:4d:e8:7c:2a:1b:53:3a:
9d:66:cd:f4:fb:1d:39:b4:d0:6c:ca:c5:83:1a:8e:
77:71:e8:36:9a:b0:2a:a7:23:a8:0b:a9:2e:d1:64:
43:49:79:56:ce:9f:12:6c:13:4f:12:aa:c8:a2:ce:
58:0b:66:41:0c:5d:0a:37:aa:c9:5a:6d:1a:29:17:
8c:1d:0a:54:30:3d:40:33:0f:37:c2:f7:08:2e:ca:
e3:18:d8:a3:43:f5:ec:27:28:9a:17:c1:f9:64:14:
61:06:90:e1:fb:f0:97:f3:d3:57:c2:f7:87:2b:54:
d7:4f:b0:24:46:40:2e:d1:ea:d6:90:1e:40:00:53:
1e:1b:2d:80:05:96:a4:d5:3d:0b:a7:c1:84:ff:1d:
d3:98:a1:9d:93:ad:7b:e7:ec:7c:35:e6:1a:9a:d5:
b1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:07:A6:E0:D5:43:B7:AC:F9:7C:44:2B:4B:C1:CD:9B:E4:50:3A:7B
X509v3 Authority Key Identifier:
keyid:2A:8C:58:89:51:26:0A:11:A3:EF:BD:6D:81:6B:D5:6F:82:F2:FC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoxYiVEmChGj771tgWvVb4Ly_DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/4de49c-aa58-44af-b02a-1e8d219f87af/1/Lgem4NVDt6z5fEQrS8HNm-RQOns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/4de49c-aa58-44af-b02a-1e8d219f87af/1/KoxYiVEmChGj771tgWvVb4Ly_DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.100.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a0:db:17:c8:97:90:7a:9c:bc:b3:03:04:c1:36:f1:33:1f:
af:e2:33:8a:5a:3e:13:64:56:69:9c:f6:01:9a:7e:f5:34:2b:
a6:1a:31:6e:cf:75:8a:92:cb:6e:dd:72:5f:67:60:92:71:b5:
f8:b9:e9:bc:c1:9a:8c:23:24:ce:84:06:b9:84:1b:ac:82:f2:
b8:41:ea:00:0f:9e:b1:96:1b:83:a9:58:d4:89:46:dd:48:f3:
67:2b:15:ea:ba:ee:0d:b3:ad:97:e9:88:51:30:2b:5c:05:90:
9b:8a:a3:50:cc:e0:c8:59:22:2b:21:b0:fe:db:9c:7e:2d:eb:
f4:fa:64:df:17:70:6f:3d:e9:ba:31:e7:dc:33:f6:bd:d6:74:
2a:b3:06:bb:e6:44:80:de:85:57:21:89:4c:57:7a:e5:3d:5c:
2e:eb:8a:ce:b1:b7:83:7a:a1:39:2e:a3:9e:62:ed:cd:25:38:
c6:9d:e9:2b:eb:17:ea:99:93:6f:62:8e:3d:1f:60:a2:b4:d6:
e3:d2:da:76:82:5b:b0:9b:3d:e9:4e:b1:5c:64:07:20:2a:63:
a2:1c:20:3c:5d:ff:c9:3b:b8:4a:ae:dd:e5:f2:92:33:89:f7:
27:23:88:73:da:52:8a:18:34:64:6b:7f:36:47:e7:00:40:96:
ff:00:28:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:18 2024 by rpki-client on console-ams.rpki-client.org