Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7AMtUvrapK76iTZseS5FBw0Uumk.roa
File: 7AMtUvrapK76iTZseS5FBw0Uumk.roa (raw, json)
Hash identifier: QeexXV6mPOa0fZGj+aw+uLOsOkruX7iFfQvfPzIU0yo=
Subject key identifier: EC:03:2D:52:FA:DA:A4:AE:FA:89:36:6C:79:2E:45:07:0D:14:BA:69
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018570672C3BB784338CE4A21866BA995D45
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7AMtUvrapK76iTZseS5FBw0Uumk.roa
Signing time: Mon 02 Jan 2023 02:54:47 +0000
ROA not before: Mon 02 Jan 2023 02:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60860
IP address blocks: 109.72.122.0/24 maxlen: 24
185.30.200.0/23 maxlen: 23
185.30.203.0/24 maxlen: 24
185.30.202.0/24 maxlen: 24
93.185.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2c:3b:b7:84:33:8c:e4:a2:18:66:ba:99:5d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 2 02:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec032d52fadaa4aefa89366c792e45070d14ba69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:20:c4:f5:7e:23:c4:99:9a:ce:9f:26:0e:6d:
03:0b:b5:ef:9a:23:6c:1b:d1:00:47:23:12:e0:43:
c1:5a:89:73:2f:5b:b7:7d:1b:aa:9b:3c:50:66:99:
59:fd:30:6a:49:08:dc:6b:72:0d:72:bd:e5:5a:ae:
ad:c0:f6:5a:4b:b7:2d:95:5c:69:09:d9:a6:5f:4d:
b9:54:d5:4b:cd:b7:bd:d5:93:1f:06:ff:4d:7e:4d:
05:bd:89:05:57:d8:05:07:d5:31:e2:02:31:f2:ac:
59:a2:de:f2:95:1e:49:f0:27:89:e4:cf:25:18:8b:
01:41:6e:f6:d4:20:a5:f3:6f:99:e0:fb:db:53:83:
1f:12:ee:69:42:d3:a2:25:b8:69:c4:50:42:95:b9:
dd:91:5f:94:37:4f:a0:f8:c6:68:24:7b:e2:b8:aa:
ca:f7:ac:84:b7:14:44:02:46:0d:ef:9f:ef:57:b8:
1a:cd:1a:69:22:c9:c7:4d:53:ba:69:ad:79:c8:1d:
94:da:74:35:7e:1c:36:7a:03:f7:10:10:ca:fa:7d:
14:ec:0d:b7:83:f6:8f:a6:5e:01:d2:10:f0:f4:aa:
fd:9b:e2:51:38:91:79:a2:dc:f1:c4:99:df:81:cf:
8e:12:c8:c0:7d:01:48:d7:e0:3c:7a:a9:6b:79:e4:
31:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:03:2D:52:FA:DA:A4:AE:FA:89:36:6C:79:2E:45:07:0D:14:BA:69
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7AMtUvrapK76iTZseS5FBw0Uumk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.214.0/24
109.72.122.0/24
185.30.200.0/22
Signature Algorithm: sha256WithRSAEncryption
61:bd:89:ca:13:80:bd:9b:81:fe:04:c7:d1:c1:d8:e0:47:12:
7f:92:d9:7e:14:be:55:99:62:7b:30:69:e1:b9:ba:bf:de:79:
ab:bf:03:05:93:27:b1:82:79:65:3a:a3:56:bb:10:27:24:d0:
be:25:6d:c7:c8:eb:73:7d:7a:54:20:f3:15:04:48:a8:1f:71:
3d:9d:87:c3:de:db:2f:bb:63:95:25:28:b7:e2:66:7c:b1:ed:
40:a5:53:f9:46:d0:5e:7e:78:7b:6f:c5:31:1e:14:18:7b:9c:
24:f2:a0:1b:bc:ce:33:e5:42:b2:87:c5:49:89:7e:4c:41:c6:
a3:db:71:12:d8:ee:a6:de:e6:5a:4e:11:63:8f:b3:8b:0d:e5:
e9:77:96:33:64:31:1e:c4:bd:c7:96:f4:bf:82:63:87:18:36:
c3:ab:ea:4b:f6:ef:6c:00:11:00:76:e5:c1:8e:7b:11:24:72:
b6:31:d1:eb:0a:6d:5f:07:64:aa:2c:f6:af:ff:d6:65:07:b1:
f1:2e:f5:fc:22:25:75:b5:c6:a4:83:1c:3f:51:29:3b:82:a4:
ac:87:01:0b:c3:b7:58:04:f3:fb:5a:77:fc:b6:20:5d:e8:fb:
87:2a:0a:a8:cf:ad:d1:ac:63:1c:6b:d3:f6:36:f7:34:81:7c:
00:40:e0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org