Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/63Bo3RpMeAgjTBoIBF625pDT-zo.roa
File: 63Bo3RpMeAgjTBoIBF625pDT-zo.roa (raw, json)
Hash identifier: qw9gB04ZmB5GdjbNSP1CJ09oSv50x0ybhio7Qjkrjn0=
Subject key identifier: EB:70:68:DD:1A:4C:78:08:23:4C:1A:08:04:5E:B6:E6:90:D3:FB:3A
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 0187C7A65328556E9E09C5C132775FCD2A12
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/63Bo3RpMeAgjTBoIBF625pDT-zo.roa
Signing time: Fri 28 Apr 2023 11:36:18 +0000
ROA not before: Fri 28 Apr 2023 11:36:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200155
IP address blocks: 185.22.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:a6:53:28:55:6e:9e:09:c5:c1:32:77:5f:cd:2a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Apr 28 11:36:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb7068dd1a4c7808234c1a08045eb6e690d3fb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:80:1c:bf:b3:56:d7:cd:ef:f9:8c:f8:7f:e8:
80:36:a4:f7:15:fc:34:07:97:80:76:c6:5b:a1:17:
75:3b:8f:54:b1:cb:1d:85:56:9a:03:13:18:56:5b:
0a:c0:89:2d:58:8c:67:48:c1:e2:74:9e:0b:6b:02:
d5:58:a1:4f:d8:b6:88:ab:73:8e:68:fa:a3:0a:5d:
ba:d6:98:43:f0:1e:08:64:64:2d:82:a2:24:05:88:
1b:4c:8e:33:b6:fa:3a:1c:84:85:a5:c1:5d:39:68:
f5:f8:28:74:f1:d5:d2:50:f6:da:64:81:2e:1a:71:
d0:17:64:fb:1d:4d:ad:87:c7:db:c4:59:9a:f8:5c:
b5:03:b9:b2:bc:55:67:97:15:53:c8:c3:e2:bb:5c:
91:c0:69:ea:f0:50:5a:49:59:3d:41:e6:9a:19:ae:
61:ea:37:ca:20:43:d4:44:6c:c0:4b:d8:41:a5:e7:
0a:88:51:cd:fd:53:a8:fb:24:94:f9:b3:7a:51:41:
a4:da:48:4e:20:a9:9d:cb:57:20:4a:92:6d:7c:b2:
3b:df:8a:96:e6:de:eb:92:d2:26:f1:6f:3c:d5:44:
0c:b6:8b:03:4d:bd:8a:26:a7:6c:69:f6:37:17:54:
03:6f:ee:ed:47:88:da:ea:17:90:59:88:4e:1f:68:
b7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:70:68:DD:1A:4C:78:08:23:4C:1A:08:04:5E:B6:E6:90:D3:FB:3A
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/63Bo3RpMeAgjTBoIBF625pDT-zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.96.0/22
Signature Algorithm: sha256WithRSAEncryption
37:09:d1:0b:dc:0f:b5:10:9a:ff:22:8d:c7:30:d0:84:22:56:
28:d3:2e:7f:1e:99:a1:9a:a1:d7:e4:db:66:d6:e8:ab:21:4e:
20:50:9d:59:cc:65:f2:1d:dc:5e:87:e3:92:3b:75:b4:bf:60:
d5:16:3a:c1:86:d5:73:d4:8b:d3:23:63:31:01:fe:a7:b6:32:
ae:7a:25:b0:3e:9c:c2:e6:c6:e1:5f:c8:d1:c1:70:b6:bf:af:
01:7d:7e:65:3c:6c:0c:e4:53:f9:4a:f3:69:51:3c:07:0f:b2:
af:d4:64:31:e1:1b:20:82:7d:63:b1:b8:a9:3b:e0:3c:a2:5d:
cc:e0:54:fb:ed:10:ad:5a:18:b8:a3:c5:63:35:d9:ee:4d:a8:
9e:b1:d8:56:e1:1a:3b:ac:37:ac:57:f6:e7:d9:bf:04:0a:7d:
cc:03:b6:71:f2:66:1e:ff:d7:49:0d:98:ad:15:95:33:bf:e7:
9a:6a:2d:c1:c9:06:d6:1a:2e:99:ed:b8:48:30:17:88:ae:b7:
07:bf:3a:ff:d0:df:75:03:ce:a5:4b:57:fb:30:f4:50:bf:5c:
55:13:51:be:cb:a0:69:44:11:04:4c:49:c6:6d:eb:6b:23:ec:
0d:29:4b:f7:1d:eb:04:3d:5e:88:c3:d8:6e:3a:bb:ce:90:56:
0b:14:90:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:59 2024 by rpki-client on console-ams.rpki-client.org