Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/3CEiAkbbY1zWlsP8Y2T1N1iw94A.roa
File: 3CEiAkbbY1zWlsP8Y2T1N1iw94A.roa (raw, json)
Hash identifier: xfCf7Y3ni9UMJ3LuoSKUtErGrYeUqE4or6ix83KccaY=
Subject key identifier: DC:21:22:02:46:DB:63:5C:D6:96:C3:FC:63:64:F5:37:58:B0:F7:80
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 01889765331E3635ADB19513B905C0AE3982
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/3CEiAkbbY1zWlsP8Y2T1N1iw94A.roa
Signing time: Wed 07 Jun 2023 19:46:11 +0000
ROA not before: Wed 07 Jun 2023 19:46:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 185.205.132.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:97:65:33:1e:36:35:ad:b1:95:13:b9:05:c0:ae:39:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Jun 7 19:46:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc21220246db635cd696c3fc6364f53758b0f780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:37:71:69:c3:d2:37:0e:ed:51:f1:b7:c8:66:
59:9c:42:8e:da:8c:92:95:fa:54:8d:2a:a3:f5:f8:
b9:15:c6:b7:7f:db:c1:ac:cf:43:66:70:aa:16:e2:
84:0a:6e:6c:cb:f5:11:d7:8b:14:00:45:c1:60:62:
b8:04:2d:ff:5a:76:0c:83:39:f6:bb:49:10:74:6b:
5e:ea:10:72:c9:f1:31:42:cc:bb:ce:c3:c0:65:bb:
58:38:8f:b9:f8:8f:ea:91:37:7b:86:f9:ad:72:43:
06:1c:f0:11:f0:88:53:22:0c:61:dc:41:f2:56:0b:
9e:dc:af:29:23:a2:03:c6:b0:bf:6b:5c:b1:59:16:
3e:26:17:da:64:3a:02:d6:36:58:88:f1:5e:e1:27:
7a:8f:5d:7d:e9:d9:20:ba:c3:99:3e:d2:2c:67:11:
05:2f:05:fc:56:0b:5a:19:3b:5d:4a:20:4f:2c:61:
54:8a:d0:2f:3b:76:2f:aa:de:d4:8f:8a:31:75:be:
e4:41:94:1d:db:7b:e6:64:58:b4:a0:79:c9:3b:c4:
3e:59:59:b2:88:40:5c:29:f4:95:e1:8b:0b:2d:2c:
0a:51:17:17:c6:35:5f:c7:51:63:8f:8f:4f:e2:2e:
a1:0c:56:45:47:67:2c:1e:0b:8c:d2:28:83:85:4d:
bd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:21:22:02:46:DB:63:5C:D6:96:C3:FC:63:64:F5:37:58:B0:F7:80
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/3CEiAkbbY1zWlsP8Y2T1N1iw94A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.132.0/22
Signature Algorithm: sha256WithRSAEncryption
13:a9:8b:3f:8d:8a:c0:d7:4a:53:76:9f:fe:54:9e:66:60:67:
d2:4b:09:45:c8:1a:d6:0d:4f:f8:ed:7e:41:4c:88:c9:f3:2f:
71:9d:0f:90:86:77:0d:e2:32:0b:b3:b5:a3:f3:53:e3:bd:79:
b8:0f:d9:38:39:00:da:36:a3:a8:2a:91:52:b8:1f:f0:75:66:
e1:c6:b6:0e:6f:34:47:ba:53:43:9a:59:9b:df:4d:1d:5d:1b:
47:64:11:5f:cf:08:d0:39:b3:f1:4c:91:c1:98:3e:ab:0a:7d:
76:78:0a:6b:69:22:28:2c:29:e5:f2:ee:34:53:ed:79:f0:ca:
7d:76:f8:a1:7e:19:f7:36:41:ca:f1:f5:97:15:e5:90:41:a7:
c9:83:d9:f0:9b:00:9f:f6:11:2c:be:35:ca:fd:db:ba:1c:c0:
03:2e:5c:f1:e3:3d:c3:50:b7:d4:e7:02:00:7d:ba:19:c7:f4:
8a:ad:85:5e:88:20:2b:7b:88:69:1a:75:5f:18:3d:3c:06:7e:
da:20:8f:e4:a6:ca:b6:78:b0:1d:b7:bd:b8:b4:fc:a5:fe:68:
d5:b2:d1:fc:dc:7f:f5:b8:01:2d:e3:72:b1:35:69:35:ed:8d:
20:f5:84:00:0c:8c:be:31:40:70:57:55:7d:0a:3b:d7:2c:84:
0d:2d:ec:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-ams.rpki-client.org