Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/jceTxPcyKYjcX5s6Ml7DlADXJbM.roa
File: jceTxPcyKYjcX5s6Ml7DlADXJbM.roa (raw, json)
Hash identifier: /1wtkoMtIimNOxWRiSUKNMAmVuhscwwJnxfJewC8lwY=
Subject key identifier: 8D:C7:93:C4:F7:32:29:88:DC:5F:9B:3A:32:5E:C3:94:00:D7:25:B3
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 0188A0C877140B3E26373841BE9D4A99F19C
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/jceTxPcyKYjcX5s6Ml7DlADXJbM.roa
Signing time: Fri 09 Jun 2023 15:31:12 +0000
ROA not before: Fri 09 Jun 2023 15:31:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201011
IP address blocks: 185.205.132.0/22 maxlen: 22
185.205.132.0/23 maxlen: 23
185.205.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 28 Jun 2023 14:23:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:c8:77:14:0b:3e:26:37:38:41:be:9d:4a:99:f1:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Jun 9 15:31:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dc793c4f7322988dc5f9b3a325ec39400d725b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:26:3a:e6:5d:cb:46:5e:06:66:f2:b9:84:cd:
96:30:97:39:12:24:ed:98:ba:21:ba:08:68:da:98:
f6:ff:bc:18:bd:dc:bc:31:9f:c0:b4:90:95:fc:0b:
17:78:ed:07:f9:19:18:00:c5:91:52:86:29:28:5e:
e9:de:4f:87:ec:40:0c:54:ef:a1:29:ce:92:f3:ab:
71:66:8a:d1:35:63:0c:4a:18:ef:42:d2:08:65:ec:
a8:52:e9:60:3b:c4:e0:88:62:0f:d2:2b:ca:c1:19:
76:8c:2e:cc:1a:16:ff:2f:fe:b9:18:19:75:49:20:
63:45:36:6f:12:af:3e:6c:2f:dc:bf:98:25:35:5e:
29:6e:74:60:1a:56:58:b3:a3:f6:12:9c:93:47:94:
86:dd:b7:84:07:23:8f:c0:38:5a:87:22:d6:39:cd:
4b:95:47:f5:f7:f1:35:d9:1c:d6:ea:da:51:e4:2a:
17:39:8a:cc:2c:01:77:75:e2:ee:c2:8b:58:06:5b:
86:f2:41:ad:28:9f:be:ac:2d:76:e2:fa:82:55:48:
06:b8:94:51:39:98:6a:22:63:94:86:1c:ba:65:ee:
ad:77:67:0a:ee:ed:75:56:cc:66:15:e6:0a:7a:b1:
d6:85:f3:57:50:13:1e:a3:2d:e7:31:5b:6a:87:39:
a0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C7:93:C4:F7:32:29:88:DC:5F:9B:3A:32:5E:C3:94:00:D7:25:B3
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/jceTxPcyKYjcX5s6Ml7DlADXJbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.132.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:1b:5a:2a:c3:50:f6:98:a9:a0:32:8e:ba:4d:f9:57:7d:9a:
35:05:5b:34:f2:93:93:05:7a:4b:d0:30:62:9f:7a:a5:2a:dc:
97:5b:49:19:b2:2d:42:fc:ed:66:5c:0d:aa:08:61:7e:47:27:
d3:cb:0a:9c:dd:f8:18:5d:1e:47:ec:b0:09:8e:fb:9d:fa:32:
3b:a1:00:a8:96:04:1f:1d:84:27:d4:df:14:64:38:41:4c:82:
b5:43:aa:af:81:08:83:89:ea:68:b5:0c:e7:b5:bb:16:b5:76:
c9:20:a4:d1:c2:37:0f:a9:db:f7:a7:4c:3f:90:cc:73:bd:b4:
6b:a8:00:1c:5e:7e:8e:af:93:dc:49:f0:e5:fa:ee:ff:a0:5d:
c4:05:cd:c1:9a:d8:6e:55:78:8f:19:96:97:8c:39:78:ef:e1:
d1:2b:4e:30:ec:bb:3e:c9:69:a7:0d:dc:b6:3d:4d:5e:4a:4b:
07:ed:7b:f9:af:7d:a6:7d:25:07:d1:18:9b:65:d7:9a:73:92:
90:9a:51:a2:62:0b:d9:6d:d3:d3:4b:13:96:92:81:f1:7f:cb:
ed:d8:c3:8b:11:7e:5d:95:87:1f:d8:89:3e:9e:59:c2:bb:02:
de:a6:84:a5:1a:7d:0e:7f:dc:29:98:9c:fe:fe:6d:6b:e4:b5:
16:4d:26:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org