Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Sl0K-BStx_a6HEup5ymYr3HtbHw.roa
File: Sl0K-BStx_a6HEup5ymYr3HtbHw.roa (raw, json)
Hash identifier: Et/ZD0kVY1tfQ3EUkBIriVeupsL93QPs3wYdNTDzjTM=
Subject key identifier: 4A:5D:0A:F8:14:AD:C7:F6:BA:1C:4B:A9:E7:29:98:AF:71:ED:6C:7C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018BB87301DCCFBBABEAB09821FD97B7416E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Sl0K-BStx_a6HEup5ymYr3HtbHw.roa
Signing time: Fri 10 Nov 2023 08:57:06 +0000
ROA not before: Fri 10 Nov 2023 08:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 185.216.68.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:73:01:dc:cf:bb:ab:ea:b0:98:21:fd:97:b7:41:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 10 08:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a5d0af814adc7f6ba1c4ba9e72998af71ed6c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:57:0b:ed:2a:34:3c:63:57:fd:fd:70:8b:d8:
44:bc:c3:70:0a:58:03:ca:3b:b2:89:82:69:92:7e:
d2:8a:10:94:e6:b4:a7:ab:76:39:fd:71:4b:37:85:
6d:bb:54:ab:87:6b:2c:19:4e:39:da:ae:b3:0f:b5:
3f:2a:ac:60:5a:bb:8a:da:bb:08:fe:90:c3:6b:1f:
51:c3:d7:24:c2:ea:1a:a0:5d:55:b4:23:69:26:eb:
25:a5:10:e1:d3:07:35:3a:60:3d:0e:52:a6:e6:fd:
4f:c3:3d:c5:2c:89:ce:24:25:ba:3d:12:98:86:14:
a6:94:d8:bb:a6:a4:db:0e:f1:d3:09:bd:61:00:ad:
47:d2:fa:68:1f:dc:35:78:58:ca:5c:6d:62:18:ac:
b7:dc:ce:a3:67:b2:fd:e1:9e:94:72:44:53:db:cd:
c4:46:b0:e1:0c:7e:3d:f4:4c:18:3a:87:5a:08:50:
7f:b5:ad:90:24:8f:08:ca:72:17:d9:15:e4:2a:4d:
b9:56:d7:f6:72:95:52:8e:5a:9e:36:b3:34:23:6f:
bb:41:28:d4:71:78:e0:40:fd:1b:ae:3c:6c:6e:77:
84:81:b4:70:4d:fd:df:38:2a:94:24:ba:5f:87:aa:
be:0e:5c:bf:b1:32:e7:ad:e7:6c:5b:80:27:3b:68:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:5D:0A:F8:14:AD:C7:F6:BA:1C:4B:A9:E7:29:98:AF:71:ED:6C:7C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Sl0K-BStx_a6HEup5ymYr3HtbHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.68.0/24
Signature Algorithm: sha256WithRSAEncryption
89:72:ef:3b:fa:58:19:12:35:8a:8e:0b:6f:e4:3f:8c:91:40:
3f:f2:9c:d3:9e:20:91:6f:a4:22:77:15:e7:bb:09:f3:1a:db:
6e:a4:62:e2:fc:dc:34:c3:98:e3:fe:35:a4:a9:f4:27:c6:b6:
e7:c3:21:bb:30:21:c7:e1:4b:8b:4a:b6:82:e1:96:27:23:13:
97:7a:92:cb:eb:1e:90:30:8a:12:98:09:89:bf:9e:e9:8a:23:
f9:fc:6c:ff:ea:36:7e:7a:c7:5b:ec:9f:93:e5:14:76:3c:2a:
0a:19:4d:a9:3a:82:f7:ae:0d:c6:76:88:f9:2a:4d:e9:66:09:
7a:87:d4:a4:81:de:c6:86:5a:ff:83:86:40:3f:97:58:74:ec:
3d:ee:b1:1c:2b:82:e1:6c:e4:62:c2:d7:5a:dc:1f:01:23:02:
56:84:7c:63:e6:db:82:d4:36:4d:dd:59:bc:93:44:08:a0:87:
1a:a0:c0:8e:5d:f5:5f:db:3b:a9:ca:de:c2:56:29:b5:4e:9f:
c8:51:b1:da:b7:cf:98:a0:41:1d:ea:7b:47:f9:e7:99:fc:b5:
b9:f9:ec:c3:59:7c:a8:95:2b:f2:a8:90:2c:1a:a7:95:64:1e:
23:9c:d0:43:e6:df:ec:bd:a6:05:b1:9c:1c:d1:c9:25:24:53:
5a:2c:64:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 09:11:34 2023 by rpki-client on console-ams.rpki-client.org