Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/dqP-0K0UiNP8ld9NLvMmxVJU17o.roa
File: dqP-0K0UiNP8ld9NLvMmxVJU17o.roa (raw, json)
Hash identifier: CyE/zjvAI2XeHb1sJ9bAyhhMPL8+LHbkpNTlXz+6xjI=
Subject key identifier: 76:A3:FE:D0:AD:14:88:D3:FC:95:DF:4D:2E:F3:26:C5:52:54:D7:BA
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 018DF9CC8B8361908F16F65D5DE5F7E912F0
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/dqP-0K0UiNP8ld9NLvMmxVJU17o.roa
Signing time: Fri 01 Mar 2024 11:35:48 +0000
ROA not before: Fri 01 Mar 2024 11:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56913
IP address blocks: 185.18.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 12:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f9:cc:8b:83:61:90:8f:16:f6:5d:5d:e5:f7:e9:12:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Mar 1 11:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76a3fed0ad1488d3fc95df4d2ef326c55254d7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d3:1f:97:99:ca:75:52:38:d8:2a:02:9d:04:
55:a6:52:f3:42:b7:76:44:3a:96:e4:7d:d5:c1:7c:
31:33:7b:68:94:8f:6e:88:9f:c6:f2:24:6c:ae:02:
45:85:5b:a8:8e:3b:98:2f:b5:1b:7a:26:72:3b:68:
81:38:ab:e6:93:d8:58:9f:bb:79:c9:24:f4:94:fc:
97:b3:de:bc:54:0c:5d:c0:c5:66:59:92:e0:60:e5:
97:80:e6:87:0d:c9:fc:09:de:75:ab:b7:e1:eb:46:
38:e2:d4:4b:e8:03:1f:80:d2:5e:42:b7:f5:f0:3b:
ad:86:bf:1d:46:f3:78:f2:5e:9a:42:e3:f2:43:56:
b7:31:af:4e:6e:ed:0c:b6:fb:03:5b:36:5c:9e:77:
61:2b:1c:10:d8:9d:23:ae:9d:d2:04:82:9a:87:fa:
27:35:ae:1d:70:9f:dc:66:a1:f0:dd:6b:e4:64:13:
9e:ef:2f:d6:28:8b:67:31:4c:ca:43:b2:4f:28:b1:
5a:cc:6b:5d:3c:53:96:de:17:6f:85:cb:fa:26:23:
0a:df:a4:d4:a3:b8:38:3b:32:90:17:f8:1a:85:52:
76:58:41:2a:67:7b:79:ba:57:f3:a5:24:7e:dc:78:
7f:d2:c1:c8:0c:98:a4:d7:00:72:3b:90:a9:3b:2f:
fe:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A3:FE:D0:AD:14:88:D3:FC:95:DF:4D:2E:F3:26:C5:52:54:D7:BA
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/dqP-0K0UiNP8ld9NLvMmxVJU17o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.222.0/24
Signature Algorithm: sha256WithRSAEncryption
12:43:42:6c:5f:0d:b9:f4:ba:03:21:9a:fc:c2:4f:50:5b:2b:
66:d9:b7:66:81:3b:51:b5:55:93:d0:88:9d:6d:f5:22:ac:5e:
0a:bb:ef:f9:1f:35:f9:cc:1f:cb:ef:3e:bc:7c:27:9a:d6:43:
dc:4c:39:62:48:1b:70:be:d0:2f:7b:fc:84:6c:3f:fc:e8:8a:
89:95:24:f0:ab:9e:5c:ee:16:63:c8:0b:86:38:f8:d1:ea:a7:
61:69:a8:95:6e:19:5e:6d:fb:65:56:eb:8f:5a:c8:12:94:e6:
ac:19:0f:b6:ea:a2:6d:d1:6a:0f:b4:6c:51:1a:b7:4b:e8:6b:
1b:e6:77:a0:78:6e:61:da:e0:13:2d:62:15:5b:13:c2:28:4b:
61:91:91:b9:e8:4f:32:3a:3c:28:db:f9:45:c0:44:bd:ca:0a:
68:ca:81:74:a1:ac:fb:b8:0b:78:8d:b2:c6:55:e4:3f:3f:26:
ce:9a:09:e8:3f:cc:9d:a0:a3:6b:fe:83:d0:47:d6:d8:09:28:
32:31:e5:d8:55:85:e1:06:d3:3a:36:a9:22:75:40:38:9f:d5:
95:04:79:86:ad:2c:04:32:a0:c0:92:8d:b8:b8:55:e2:e9:a5:
14:47:4e:da:ff:a5:1a:fd:9e:07:82:57:92:0b:26:b5:68:29:
aa:6b:d0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:21 2024 by rpki-client on console-ams.rpki-client.org