Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/BmYEuP7mlcOuouuZu7xfOEqoDKQ.roa
File: BmYEuP7mlcOuouuZu7xfOEqoDKQ.roa (raw, json)
Hash identifier: Al7Am189QEz2adL2tpzNJ8BwAwBTBdWq9Y4NDX1sYz0=
Subject key identifier: 06:66:04:B8:FE:E6:95:C3:AE:A2:EB:99:BB:BC:5F:38:4A:A8:0C:A4
Certificate issuer: /CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Certificate serial: 01856B00B67C1E1609F49EB8C14E15A7257D
Authority key identifier: D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/BmYEuP7mlcOuouuZu7xfOEqoDKQ.roa
Signing time: Sun 01 Jan 2023 01:44:46 +0000
ROA not before: Sun 01 Jan 2023 01:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205471
IP address blocks: 185.69.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:b6:7c:1e:16:09:f4:9e:b8:c1:4e:15:a7:25:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Validity
Not Before: Jan 1 01:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=066604b8fee695c3aea2eb99bbbc5f384aa80ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:63:5c:65:98:24:77:f1:7d:42:ad:8a:7b:df:
d0:5c:5b:c3:20:7e:9a:f8:61:81:56:1b:53:67:14:
07:9e:ce:10:55:1e:3c:14:2a:be:bd:6d:9f:f1:29:
9e:82:e5:5d:1d:99:b3:ef:ea:c1:b2:07:0f:67:25:
fd:30:11:69:ea:9a:8c:1d:c8:68:a3:17:de:0e:9d:
9d:0d:71:d0:97:92:30:6a:54:69:ff:b2:6f:5b:ea:
26:a1:c7:6d:6c:a9:ba:ca:5b:95:10:a9:f0:77:3f:
a7:df:83:48:1d:b4:8d:fc:b7:11:95:e9:a4:98:2d:
67:bc:81:16:42:53:db:27:d9:0d:30:70:15:80:b9:
8a:a1:f5:73:bb:db:fc:ed:46:6e:e9:cd:a2:5b:2d:
ad:97:13:1c:f5:a1:d1:c7:40:2f:da:34:29:66:67:
79:d1:d8:90:9c:8e:41:21:7e:27:8f:58:2c:5e:64:
bc:40:9e:7f:28:57:de:78:69:27:ec:f1:e3:7e:f4:
a8:5a:6f:23:63:28:b8:71:25:28:4b:74:f7:68:c5:
79:bb:7c:4f:fd:92:00:04:ee:90:9f:4a:a1:ea:be:
88:3c:4d:60:c3:34:71:a5:f8:6b:98:b2:48:93:26:
92:24:59:3d:0f:c3:72:cb:8d:f3:6c:5a:34:23:24:
f3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:66:04:B8:FE:E6:95:C3:AE:A2:EB:99:BB:BC:5F:38:4A:A8:0C:A4
X509v3 Authority Key Identifier:
keyid:D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/BmYEuP7mlcOuouuZu7xfOEqoDKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/2fn6e5RPfnxg1z7xC3dvwnmVpO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.185.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:2e:33:79:8c:59:a7:5f:3a:57:6a:b7:2e:df:24:ab:57:07:
f0:e3:84:6f:b2:96:40:99:af:19:ab:7c:5a:cf:ae:3f:18:6f:
fe:4e:72:16:f0:a8:16:3b:dc:e1:ef:28:69:46:84:4b:c4:b4:
c3:a0:33:3f:7e:c6:d1:17:fd:22:b8:bc:a0:06:f3:6d:ef:e2:
b9:bb:cc:be:4d:32:dd:65:af:c7:71:6e:bf:36:2a:50:dd:a6:
86:d0:9f:b8:94:c1:96:03:69:5a:6b:36:65:d8:39:77:07:2d:
fd:29:64:e2:c9:8a:d4:71:4e:d0:41:b9:17:23:43:50:f4:ed:
40:df:1b:1e:c1:88:f5:17:17:34:bc:df:b5:d7:7e:18:af:c4:
98:27:e6:a3:ba:ac:c3:ea:c4:39:a0:67:50:a0:15:36:12:ef:
94:c8:b9:61:c1:8e:c3:57:17:3e:e2:41:87:9b:d8:3d:c8:81:
30:e8:d3:72:c1:18:26:80:df:0c:e6:ac:18:67:20:da:a4:af:
5c:50:e4:4a:af:6d:b1:c3:73:cc:47:b8:4c:33:73:d2:64:13:
d3:99:89:48:ac:52:a8:0a:b1:52:68:d9:6f:6c:00:94:d9:cb:
a5:35:61:1a:d9:ad:b4:f8:c2:9c:d9:29:37:8a:c9:4c:94:70:
2e:3b:73:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:28 2024 by rpki-client on console-ams.rpki-client.org