Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/3HC1sqfgoCJSyxaBSSjOLhbPbyA.roa
File: 3HC1sqfgoCJSyxaBSSjOLhbPbyA.roa (raw, json)
Hash identifier: wtlwOP3YKGDmcCAwUGwY3v08fMw/7/R3JJ4U8h0rxgY=
Subject key identifier: DC:70:B5:B2:A7:E0:A0:22:52:CB:16:81:49:28:CE:2E:16:CF:6F:20
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018E46979D006804352343D281F9D5936888
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/3HC1sqfgoCJSyxaBSSjOLhbPbyA.roa
Signing time: Sat 16 Mar 2024 09:28:44 +0000
ROA not before: Sat 16 Mar 2024 09:28:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210358
IP address blocks: 185.169.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 10:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:46:97:9d:00:68:04:35:23:43:d2:81:f9:d5:93:68:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Mar 16 09:28:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc70b5b2a7e0a02252cb16814928ce2e16cf6f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:e7:d5:2f:e9:89:40:50:fa:cb:cd:89:a4:
11:5d:70:51:77:75:81:b8:de:fb:14:a4:f3:a1:d7:
12:95:58:18:d9:12:e7:2b:e9:50:6f:b6:1d:9f:ae:
c1:92:d2:a0:cb:20:c4:94:38:07:04:75:60:e2:59:
1b:b3:e1:eb:84:a8:53:12:b3:75:46:08:e1:cb:86:
82:01:3a:f9:23:58:37:f7:d2:af:27:b5:02:b6:ce:
ad:c2:64:00:55:06:10:98:59:9d:c2:dd:2c:05:d7:
58:5f:fa:38:73:5f:1a:85:6c:21:95:18:9a:87:40:
56:54:1f:a8:b6:6e:e5:cc:d4:1e:a0:21:03:3d:13:
8f:ec:58:6e:73:ef:0c:2d:f9:f5:88:50:fe:fc:39:
32:cf:6d:87:ee:ac:cd:8d:c9:ca:e0:63:d9:45:e8:
7f:20:5f:3f:9b:e7:e8:33:c3:64:a1:3a:94:c3:7c:
f9:c7:8c:72:ba:49:9c:52:35:20:46:7b:2d:00:87:
1a:d7:18:16:ef:f3:cd:a9:90:c2:6e:dc:84:9b:4a:
02:17:ab:3a:eb:fc:0c:0b:24:0c:48:36:83:99:dd:
e3:07:86:fe:15:f9:72:e2:7d:fe:e8:28:fb:d5:1f:
de:cb:14:fb:23:3b:40:7a:f0:bd:16:cc:28:2e:d4:
20:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:70:B5:B2:A7:E0:A0:22:52:CB:16:81:49:28:CE:2E:16:CF:6F:20
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/3HC1sqfgoCJSyxaBSSjOLhbPbyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.180.0/24
Signature Algorithm: sha256WithRSAEncryption
17:bd:0c:9d:50:ea:7b:2e:88:60:c3:2a:fe:f1:b1:f6:bc:2d:
c3:ec:e0:37:2e:63:8b:76:1f:59:d2:a3:76:3f:d9:2b:ef:f9:
5b:ad:ae:90:8a:2c:26:91:20:56:af:08:96:5f:1e:91:bf:28:
01:08:77:ab:5d:56:f3:9f:2e:fa:17:26:9b:ad:d8:84:3f:bd:
63:c0:bb:60:10:5c:11:1d:8a:ed:30:53:2d:c9:e9:cc:1f:39:
dd:31:4f:9e:fc:b1:bc:7d:eb:84:68:dc:d0:58:c9:98:21:aa:
f3:be:46:18:7d:c1:ff:3b:75:63:59:1c:54:b1:7b:c9:15:06:
e9:65:24:6c:78:2e:dc:c7:cd:8f:99:98:55:cb:14:25:d7:a5:
3b:33:64:cd:ee:63:a1:00:65:7d:45:b1:8e:70:06:42:b4:51:
84:e0:33:0f:0f:e0:98:05:76:6a:c0:44:fd:18:4a:86:83:be:
d9:6d:7b:af:59:30:66:4d:05:03:b5:99:24:a9:bf:cb:d7:6a:
40:3c:19:e6:9d:b6:75:9b:f7:3a:4b:59:ed:2f:e5:f2:a4:8a:
dc:08:4c:54:d7:ee:17:13:5d:ba:28:95:47:9b:d7:65:28:d7:
d1:14:05:ad:58:2c:39:9c:b0:92:4b:14:48:27:31:32:ba:81:
7f:32:44:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org