Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/bYqDZ0Ab-Mdmkd3lW7PsqFD-m3U.roa
File: bYqDZ0Ab-Mdmkd3lW7PsqFD-m3U.roa (raw, json)
Hash identifier: 7D9GXf3Z9/v+k1l9PvCSfkb9K0Kaaba888cm0gOjSzo=
Subject key identifier: 6D:8A:83:67:40:1B:F8:C7:66:91:DD:E5:5B:B3:EC:A8:50:FE:9B:75
Certificate issuer: /CN=ad9afade4183ae80048d6b84818eec46f680fa26
Certificate serial: 01856EF42B0E02CD2C8355F72FECC2B72FAD
Authority key identifier: AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/bYqDZ0Ab-Mdmkd3lW7PsqFD-m3U.roa
Signing time: Sun 01 Jan 2023 20:09:33 +0000
ROA not before: Sun 01 Jan 2023 20:09:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31463
IP address blocks: 185.167.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:2b:0e:02:cd:2c:83:55:f7:2f:ec:c2:b7:2f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9afade4183ae80048d6b84818eec46f680fa26
Validity
Not Before: Jan 1 20:09:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d8a8367401bf8c76691dde55bb3eca850fe9b75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dc:83:b5:73:b7:13:93:b3:86:26:7f:0e:05:
df:13:f3:20:af:0b:a3:be:72:b4:99:6d:e0:8f:d0:
1e:9f:fc:33:49:cf:f0:88:1b:36:b5:23:db:bc:b0:
df:ea:4b:14:dd:06:6c:da:59:2b:6f:84:a7:88:23:
d8:37:d4:0a:14:6e:83:af:a9:70:8b:16:b4:7c:f8:
72:d6:90:5d:05:fe:a9:ff:84:17:5d:5a:cb:fa:b8:
af:ed:d6:f2:32:b9:7d:73:c1:8e:a7:19:27:99:d7:
2b:7e:3a:14:57:52:36:20:6a:00:08:a9:ea:75:19:
c1:6c:cc:c6:49:67:06:07:4b:0b:b0:fb:60:91:16:
78:72:32:f0:79:92:7d:31:6b:1a:ca:60:1b:dc:b9:
04:3d:67:85:bb:39:8d:21:03:04:48:1a:37:12:ea:
a9:05:cf:a1:34:34:bc:15:6e:ca:06:d6:66:52:78:
de:52:08:89:c9:d1:cc:60:c4:87:72:51:b9:92:b1:
d6:c3:2c:af:7b:e8:84:5f:76:fb:f8:ec:0b:a2:b0:
f7:74:54:99:49:c5:b3:ed:2a:f2:1b:69:df:c6:07:
40:6f:6d:30:5e:f3:a5:21:a5:06:b6:8e:73:89:a0:
4c:4c:e5:68:9b:91:f0:a1:23:56:65:67:d4:d6:99:
10:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8A:83:67:40:1B:F8:C7:66:91:DD:E5:5B:B3:EC:A8:50:FE:9B:75
X509v3 Authority Key Identifier:
keyid:AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/bYqDZ0Ab-Mdmkd3lW7PsqFD-m3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/rZr63kGDroAEjWuEgY7sRvaA-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.216.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b1:28:a4:80:b4:f4:25:de:41:4b:e9:63:de:9a:65:b3:49:
b4:82:28:c6:0f:cd:b0:ae:4e:00:05:21:5e:5c:24:f1:fa:af:
85:98:ad:46:eb:86:0f:2d:92:bc:4a:88:c7:b5:83:11:26:8b:
86:56:4f:e9:ed:f0:0a:b8:b4:db:42:06:95:42:47:47:06:77:
b6:f4:7e:5a:72:7f:0a:51:58:49:a2:e5:6a:5e:12:6b:98:6f:
b4:5b:16:d4:0c:bd:d2:67:b0:d6:02:18:8c:c2:8b:3d:66:41:
77:d7:43:72:95:3c:23:56:14:5b:cf:51:b6:ad:28:2a:12:0a:
77:07:ae:c4:ac:b5:82:26:8b:95:e9:8f:4e:1d:44:60:f5:94:
48:9a:80:37:71:73:45:b0:77:4e:ba:57:fa:76:3d:16:25:ae:
40:48:c2:04:73:2a:24:b3:a5:f2:f7:51:e0:8d:3c:ff:e4:f7:
8d:af:69:ce:34:14:d6:1d:30:f3:7f:4e:62:50:34:b8:46:16:
ed:29:36:31:d2:03:a0:1b:8c:86:2a:42:cf:41:83:83:8c:e6:
f2:4f:62:b7:0a:8d:e9:eb:28:2c:87:35:0a:0a:53:6b:f2:e5:
55:9f:b9:db:e1:af:ff:ad:fe:2f:51:6a:1b:d9:91:fb:cd:f4:
c3:b1:8f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:09 2024 by rpki-client on console-ams.rpki-client.org