Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I53mhcS8jMjsdGRGaxpsVPedRgw.roa
File: I53mhcS8jMjsdGRGaxpsVPedRgw.roa (raw, json)
Hash identifier: 2U4SV6B6tYfH/JKO6i4yQ51pZxDOwLGVC5NA0AZp9wQ=
Subject key identifier: 23:9D:E6:85:C4:BC:8C:C8:EC:74:64:46:6B:1A:6C:54:F7:9D:46:0C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018573284302F1EEE3AE0BB41E1D53F2B59B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I53mhcS8jMjsdGRGaxpsVPedRgw.roa
Signing time: Mon 02 Jan 2023 15:44:56 +0000
ROA not before: Mon 02 Jan 2023 15:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199163
IP address blocks: 185.121.68.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:43:02:f1:ee:e3:ae:0b:b4:1e:1d:53:f2:b5:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=239de685c4bc8cc8ec7464466b1a6c54f79d460c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4b:ee:92:52:5a:a9:2e:d1:fc:5c:08:1c:d7:
dd:da:b8:f7:11:23:47:d2:e9:48:38:e3:80:fe:ea:
fc:a3:45:b1:fb:d8:f1:89:e3:2d:c6:e1:b7:48:a5:
df:8c:a4:ed:4d:08:cd:85:4f:05:c0:af:bc:b7:fd:
9b:f6:63:c4:db:7d:fb:28:0d:13:b0:a5:b9:ce:b0:
52:07:12:01:05:d6:b7:52:e9:1d:98:80:55:15:b6:
7f:c3:9e:0c:b9:74:9e:78:0c:57:05:f1:af:e9:66:
12:27:1b:ff:93:f7:43:18:6c:ef:a4:f9:4d:46:87:
1f:e5:08:43:75:88:18:d7:6a:41:32:ae:ac:7f:44:
09:9c:ed:64:3a:83:1d:36:f6:9e:db:de:60:b8:b4:
67:63:05:d0:ff:dd:89:7c:a4:75:fd:ac:15:91:45:
9d:78:d1:8d:bc:d6:d2:d3:53:7a:25:7c:bb:35:0b:
29:fc:bd:8f:72:90:fa:82:d6:1c:df:d0:66:e1:d7:
b7:dd:3c:27:9e:7a:49:d8:3c:4b:18:0f:be:1c:f9:
90:b5:45:a8:42:fb:a6:1d:17:9b:c0:c2:66:ff:60:
7a:fd:fb:a9:fe:23:19:5f:f5:44:d4:3b:49:1e:2d:
e1:3e:42:aa:6a:0d:9e:d0:73:e0:74:1a:ac:14:98:
ed:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9D:E6:85:C4:BC:8C:C8:EC:74:64:46:6B:1A:6C:54:F7:9D:46:0C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I53mhcS8jMjsdGRGaxpsVPedRgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.68.0/24
Signature Algorithm: sha256WithRSAEncryption
58:02:b3:15:25:d1:61:be:8c:1b:4a:41:27:ad:14:0c:d5:4c:
9d:1c:63:d0:20:c7:77:a8:f1:8b:ae:2a:15:ef:90:ec:98:9e:
cb:47:da:41:4b:2a:b8:25:a8:56:3a:0c:8d:82:a3:61:c9:3e:
22:f7:ac:f9:95:3f:3c:cd:52:08:3a:87:44:5d:b8:72:7c:c2:
9d:f4:9c:cb:dc:e6:cb:80:75:54:3f:76:40:83:f0:9b:48:51:
88:44:c6:e4:27:51:65:7f:21:6f:f4:54:fe:b3:7d:c9:fa:62:
92:8c:7f:cc:43:18:2c:a1:c3:17:7a:30:a8:c6:b4:36:e2:ec:
82:4f:de:bd:96:35:9c:7a:ac:c1:b9:09:8d:df:55:e3:11:20:
16:62:db:d6:a3:3c:73:a6:ec:4d:1a:83:3f:80:e1:d0:33:85:
ad:ff:5e:d5:41:4a:d8:e9:57:f6:02:04:55:ab:81:fe:fb:b6:
ee:42:d3:cc:3a:0c:0c:f7:a7:75:41:93:24:4e:f0:8b:bd:81:
6a:91:6e:51:4e:3d:17:e7:a8:62:cc:05:52:2a:74:fa:e9:75:
9f:39:27:85:e7:19:85:0b:d4:fe:cd:d0:cf:b5:f2:9d:5e:7d:
cc:2a:7a:f0:54:c9:31:81:e3:0c:c9:fd:7d:cf:47:94:14:8f:
6b:62:d2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org