Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PpVgFXiJ_zMqDJHHFrSajUPI-bU.roa
File: PpVgFXiJ_zMqDJHHFrSajUPI-bU.roa (raw, json)
Hash identifier: 6LiUFCL3xNZuYvfvbNxq7K0rBlHsQM9K25iM4ypVe/Q=
Subject key identifier: 3E:95:60:15:78:89:FF:33:2A:0C:91:C7:16:B4:9A:8D:43:C8:F9:B5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018573283F6AC995062887B8077C2E084A1D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PpVgFXiJ_zMqDJHHFrSajUPI-bU.roa
Signing time: Mon 02 Jan 2023 15:44:55 +0000
ROA not before: Mon 02 Jan 2023 15:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49476
IP address blocks: 185.13.157.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:3f:6a:c9:95:06:28:87:b8:07:7c:2e:08:4a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e9560157889ff332a0c91c716b49a8d43c8f9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:89:8a:e7:e5:93:75:fd:c6:9c:b7:67:f8:0c:
6d:91:14:f5:d4:86:2e:30:ee:1e:e3:7d:e4:d6:8a:
5c:01:ea:6f:d9:e8:3e:ec:21:dd:3d:0a:9d:94:48:
ab:22:b3:29:33:54:0d:6a:1d:b3:ba:d2:03:d0:6a:
28:8c:cd:d2:dd:b0:61:53:6a:ae:35:39:f6:31:79:
b6:61:48:8b:ab:28:5d:36:2f:cd:80:42:0a:b3:53:
35:d6:dc:fa:c6:44:76:9b:7f:7b:bc:70:48:9d:b9:
00:00:90:3e:d5:e6:61:dc:7a:c7:74:43:2c:f8:55:
13:00:46:a2:b1:b2:7f:c1:d7:da:d8:98:dc:e7:b7:
e0:5c:bf:99:99:db:7d:bc:25:ef:fe:8d:99:53:79:
3c:8f:eb:27:17:bd:10:9c:34:65:90:84:2d:56:58:
5e:79:65:cf:a3:58:9c:98:f9:a5:00:8a:4c:65:5d:
bf:1c:58:b3:5d:da:c0:d7:09:ec:40:a3:77:d2:04:
3e:17:76:e9:50:39:aa:e9:5b:24:76:c6:a8:97:8a:
7d:b0:fd:d3:4d:d7:04:40:f2:ea:26:7c:bc:73:17:
a0:a6:3c:a1:07:55:e2:be:81:a6:3a:bb:6f:84:46:
d7:01:51:67:01:54:a0:f0:df:c2:f7:5a:11:e2:0d:
8f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:95:60:15:78:89:FF:33:2A:0C:91:C7:16:B4:9A:8D:43:C8:F9:B5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PpVgFXiJ_zMqDJHHFrSajUPI-bU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.157.0/24
Signature Algorithm: sha256WithRSAEncryption
92:16:cf:8c:50:e1:38:b5:3d:15:63:5d:11:54:65:a2:d9:93:
f3:46:3e:8d:19:bc:47:e8:a7:91:1c:31:1f:1c:ae:97:4a:d3:
a2:f7:b6:ba:3f:8c:e0:04:73:64:d3:7e:46:a3:a6:8c:53:24:
c4:a1:a2:ec:c3:ed:cf:72:e4:f1:28:a0:d2:36:ca:3c:4f:1c:
62:19:70:59:db:0b:ae:b9:b9:a8:a6:a9:3c:5a:0d:e1:d6:28:
83:03:fd:e4:9f:14:74:2e:d3:ef:c1:15:d3:ed:89:51:1f:da:
06:2f:2e:17:30:10:e3:5a:c3:34:90:46:e0:01:54:0c:5e:92:
d6:86:3c:04:57:d7:6b:ea:c2:ea:a5:0d:63:30:c5:e9:a9:4f:
25:e6:2e:66:1f:ae:f0:6e:7d:9a:f7:8f:2f:33:b8:aa:a7:25:
e9:6e:1a:3a:d0:33:98:99:24:cb:ec:53:65:77:79:75:ea:4b:
fa:ef:b7:b5:00:40:21:f8:6b:2e:f9:65:1f:3d:d8:5d:18:d8:
b1:83:25:ff:51:b8:40:f0:9e:e4:e2:73:7c:68:ad:63:63:dd:
e1:be:0b:92:65:15:d3:48:fe:d3:89:26:bd:52:9e:a2:0c:01:
4e:f1:f6:c8:a1:c8:3b:7f:c6:11:ee:f9:10:55:cc:f1:05:50:
46:23:35:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org