Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/soCM_D5uzwVcay4Jwzb4KehmBfI.roa
File: soCM_D5uzwVcay4Jwzb4KehmBfI.roa (raw, json)
Hash identifier: vDU79RKPoX3w2Zi+bomdMnWtUqyIeRPQ3995DqkQ/Oc=
Subject key identifier: B2:80:8C:FC:3E:6E:CF:05:5C:6B:2E:09:C3:36:F8:29:E8:66:05:F2
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0185732844E4902CD8766F3AD3F41C1DD4D5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/soCM_D5uzwVcay4Jwzb4KehmBfI.roa
Signing time: Mon 02 Jan 2023 15:44:56 +0000
ROA not before: Mon 02 Jan 2023 15:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201878
IP address blocks: 185.121.70.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:44:e4:90:2c:d8:76:6f:3a:d3:f4:1c:1d:d4:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2808cfc3e6ecf055c6b2e09c336f829e86605f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:db:12:1f:a5:07:85:5f:f3:5f:79:84:78:03:
09:96:96:a0:4b:e6:1c:9f:2c:5a:09:29:fa:74:de:
a9:9b:b5:0d:c6:bf:a9:d1:7b:66:ac:f7:ec:27:90:
e6:e9:7f:66:e3:dd:87:ef:73:9a:b6:33:b4:e3:48:
8a:27:ed:28:bc:df:9a:87:cd:5a:81:31:1a:c1:3b:
d6:ef:16:00:cf:79:68:91:b1:87:31:5a:fd:c9:1a:
98:1a:68:ea:6e:b2:7e:e9:ea:e3:43:3d:fd:77:77:
a3:7e:93:79:d5:4f:44:db:13:38:53:32:dd:29:28:
5d:d9:45:bd:72:c2:9a:2c:60:af:33:0d:90:cc:39:
7c:60:be:db:d3:fa:6b:25:c1:93:07:64:ec:f3:c7:
42:e5:31:5d:e3:06:32:03:7b:c0:67:e9:50:0f:10:
fe:63:f0:3f:a5:bc:78:f6:1d:c4:e0:d5:4c:dc:ff:
df:71:b5:c8:30:2c:b0:97:58:9a:8d:f9:7c:a0:30:
24:60:5b:bf:ef:11:1e:5f:97:d7:15:c0:9e:5d:7b:
8b:b9:28:8d:ac:fb:53:ca:01:97:7f:77:b3:07:0f:
fa:77:8e:eb:a5:a0:b6:4c:c1:2a:1d:fb:65:79:82:
73:bd:2a:2f:d9:e4:05:bd:37:4f:be:02:53:3e:32:
dd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:80:8C:FC:3E:6E:CF:05:5C:6B:2E:09:C3:36:F8:29:E8:66:05:F2
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/soCM_D5uzwVcay4Jwzb4KehmBfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.70.0/24
Signature Algorithm: sha256WithRSAEncryption
17:ce:69:5c:f6:9a:db:4d:ae:67:ef:71:61:46:b7:47:2c:d4:
e7:a5:e1:b3:b6:2d:f2:83:06:b2:0b:38:54:fd:0f:ac:76:e5:
a7:ed:c6:89:fb:b5:9f:1e:43:bd:c3:e3:74:8f:49:c4:a8:ed:
94:c6:3b:44:d5:05:9c:df:40:aa:a7:22:d7:af:9f:0e:64:98:
b8:c0:c4:62:2f:50:7c:62:1f:23:06:9f:c4:e3:5f:51:50:d8:
a9:5e:b3:c8:90:08:6b:1d:ca:cf:92:52:f0:5c:ff:c4:60:9e:
5e:68:c6:77:29:25:d1:52:e2:08:0c:7a:12:90:27:c4:a2:bc:
3d:41:45:93:4f:8f:e5:d4:83:d6:af:06:70:e4:5a:db:35:b7:
9d:51:93:a8:6f:7c:1c:d4:d5:a4:7d:45:ad:3d:5f:b0:af:a7:
66:62:72:6a:a3:75:8b:14:07:36:2b:a1:2d:96:b5:bb:ca:74:
f6:19:22:94:eb:21:57:7c:30:1c:a8:83:f3:f4:2a:11:b3:6f:
c2:cf:be:94:e8:95:2b:4c:26:25:e6:a4:0c:83:d1:b8:95:38:
fd:0a:e5:c8:c9:64:5f:8a:fb:d3:d0:23:35:55:5d:f3:c2:b5:
7c:03:24:b0:5e:ae:ec:f4:8c:90:d3:d5:46:da:ce:8b:e6:42:
0e:df:ea:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org