Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/t9QDP9nRAmQfZkSWuxqHsgZGgu8.roa
File: t9QDP9nRAmQfZkSWuxqHsgZGgu8.roa (raw, json)
Hash identifier: wt9wRJb+K9VoXGM5Rd8sB2/Ubol5w4sQLlqw6aartm4=
Subject key identifier: B7:D4:03:3F:D9:D1:02:64:1F:66:44:96:BB:1A:87:B2:06:46:82:EF
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 0186F3E7E790CC16B16E11BAD1F0B854D39D
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/t9QDP9nRAmQfZkSWuxqHsgZGgu8.roa
Signing time: Sat 18 Mar 2023 08:48:26 +0000
ROA not before: Sat 18 Mar 2023 08:48:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58075
IP address blocks: 185.187.100.0/22 maxlen: 24
2a0a:47c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Mar 2023 19:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:e7:e7:90:cc:16:b1:6e:11:ba:d1:f0:b8:54:d3:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Mar 18 08:48:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7d4033fd9d102641f664496bb1a87b2064682ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ff:6b:5f:bb:15:d1:18:13:4f:c1:b2:28:13:
11:ba:fc:49:af:34:c8:ab:7b:a5:54:12:0c:6d:ae:
85:83:48:2a:94:f1:9a:5c:16:ed:3b:f5:67:fa:43:
52:89:7c:83:cf:a8:32:e1:5f:00:5a:14:4f:fc:8e:
33:5a:24:0b:c0:b0:07:46:12:45:6b:9d:19:c3:e2:
4c:b8:d5:68:c8:27:72:56:4e:b9:ce:ae:24:8d:ea:
4b:c9:cb:50:aa:a5:06:06:e6:b4:92:88:e2:5e:55:
20:15:70:3e:8f:48:42:0b:92:67:67:7c:49:09:5d:
94:20:16:04:51:74:77:ab:3a:79:14:7d:e7:59:43:
ca:7e:1f:28:bd:0d:12:5a:cc:e0:0e:e8:f6:0a:5f:
36:1d:a2:a7:c1:f8:3e:1b:5e:e6:ca:91:c4:b7:e7:
a3:41:39:09:37:7e:bd:33:4e:ef:de:b5:be:56:c6:
f7:57:e9:0d:cd:5b:e0:32:dd:86:7b:46:a1:a1:30:
21:df:86:7c:b5:3e:7a:42:c3:7c:c5:0f:a8:ee:5d:
d3:fe:4a:c7:82:f6:5f:02:a5:6d:80:8c:4d:22:e0:
d4:ce:6b:72:c2:a6:76:7d:5c:31:01:9f:63:5e:12:
2b:42:ac:4d:b3:73:be:63:a9:5a:84:04:17:8b:ac:
c8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D4:03:3F:D9:D1:02:64:1F:66:44:96:BB:1A:87:B2:06:46:82:EF
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/t9QDP9nRAmQfZkSWuxqHsgZGgu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.100.0/22
IPv6:
2a0a:47c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:da:2e:bb:a9:61:9f:8c:64:3b:6e:4f:9e:06:ef:45:ce:3e:
1b:f7:7f:37:cf:28:d9:ce:f1:a7:2d:1a:a4:12:7f:ee:88:4f:
c1:f1:92:83:9b:cd:87:2e:ec:84:b9:d0:2d:8e:c8:47:2c:68:
7c:2a:94:bb:7c:d3:65:48:84:e0:9d:9a:c4:7d:9c:fd:3a:d2:
c7:f7:1f:de:62:c2:80:e2:33:4c:12:11:35:11:04:f8:6c:19:
fc:df:49:13:42:f4:60:ff:1d:14:fa:eb:a2:05:6e:60:db:17:
69:61:f4:46:18:fe:f9:eb:59:1b:a8:e8:02:2f:7a:e0:d4:56:
81:81:ea:5b:88:fc:2c:11:7b:93:97:24:50:2d:34:9b:e9:24:
0a:d9:ba:d5:27:2a:ba:78:46:53:26:43:dd:5c:4c:5f:90:a7:
11:c3:cc:16:dd:2b:25:6f:fa:44:17:e8:f3:20:8b:02:1c:2b:
ca:fa:d3:db:d3:90:a2:b4:0d:05:67:b7:52:64:1c:7a:a7:ea:
9c:b4:3f:ec:e4:57:c3:a4:f0:c6:f3:8c:7f:5f:84:ea:af:50:
a9:5d:b9:c2:30:62:a0:ff:47:82:29:df:d1:08:db:18:bb:ec:
2d:42:94:f0:7f:f8:3f:85:f9:54:28:2f:88:ca:a6:4b:a9:58:
ab:82:90:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:00 2024 by rpki-client on console-ams.rpki-client.org