Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/jUz6MequeBGnaYq5Y0TLLljgd9Q.roa
File: jUz6MequeBGnaYq5Y0TLLljgd9Q.roa (raw, json)
Hash identifier: fx9Mk1V5URSLCRRSdxd2HfzBmwcla8UXF913vnBhdwk=
Subject key identifier: 8D:4C:FA:31:EA:AE:78:11:A7:69:8A:B9:63:44:CB:2E:58:E0:77:D4
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 018571DE7F63888BCCCF32514679D656CB66
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/jUz6MequeBGnaYq5Y0TLLljgd9Q.roa
Signing time: Mon 02 Jan 2023 09:44:45 +0000
ROA not before: Mon 02 Jan 2023 09:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61006
IP address blocks: 185.146.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 14 Dec 2023 14:48:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:7f:63:88:8b:cc:cf:32:51:46:79:d6:56:cb:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Jan 2 09:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d4cfa31eaae7811a7698ab96344cb2e58e077d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d4:7f:8f:0d:aa:ca:24:58:95:4b:12:1d:0c:
c1:b4:ce:93:6b:7e:8e:31:ac:fd:24:fe:1e:2d:c1:
3a:16:c2:02:e4:a4:f7:44:b7:23:dd:02:21:f2:c5:
e0:9c:d5:c5:ec:cc:94:22:94:e9:9c:41:02:ae:30:
8c:29:ab:77:3c:c6:c7:ba:cb:bc:fd:d1:1d:6c:dd:
97:75:16:15:72:5d:10:de:b0:ef:9a:42:95:ec:79:
1c:a7:f9:1a:90:06:80:06:e4:90:b7:1f:8e:d2:76:
16:e8:4e:1d:d3:8d:82:b0:db:f1:e0:ff:60:fb:19:
0f:b7:82:99:b6:bf:eb:5e:a0:d5:a8:84:6f:ba:f6:
55:0e:14:52:cf:8c:00:6d:8b:92:85:ef:d5:3b:ea:
06:8b:3f:cc:66:09:4b:e0:45:97:c4:bb:75:33:ac:
e5:83:83:05:b9:73:53:3e:75:2d:cf:94:7a:67:d0:
b5:d0:69:6c:3f:72:78:c1:34:c2:66:6d:f1:35:39:
c2:fe:c6:fc:76:30:f5:9a:38:5d:a2:50:d9:a6:5a:
4e:61:d1:40:fc:46:97:eb:20:fa:d9:71:91:b1:72:
45:31:ca:d3:62:31:87:23:49:35:ba:88:65:b4:0c:
88:45:b1:da:3b:d4:1a:1e:37:f1:17:55:bb:07:51:
7f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4C:FA:31:EA:AE:78:11:A7:69:8A:B9:63:44:CB:2E:58:E0:77:D4
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/jUz6MequeBGnaYq5Y0TLLljgd9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:98:d8:95:89:77:d1:59:62:2a:21:2f:1d:38:6e:d9:20:fe:
c2:f7:7d:f5:b6:2d:3c:93:30:89:c6:d0:f9:40:ab:f8:71:b3:
c7:dd:c5:e2:ba:14:0f:9e:94:63:d5:b6:ff:d3:3e:0a:e5:6a:
4b:4e:2b:71:52:c7:af:01:88:0d:9b:2d:19:c6:9c:d9:95:29:
20:f3:c3:e2:05:cf:61:e6:3e:da:09:b6:5f:bc:0d:7a:3a:34:
0e:28:bf:60:b5:17:76:83:1f:df:29:d2:48:10:88:a5:71:dc:
aa:66:fa:31:66:ee:77:1e:5a:b8:f8:20:35:50:91:64:c4:6a:
87:66:67:1b:f0:05:40:a9:48:9e:17:ec:92:67:d4:90:c9:5e:
c1:c2:ce:76:30:35:29:b1:45:d8:c9:a2:b2:b9:f2:d4:5b:c9:
f0:63:01:49:e1:e5:62:2a:a9:aa:ca:9e:cd:c2:37:a0:dd:49:
17:35:e1:e7:56:e5:2f:3f:3a:6e:83:0c:48:f7:22:d0:cc:1b:
a9:07:c4:6c:2c:5f:bb:a6:52:a5:d3:c0:e7:7c:84:6a:97:03:
83:a7:48:df:82:11:b4:66:38:00:37:eb:d7:8a:c0:24:f8:f0:
88:f5:db:be:c0:54:c8:e7:cb:83:e9:fb:6b:b2:5a:ae:78:ad:
58:86:3a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org