Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/vUH1dw2Ufyix8EkWu4r-x6gLMhQ.roa
File: vUH1dw2Ufyix8EkWu4r-x6gLMhQ.roa (raw, json)
Hash identifier: 7+BwvrhG6z9ypLrpE1j74MtSglnfHhdB3uqTB0hOxB8=
Subject key identifier: BD:41:F5:77:0D:94:7F:28:B1:F0:49:16:BB:8A:FE:C7:A8:0B:32:14
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 018B7FC89E86ED5720DA78ED433AB806375F
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/vUH1dw2Ufyix8EkWu4r-x6gLMhQ.roa
Signing time: Mon 30 Oct 2023 08:52:16 +0000
ROA not before: Mon 30 Oct 2023 08:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208263
IP address blocks: 185.146.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 14 Dec 2023 14:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7f:c8:9e:86:ed:57:20:da:78:ed:43:3a:b8:06:37:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Oct 30 08:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd41f5770d947f28b1f04916bb8afec7a80b3214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:27:f5:81:ba:d2:de:5f:29:d7:df:24:54:de:
a6:b1:9f:95:eb:a6:68:80:61:5f:bd:6f:e4:ce:e7:
bf:2a:68:05:69:65:41:9a:38:be:5e:d9:f8:04:ef:
3b:91:91:ac:b1:0d:e5:80:ca:ea:9e:ee:d4:09:80:
4b:1a:f8:40:e1:5c:5f:da:87:35:0f:f7:02:8e:41:
22:53:b2:5b:33:be:b7:30:fc:a4:a8:03:bb:d7:fa:
41:41:39:e8:b2:dd:8b:24:41:53:5e:1e:c2:d3:10:
1b:80:a1:5c:a7:e6:47:0b:88:4f:68:4d:f3:1c:c3:
ea:65:f6:03:17:46:29:bb:7a:8d:9d:d2:a2:6c:b2:
32:06:01:68:15:93:38:a8:e0:9c:66:83:d6:1c:88:
b3:38:0e:b3:a9:d2:a4:91:0f:d4:c0:e6:32:d8:cc:
ea:f9:d4:84:da:94:61:9f:35:ec:4b:c9:96:50:ba:
47:c8:99:10:e1:f6:dc:bf:da:16:c1:8b:e7:be:f6:
0b:86:82:9a:2b:9b:cb:af:8f:88:7b:a8:bd:c4:61:
8f:82:48:87:4a:b3:50:4b:83:5e:c0:17:ea:45:7d:
39:11:7d:40:7c:fb:c7:bb:bb:8b:67:fd:1f:e4:35:
f9:0a:fb:cd:6f:30:be:8d:79:9c:b9:39:51:a2:44:
bb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:41:F5:77:0D:94:7F:28:B1:F0:49:16:BB:8A:FE:C7:A8:0B:32:14
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/vUH1dw2Ufyix8EkWu4r-x6gLMhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.100.0/22
Signature Algorithm: sha256WithRSAEncryption
08:aa:43:39:03:25:2c:cd:1e:fe:a3:ef:d3:d5:b2:c6:b0:9b:
95:97:eb:84:d8:32:cb:2f:32:34:f9:45:be:37:db:b3:88:fb:
1e:78:93:f7:cf:d9:b5:c3:06:09:c0:26:df:f4:5c:ba:81:a1:
3f:f2:c3:6c:ee:fa:07:aa:1e:45:e1:64:79:aa:14:a1:4b:f8:
01:c9:46:ca:10:ba:f0:af:9a:4d:5b:89:c2:e7:3e:0c:6e:13:
9f:4a:8f:07:55:a9:f1:e2:7b:a1:63:9e:8a:f0:c7:9b:d4:ea:
97:c4:d6:a7:97:06:13:f1:e8:55:55:aa:a7:eb:1f:4b:34:2a:
9e:a0:bb:e0:3b:8e:75:64:77:11:56:eb:f1:b3:db:fb:18:5f:
87:7c:7e:e7:92:ca:61:ef:76:ef:06:b5:d8:16:4c:30:2e:6f:
a9:60:0b:4a:7c:bc:f3:9b:34:87:db:f8:57:e9:36:8b:2f:96:
4f:9b:f6:af:f3:0f:cc:81:bb:06:e5:87:45:ce:91:e8:ae:20:
ba:a1:96:8a:60:11:5a:be:da:41:35:ad:27:5c:98:b9:7f:f1:
8c:c2:2e:8d:2e:68:4a:42:14:4e:19:8f:4c:94:3f:4b:b6:fc:
21:c4:c8:ef:d1:2b:9c:58:f3:aa:17:84:42:7e:97:f2:3b:f7:
75:cf:a1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:16 2024 by rpki-client on console-ams.rpki-client.org