Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/0e0821-aee9-4b96-8776-590fb949d104/1/rBuMTU2ujt95C_XoETRZqUZWSR0.roa
File: rBuMTU2ujt95C_XoETRZqUZWSR0.roa (raw, json)
Hash identifier: YTdH11WayfSyRFqQzuF1jC6eL3EI+mQt1RhiwYRoy+E=
Subject key identifier: AC:1B:8C:4D:4D:AE:8E:DF:79:0B:F5:E8:11:34:59:A9:46:56:49:1D
Certificate issuer: /CN=16a04ee04b12823e853ff243d36551e4ce683a73
Certificate serial: 018570708B84C062095B4C14D384E1B89F2D
Authority key identifier: 16:A0:4E:E0:4B:12:82:3E:85:3F:F2:43:D3:65:51:E4:CE:68:3A:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FqBO4EsSgj6FP_JD02VR5M5oOnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/0e0821-aee9-4b96-8776-590fb949d104/1/rBuMTU2ujt95C_XoETRZqUZWSR0.roa
Signing time: Mon 02 Jan 2023 03:05:02 +0000
ROA not before: Mon 02 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21459
IP address blocks: 185.203.60.0/22 maxlen: 24
217.68.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:8b:84:c0:62:09:5b:4c:14:d3:84:e1:b8:9f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16a04ee04b12823e853ff243d36551e4ce683a73
Validity
Not Before: Jan 2 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac1b8c4d4dae8edf790bf5e8113459a94656491d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2b:e9:b7:4e:d1:e7:68:5e:e6:2e:b7:78:f5:
b2:31:b2:73:c2:fe:af:b3:d8:97:5b:3f:97:9f:16:
47:12:34:52:08:2a:54:5f:c0:40:82:7c:f6:6d:36:
cf:57:bf:52:bb:3d:05:b3:f7:80:33:03:31:2c:b4:
62:01:80:73:70:0e:ea:3d:23:21:45:cc:ef:82:7a:
d5:1a:21:85:03:bb:df:e9:8a:2e:8d:f5:34:e4:f3:
0c:b7:bf:f3:1a:b6:42:28:af:5a:19:3d:a1:13:39:
a9:94:e3:2b:8e:03:6b:73:9d:d5:04:d1:e1:e3:0f:
5f:50:58:02:1d:67:86:6f:34:1f:27:49:98:31:38:
3e:cf:a3:16:d0:3c:34:4a:8b:5f:33:ba:8d:94:7c:
91:c7:48:51:18:83:5e:45:12:a8:57:49:76:1a:74:
5c:d0:44:a7:26:b5:1f:8f:50:42:cd:ac:e4:0f:58:
5d:7e:05:89:bc:85:65:42:cd:3e:39:7d:bc:ee:b8:
64:69:29:a7:1c:36:02:48:1e:20:bc:d0:b0:b3:7c:
40:32:17:a0:b3:ed:f9:c5:fc:64:d6:71:db:1c:58:
b8:80:4c:4e:2b:11:50:68:f1:83:f1:f0:7c:1d:86:
90:ed:d8:7c:ca:4c:80:d4:5f:55:57:d0:93:06:60:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:8C:4D:4D:AE:8E:DF:79:0B:F5:E8:11:34:59:A9:46:56:49:1D
X509v3 Authority Key Identifier:
keyid:16:A0:4E:E0:4B:12:82:3E:85:3F:F2:43:D3:65:51:E4:CE:68:3A:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FqBO4EsSgj6FP_JD02VR5M5oOnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/0e0821-aee9-4b96-8776-590fb949d104/1/rBuMTU2ujt95C_XoETRZqUZWSR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/0e0821-aee9-4b96-8776-590fb949d104/1/FqBO4EsSgj6FP_JD02VR5M5oOnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.60.0/22
217.68.64.0/20
Signature Algorithm: sha256WithRSAEncryption
92:02:02:7d:ef:92:a4:04:dc:17:be:35:12:5f:70:9b:12:f5:
8d:43:81:43:f5:44:4b:25:fb:da:4b:c7:7c:89:9e:4b:e3:32:
ad:89:d4:9f:1c:b2:c6:2b:e7:9a:7e:e6:89:23:f7:3f:12:33:
e2:11:a4:f6:e1:4b:d2:aa:56:19:23:b3:6e:7f:79:34:be:59:
5f:a3:16:96:29:4d:b9:9a:cb:42:7f:a3:dc:60:c4:31:9f:9b:
df:4c:ea:f1:38:f3:98:26:3b:cc:74:51:6d:ac:5b:3d:63:a0:
76:f5:7d:26:cb:01:d5:f2:e6:53:29:52:7e:39:f5:4f:00:cc:
06:9a:34:da:f6:27:ab:54:31:95:8d:b4:49:64:e9:92:26:f3:
ab:ee:99:ab:30:37:35:7d:1e:59:36:36:25:27:2c:d5:1f:c0:
72:f9:a8:a2:6c:a3:33:7a:6c:77:35:25:6e:9d:c8:05:d6:ff:
63:2f:c1:10:c1:b8:50:a7:d7:c0:03:bf:38:43:01:96:be:93:
92:fe:30:11:4b:86:57:5f:83:87:a6:98:6e:a0:1b:84:1b:c8:
40:bc:9e:1b:10:3a:d1:25:07:32:c3:6d:82:b9:ae:1c:1a:f3:
e4:cb:da:5f:82:fa:a9:6a:97:c7:24:2a:f2:0d:fe:1c:59:8f:
7c:e4:0d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:54 2024 by rpki-client on console-ams.rpki-client.org