Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/TDE3LB8sTKKn8usED9KNp-DmNJk.roa
File: TDE3LB8sTKKn8usED9KNp-DmNJk.roa (raw, json)
Hash identifier: F0G8n/yYlmdk1o2BFa8NWyepSmyHBrk9qLZOflDlNyw=
Subject key identifier: 4C:31:37:2C:1F:2C:4C:A2:A7:F2:EB:04:0F:D2:8D:A7:E0:E6:34:99
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 0189D9721271A9E9CD5FAC84E6E4F082E648
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/TDE3LB8sTKKn8usED9KNp-DmNJk.roa
Signing time: Wed 09 Aug 2023 08:37:58 +0000
ROA not before: Wed 09 Aug 2023 08:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64289
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Aug 2023 08:05:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d9:72:12:71:a9:e9:cd:5f:ac:84:e6:e4:f0:82:e6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Aug 9 08:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c31372c1f2c4ca2a7f2eb040fd28da7e0e63499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:68:44:3e:02:19:d1:af:49:57:fe:35:8b:1e:
4b:dd:4b:ff:6e:5d:b8:f5:cb:6d:0d:1e:a8:60:b5:
e4:ca:8e:93:ae:37:dc:c6:a0:f5:6a:8d:31:9d:36:
4a:a1:0a:dd:61:b5:32:9d:7b:30:20:a4:78:3e:4d:
ce:64:40:18:82:ee:45:57:ed:66:51:71:95:54:7c:
ff:01:68:5b:35:7b:22:be:46:70:1b:e1:39:17:c2:
c1:43:21:10:19:8a:6e:1a:0e:18:00:eb:54:b1:77:
3c:26:1c:ca:3c:cc:70:db:94:b2:80:4f:d1:6a:95:
0b:26:5f:ab:9f:82:55:a6:4a:70:42:83:55:f6:d3:
e9:f9:2a:e0:86:ef:bc:42:05:6c:02:9f:4a:e6:39:
49:1c:49:74:6f:ef:25:5e:dd:61:ef:eb:bb:4e:81:
8d:08:f6:09:93:5b:de:5d:ae:5d:ef:76:02:e8:43:
7b:17:e7:53:9e:88:c9:1d:cf:8d:62:b2:5d:57:98:
2b:26:ee:02:c9:45:7d:8c:27:eb:0e:ea:fc:3b:02:
0c:f4:e6:94:c5:56:6a:80:82:8d:db:9d:9d:a0:6d:
28:b0:82:19:4f:c7:91:ce:1f:ae:25:b5:02:3d:9f:
38:b3:40:86:56:a6:98:37:f1:7a:2d:8d:45:02:a0:
f9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:31:37:2C:1F:2C:4C:A2:A7:F2:EB:04:0F:D2:8D:A7:E0:E6:34:99
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/TDE3LB8sTKKn8usED9KNp-DmNJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
30:0b:7a:8f:75:2d:97:3a:11:ab:ac:e6:ed:9c:12:94:cb:45:
a2:4d:b8:ae:46:8d:c1:ef:64:b5:3b:87:0e:84:26:2a:c7:f5:
a6:6c:99:1a:93:ae:99:91:ca:b4:19:98:b0:0d:33:14:d5:f9:
66:6a:79:02:34:f5:0b:24:bd:49:59:97:4f:9f:1a:b0:70:d1:
d2:5e:71:03:44:9e:b7:d4:61:5b:2e:e5:73:4c:c2:45:5f:2a:
39:5a:4f:d4:3e:d5:a2:29:c0:d6:1d:ba:b7:07:02:81:9d:bf:
86:0f:16:80:1b:4e:73:ad:2c:0a:07:cd:51:56:12:7f:df:e3:
07:f4:8c:86:a7:fb:49:41:07:14:3f:40:e3:d2:b7:87:9d:cb:
6e:f6:99:08:9d:a4:9d:8c:fd:08:08:7a:70:5a:9f:f3:21:cc:
de:aa:e1:a7:34:08:aa:1e:94:25:13:df:7f:e0:08:dd:a6:c2:
5b:e0:35:62:b9:3c:9c:e2:67:bd:93:b0:9c:04:4c:6e:fe:3b:
52:05:41:c8:3d:bf:a3:4e:fb:03:dc:01:3a:1f:34:e8:e5:f4:
b4:8b:f2:db:e2:30:99:21:25:9b:d5:e9:03:be:c2:54:53:4e:
ef:b8:15:34:41:37:8a:c4:7c:82:0f:cd:99:7d:77:73:0b:a2:
49:79:cb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:42 2024 by rpki-client on console-ams.rpki-client.org