Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/dmdQ7YUy1BuKBhEBnIkrPuQW3No.roa
File: dmdQ7YUy1BuKBhEBnIkrPuQW3No.roa (raw, json)
Hash identifier: 4Fv0PB8Q0pBe0EtfuMyPQwpJr3GCJjksFnv9+7USmmE=
Subject key identifier: 76:67:50:ED:85:32:D4:1B:8A:06:11:01:9C:89:2B:3E:E4:16:DC:DA
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018A7B9E6390AD7A1BBD62990C924AF13EF1
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/dmdQ7YUy1BuKBhEBnIkrPuQW3No.roa
Signing time: Sat 09 Sep 2023 20:24:52 +0000
ROA not before: Sat 09 Sep 2023 20:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.151.146.0/24 maxlen: 24
185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 11:54:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7b:9e:63:90:ad:7a:1b:bd:62:99:0c:92:4a:f1:3e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Sep 9 20:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=766750ed8532d41b8a0611019c892b3ee416dcda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:54:08:d8:d6:e8:1a:c3:83:84:09:02:60:27:
5e:c2:34:a5:6b:cf:1b:e5:af:a0:f2:a6:8f:de:af:
c3:65:e0:94:23:13:1a:f1:14:0d:f9:fd:8a:f8:78:
a3:3a:b5:3e:08:ae:47:3e:ad:36:57:14:89:0f:7f:
a3:77:3f:06:4d:42:86:bd:b0:01:e5:d2:d3:87:9a:
32:ad:31:a0:3f:a5:2f:f1:9d:23:40:33:15:55:bd:
4b:b4:aa:01:87:ed:d3:cd:6d:e8:f5:90:6d:d6:65:
ee:2f:d7:de:b9:d5:82:4b:51:ff:ae:82:be:c1:5d:
48:40:56:0a:21:44:43:e8:f8:18:11:0e:84:12:98:
0a:52:be:04:4a:fd:bb:0a:e7:f9:69:51:04:9c:14:
10:af:8a:d4:c5:b0:76:6f:bb:0e:12:14:4a:5e:e3:
0d:3e:07:fe:e3:1f:c7:c8:bf:7b:89:61:d5:68:2f:
b4:67:9b:5e:93:99:dd:ef:c5:99:a5:54:d6:45:04:
8b:e6:45:7d:ff:e3:9a:a9:ed:15:eb:e4:c2:49:f7:
f1:ec:d9:91:9d:03:3a:7b:fe:0a:1f:c7:28:44:e7:
c2:97:c9:e2:60:35:a6:ba:fa:a9:c1:a7:e0:1c:0a:
f2:ca:97:8c:7d:0f:0e:f2:ba:de:31:40:65:59:20:
85:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:67:50:ED:85:32:D4:1B:8A:06:11:01:9C:89:2B:3E:E4:16:DC:DA
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/dmdQ7YUy1BuKBhEBnIkrPuQW3No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
185.151.146.0/24
Signature Algorithm: sha256WithRSAEncryption
94:05:1c:29:40:4b:67:b6:18:b2:1c:86:48:0e:ba:ad:aa:c8:
55:8b:83:20:78:84:8a:41:2f:79:33:de:0a:63:ec:22:04:f5:
08:1b:f0:4c:6e:02:23:fd:00:de:5e:3d:49:10:b0:81:1c:78:
e0:54:95:84:f1:4d:24:fa:52:72:da:7c:ce:3d:01:f2:8f:7d:
8c:94:73:2d:da:f8:6b:2e:71:1b:68:7e:75:2c:da:25:1e:f2:
39:37:e6:ed:ef:5e:96:d9:e5:f4:5d:11:39:25:90:8f:0e:a6:
11:25:08:c7:c7:a5:b7:98:67:23:9f:0a:59:e1:cd:3a:1f:54:
f0:c2:ea:b5:79:e2:9b:5b:58:15:d6:a9:80:34:f3:7c:ce:e5:
96:b1:e4:8a:fe:e6:49:5c:ef:38:4a:cf:90:51:f7:be:92:f7:
35:09:ea:27:03:ec:42:d7:b7:33:53:f4:a9:46:07:1e:f3:a5:
f1:3f:01:f5:4d:16:2b:f2:8a:85:eb:83:12:07:47:43:4b:09:
86:b9:78:cc:b4:a7:f0:eb:a9:25:42:1a:bb:33:b0:02:31:43:
38:30:cb:c7:51:8a:59:cc:5a:02:99:7e:be:dc:93:c9:c0:8c:
6c:36:99:77:e5:60:f6:8a:e5:b0:f6:6f:5b:0d:0c:2c:6d:f6:
5d:81:b4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:42 2024 by rpki-client on console-ams.rpki-client.org