Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/sFOB3VjK738vN1kz1AVaHcEewi4.roa
File: sFOB3VjK738vN1kz1AVaHcEewi4.roa (raw, json)
Hash identifier: lRlWH43jLdocbC2mEo/l3BognbyN3eQ+csQoAckTK9I=
Subject key identifier: B0:53:81:DD:58:CA:EF:7F:2F:37:59:33:D4:05:5A:1D:C1:1E:C2:2E
Certificate issuer: /CN=caf44942a29fac612cd44f83ad317a1c0f5b8eea
Certificate serial: 018717C16F000C8C46BBFAFE7EAEC7570757
Authority key identifier: CA:F4:49:42:A2:9F:AC:61:2C:D4:4F:83:AD:31:7A:1C:0F:5B:8E:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yvRJQqKfrGEs1E-DrTF6HA9bjuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/sFOB3VjK738vN1kz1AVaHcEewi4.roa
Signing time: Sat 25 Mar 2023 07:52:45 +0000
ROA not before: Sat 25 Mar 2023 07:52:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204650
IP address blocks: 185.136.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 10:26:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:17:c1:6f:00:0c:8c:46:bb:fa:fe:7e:ae:c7:57:07:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caf44942a29fac612cd44f83ad317a1c0f5b8eea
Validity
Not Before: Mar 25 07:52:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b05381dd58caef7f2f375933d4055a1dc11ec22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d1:29:3b:d6:a3:46:10:4e:5e:7e:0c:a1:c0:
d7:0f:22:40:2e:7a:d8:35:18:f0:9f:7a:85:10:cd:
f8:73:f3:0d:b7:64:57:3b:a6:15:ba:03:82:6a:73:
ab:f6:7e:7c:1d:07:28:47:78:0b:38:81:2b:0f:d8:
2c:bc:12:eb:5c:80:50:2a:f0:99:eb:28:b8:6d:c6:
e3:d7:85:30:49:ba:c5:5d:17:ba:62:ce:71:34:97:
be:a7:dc:9f:b5:5e:2a:43:54:46:9c:1f:e3:21:e4:
92:ad:cf:7a:6a:cd:3e:61:09:aa:45:f4:db:ae:bb:
7c:8b:85:c4:85:5f:85:c8:68:2e:79:f3:04:8e:1b:
2c:e9:44:6a:17:5e:3c:25:b8:55:f0:62:26:5f:df:
17:5b:bc:48:f6:68:1d:44:0f:1c:52:bc:ea:ba:b5:
fe:6e:92:af:81:4a:0e:61:39:17:12:5a:2a:51:79:
43:65:23:96:ff:9e:b6:d1:ed:03:b6:1e:56:e6:35:
ad:a5:97:8b:df:1a:a6:2b:f1:97:62:83:a7:dc:58:
91:a2:40:61:08:07:1e:93:0a:5f:5e:00:ea:b0:54:
79:c7:e1:0f:16:c8:1c:06:db:01:1a:57:6e:1e:0b:
11:93:b8:6e:a8:2a:c0:dc:21:e0:5a:fb:05:bd:f0:
42:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:53:81:DD:58:CA:EF:7F:2F:37:59:33:D4:05:5A:1D:C1:1E:C2:2E
X509v3 Authority Key Identifier:
keyid:CA:F4:49:42:A2:9F:AC:61:2C:D4:4F:83:AD:31:7A:1C:0F:5B:8E:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yvRJQqKfrGEs1E-DrTF6HA9bjuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/sFOB3VjK738vN1kz1AVaHcEewi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/yvRJQqKfrGEs1E-DrTF6HA9bjuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.135.0/24
Signature Algorithm: sha256WithRSAEncryption
58:85:e8:4e:28:a3:e9:01:ef:d0:e7:6e:01:7f:9b:35:71:97:
d3:46:2f:b8:71:5f:13:63:c6:d8:04:bc:59:73:3e:c8:58:5f:
50:9c:77:95:a2:60:e0:68:32:2b:d1:68:0a:af:93:8d:51:1d:
86:15:b6:a3:b9:9b:ba:fc:31:3c:78:26:4a:67:77:76:d3:b8:
1a:f8:ce:ab:8f:78:07:66:7f:bf:83:08:c3:ab:b5:95:79:3a:
64:be:77:0a:be:ee:2d:12:ac:75:f7:05:13:01:74:75:20:5a:
94:f8:56:80:60:df:c0:82:16:fd:95:a9:d6:ff:27:2c:1a:5f:
a6:ac:3a:7e:98:fc:7c:c5:6f:eb:0e:e0:39:a4:70:98:dc:43:
37:fd:d4:06:f9:58:c7:95:80:f9:b9:30:c9:86:8e:c9:03:7f:
05:cc:c2:3f:c1:e4:33:f5:1b:1d:e0:83:a7:d5:d7:2e:02:a8:
c2:af:57:fd:80:3d:56:4c:8f:cb:51:fa:c1:bb:42:4e:02:a3:
92:5b:75:ec:29:30:2b:d7:8f:71:f0:8c:48:e9:5a:19:71:c3:
cc:32:cd:1b:e2:19:ec:fc:5f:a9:81:27:96:61:0c:f4:5b:f2:
f0:42:83:cb:9c:35:f0:92:a9:21:48:75:69:76:9c:10:92:d5:
20:83:91:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:00 2024 by rpki-client on console-ams.rpki-client.org