Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/AmtGJICvx2xu1x1sWT8_Qg6JpwQ.roa
File: AmtGJICvx2xu1x1sWT8_Qg6JpwQ.roa (raw, json)
Hash identifier: H35COcEWwRX78GrfMBdkhuYH0yWWHN0U+ozf0vKKYLc=
Subject key identifier: 02:6B:46:24:80:AF:C7:6C:6E:D7:1D:6C:59:3F:3F:42:0E:89:A7:04
Certificate issuer: /CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Certificate serial: 01856F8B91C2E807A19AC24E440EE17A5E8C
Authority key identifier: 12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/AmtGJICvx2xu1x1sWT8_Qg6JpwQ.roa
Signing time: Sun 01 Jan 2023 22:54:55 +0000
ROA not before: Sun 01 Jan 2023 22:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20857
IP address blocks: 185.88.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:91:c2:e8:07:a1:9a:c2:4e:44:0e:e1:7a:5e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Validity
Not Before: Jan 1 22:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=026b462480afc76c6ed71d6c593f3f420e89a704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:53:d0:c3:b6:c7:a8:40:87:39:7d:d3:fd:5a:
40:82:81:bd:fe:ff:d7:89:42:fc:b6:ab:bc:e7:0f:
c0:c6:a2:35:45:99:f9:fe:ec:5d:52:31:59:b3:b0:
bc:0f:3d:97:37:4f:af:03:19:d0:f9:8d:0f:6e:22:
e0:b0:82:d6:c4:b4:e1:01:ea:f9:57:ed:a4:01:f4:
24:c1:79:e5:46:f5:bd:c0:96:32:6e:98:d6:dd:b3:
01:6d:0d:df:82:2d:f1:ec:86:c3:a6:85:47:f9:ff:
a5:c0:01:01:da:92:84:a1:72:8b:0a:bd:16:a2:1a:
d5:0a:76:a2:db:13:f7:cd:d4:c3:44:9f:3e:d5:30:
49:d4:06:cf:b5:1d:d3:31:65:07:df:85:29:27:ed:
ac:86:38:f5:ab:20:d2:60:ac:32:bb:97:a4:29:50:
4f:e7:e5:b2:76:0b:aa:8a:77:69:9e:0b:4d:d8:da:
88:90:48:36:45:65:cf:0a:8c:87:41:4d:36:8b:7b:
2a:a5:b9:5c:8b:f5:77:2f:c3:4a:10:ae:02:0d:3f:
c2:ee:50:a9:8b:40:7a:81:fa:8e:b5:7c:78:ec:02:
24:3f:d9:b4:3b:81:bb:cc:ec:fb:de:39:c9:55:6f:
14:55:0f:69:0e:91:0c:3f:53:f9:93:f9:9e:7d:ed:
b5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6B:46:24:80:AF:C7:6C:6E:D7:1D:6C:59:3F:3F:42:0E:89:A7:04
X509v3 Authority Key Identifier:
keyid:12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/AmtGJICvx2xu1x1sWT8_Qg6JpwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/EjDNjhPIbY74NcGqx9X5U0VcA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.148.0/22
Signature Algorithm: sha256WithRSAEncryption
85:75:d8:68:6d:45:d9:89:69:48:d7:e3:ce:90:17:a8:d3:4a:
14:0f:ff:6b:b3:97:4f:a4:a4:8a:94:c3:a6:3c:10:8a:ef:00:
15:51:23:27:16:c0:23:4a:03:d2:e8:b8:8f:64:ec:ee:c0:f6:
47:e1:b4:46:17:47:a7:1d:d1:49:9f:0f:bd:ae:44:bb:ab:7f:
63:ba:a5:cf:f8:8b:9f:33:d1:07:10:98:42:ff:68:d8:37:c8:
69:05:94:bc:cc:41:6e:f2:5f:6e:f1:b9:f6:31:a9:81:91:ba:
ec:83:8f:55:4d:68:a8:f4:5c:2e:d4:91:4f:29:05:99:72:af:
57:44:6c:64:cf:b7:c0:af:63:3b:7e:26:48:4e:71:aa:27:29:
bd:17:fa:b9:f1:73:07:c6:15:69:34:03:ef:e5:fe:a3:b2:20:
b5:9c:58:cb:56:2e:e6:62:b9:53:88:df:92:39:fe:f8:e0:4f:
b6:88:d6:ac:83:6b:71:e9:61:bf:09:d3:f6:23:5d:1e:73:0a:
93:bc:1a:da:43:c2:8d:a7:07:b8:6b:13:4f:89:5c:86:61:25:
07:36:13:e2:73:8e:02:4b:14:6b:af:e5:4e:60:9e:40:50:60:
ec:fa:38:b2:bb:09:f0:20:45:af:b0:71:b6:48:f7:e0:55:d1:
dc:8c:ce:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:27 2024 by rpki-client on console-fra.rpki-client.org