Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dgM--l_EOqVZ0GvDLsa0dd1ofa0.roa
File: dgM--l_EOqVZ0GvDLsa0dd1ofa0.roa (raw, json)
Hash identifier: yYVqfa8ULqPCZr8vQhQp55SO/7syMYnm3A6MleAAR8Y=
Subject key identifier: 76:03:3E:FA:5F:C4:3A:A5:59:D0:6B:C3:2E:C6:B4:75:DD:68:7D:AD
Certificate issuer: /CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Certificate serial: 01856EB8E74F2F0AD252430164A41D80638D
Authority key identifier: 74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dgM--l_EOqVZ0GvDLsa0dd1ofa0.roa
Signing time: Sun 01 Jan 2023 19:04:49 +0000
ROA not before: Sun 01 Jan 2023 19:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16418
IP address blocks: 185.8.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:e7:4f:2f:0a:d2:52:43:01:64:a4:1d:80:63:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Validity
Not Before: Jan 1 19:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76033efa5fc43aa559d06bc32ec6b475dd687dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:b5:2e:39:0a:ac:bb:49:b9:ea:0e:ba:86:
85:47:6a:de:c3:74:a9:bc:ca:a4:5d:10:68:a5:65:
8f:85:c1:06:14:4a:30:36:10:6e:7e:07:17:80:20:
ac:f5:6f:fe:c7:4e:71:7b:b0:60:31:bc:f2:8b:0d:
d1:fb:fd:04:69:d6:ad:9c:9e:ee:76:08:b7:65:13:
a4:92:37:b2:86:90:d7:cf:1b:5f:62:a6:cc:73:24:
1c:35:ed:cf:50:45:12:6f:09:91:bd:bf:5a:95:95:
0d:2c:6f:ba:fd:17:39:c7:9b:fa:8e:c8:ac:83:7d:
18:2d:65:7a:03:46:ef:ad:bd:0f:44:af:3f:95:51:
97:c2:1d:66:74:c3:3a:6d:e5:84:67:89:2a:35:39:
f9:54:05:19:43:66:0b:b2:13:a3:e6:6f:c5:25:df:
02:12:1b:1f:76:ea:d6:f0:79:21:6d:36:19:90:87:
09:12:1f:5d:b2:b8:4b:cc:38:62:31:e1:7f:5f:ce:
1f:2a:4d:ac:6a:7b:0e:c2:81:ba:01:8f:db:59:ce:
b2:95:17:0f:54:ad:c9:07:d3:0c:58:55:64:b5:22:
5d:08:3b:71:cc:e9:d7:ef:72:26:34:62:0e:8f:64:
c1:a7:b0:2c:e7:5e:ee:04:98:93:a5:86:e7:f3:6f:
a5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:03:3E:FA:5F:C4:3A:A5:59:D0:6B:C3:2E:C6:B4:75:DD:68:7D:AD
X509v3 Authority Key Identifier:
keyid:74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dgM--l_EOqVZ0GvDLsa0dd1ofa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.134.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1a:bf:6d:fe:f4:f2:4d:88:b3:63:4b:58:69:44:1e:5f:1d:
44:61:32:bc:aa:90:be:86:0a:9b:72:da:e6:03:b9:09:de:46:
29:ca:0a:52:59:f2:02:dd:99:e9:19:7b:64:d8:f1:e7:ff:b8:
7f:4b:e2:e0:23:9e:8d:b6:39:8c:9d:c0:9a:6b:a8:76:12:11:
bd:40:d7:c3:48:b5:81:60:e3:fc:88:d1:91:0a:28:8b:d1:b2:
d7:07:2d:48:27:2d:dc:d9:91:94:42:ea:aa:49:bf:2d:4f:74:
6c:82:1d:a9:99:8a:e3:ba:54:8f:de:3b:7e:b5:44:cf:61:be:
08:62:1a:d1:6d:b2:db:8b:32:8a:b7:47:a8:56:61:a3:a6:49:
9b:e3:7c:46:48:9a:f2:10:22:63:8e:68:b3:72:28:55:93:7e:
42:33:c7:8f:5e:c1:6c:90:5b:0a:a3:50:b5:a7:e7:92:76:c7:
44:83:c6:a5:dc:07:b5:86:6e:7a:55:6d:d2:96:4b:21:92:25:
17:8f:04:22:09:c0:4d:00:36:96:a2:eb:de:c7:44:ac:46:0f:
ff:42:9f:89:57:e7:9b:9f:04:e1:2e:1e:20:f1:d1:89:59:8d:
a7:cd:df:e3:99:5c:ab:85:22:17:d7:31:01:96:68:3f:74:73:
9c:a7:08:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:41 2024 by rpki-client on console-ams.rpki-client.org