Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/j0OS43QOF-RkC6vZJQtvO0zLve4.roa
File: j0OS43QOF-RkC6vZJQtvO0zLve4.roa (raw, json)
Hash identifier: WOwvprA/jCF0HPjIp6dNEk5+79b6hlaDYuRIMACKDQ4=
Subject key identifier: 8F:43:92:E3:74:0E:17:E4:64:0B:AB:D9:25:0B:6F:3B:4C:CB:BD:EE
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 018751E7214FEAB4DA77A48E2BD37FFA475D
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/j0OS43QOF-RkC6vZJQtvO0zLve4.roa
Signing time: Wed 05 Apr 2023 14:51:54 +0000
ROA not before: Wed 05 Apr 2023 14:51:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213305
IP address blocks: 185.63.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 06:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:e7:21:4f:ea:b4:da:77:a4:8e:2b:d3:7f:fa:47:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Apr 5 14:51:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f4392e3740e17e4640babd9250b6f3b4ccbbdee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e8:14:56:b3:0d:61:0e:6e:77:73:58:6d:73:
43:3e:98:b9:fb:b1:37:69:1a:cd:81:b8:92:87:2c:
1c:9c:89:7a:43:47:8f:2d:87:c9:9a:96:0e:00:83:
6b:94:05:e1:85:60:94:08:10:c2:6d:f6:25:c3:19:
ed:f8:71:32:9f:cc:4d:75:ce:64:97:a5:de:a9:10:
3e:79:39:9a:6a:e5:8d:36:00:a5:d1:f8:72:e1:3c:
1e:fe:5f:87:d6:9c:33:d4:83:dd:3b:ef:1d:71:26:
ab:a4:4e:78:e3:06:b8:ef:37:d1:f3:79:ff:13:2f:
38:63:39:2f:b9:a0:96:7d:d8:9e:ef:7f:ba:bd:51:
d1:a7:37:a8:19:f5:43:0b:20:1b:6c:97:d5:80:83:
0a:ef:34:68:5c:6c:d6:d7:1b:d6:11:91:25:eb:d4:
46:33:10:43:13:e4:17:58:76:0c:99:fa:38:6a:ee:
a2:12:b2:d1:3c:6a:54:27:fd:e2:26:cc:26:a7:94:
75:f2:bf:a2:7f:b0:5f:e2:2e:91:cf:f1:aa:ee:ce:
a7:7f:af:aa:2b:37:47:24:3f:b0:0b:7a:45:9b:7d:
22:e6:35:65:19:44:59:67:c5:44:92:42:8b:b7:60:
3b:d3:e5:0e:16:ba:f9:52:66:9b:35:2d:83:17:d5:
85:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:43:92:E3:74:0E:17:E4:64:0B:AB:D9:25:0B:6F:3B:4C:CB:BD:EE
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/j0OS43QOF-RkC6vZJQtvO0zLve4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.34.0/24
Signature Algorithm: sha256WithRSAEncryption
49:6d:cd:36:36:e5:ad:c6:02:2f:b9:db:53:5b:df:33:14:1f:
6e:ec:01:aa:27:b2:15:1d:a4:e9:0f:e7:2d:31:b3:e0:8a:cc:
b7:05:ea:d3:e9:da:3b:88:62:b4:8c:c4:00:2d:be:b0:26:ec:
f6:80:64:01:d3:26:06:3f:e3:ab:39:e4:ce:aa:8b:c1:37:f9:
2e:e6:79:23:12:3b:ca:ec:97:9d:45:76:e8:b2:9c:0a:b0:f0:
00:0f:26:9d:ab:ce:79:bb:4e:d4:6b:8b:3f:aa:14:f1:65:49:
75:34:0d:59:e6:a3:36:22:10:c9:73:8f:ea:0e:8c:fe:74:0d:
f0:ed:fe:eb:2c:75:cc:68:37:42:e5:6a:3c:2f:c3:b7:65:66:
18:cf:30:6f:7a:76:72:be:cb:57:d6:f3:4e:4d:4e:25:9a:64:
b4:e6:f8:69:67:73:05:14:5e:fd:23:56:41:92:90:56:33:1a:
c4:62:2e:8e:f8:0d:44:ca:25:67:b2:35:79:29:ba:ad:0d:6d:
6b:6e:a4:a0:59:79:65:d2:f4:d6:76:43:5b:9e:71:61:78:05:
39:ba:c4:b9:e8:2c:0e:c8:4d:40:02:65:ee:bc:af:2b:9e:87:
d0:2b:3b:54:8e:b8:de:3f:b5:82:9b:56:3d:5e:2d:d3:e8:24:
ac:32:78:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org