Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DX60JjfZmuiU7W_gOfUzQPRV4mU.roa
File: DX60JjfZmuiU7W_gOfUzQPRV4mU.roa (raw, json)
Hash identifier: Hz6ky/ee2nuxX7Oxm1FoBEKBupbYOGTulYDC7gbfc24=
Subject key identifier: 0D:7E:B4:26:37:D9:9A:E8:94:ED:6F:E0:39:F5:33:40:F4:55:E2:65
Certificate issuer: /CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Certificate serial: 0185706762C4DA06C71F01D447A16F01C9BA
Authority key identifier: 0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DX60JjfZmuiU7W_gOfUzQPRV4mU.roa
Signing time: Mon 02 Jan 2023 02:55:01 +0000
ROA not before: Mon 02 Jan 2023 02:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 185.245.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:62:c4:da:06:c7:1f:01:d4:47:a1:6f:01:c9:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Validity
Not Before: Jan 2 02:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d7eb42637d99ae894ed6fe039f53340f455e265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:25:0a:69:20:d9:bc:e6:20:16:c1:94:97:
51:09:25:ef:29:e9:f0:bc:85:8b:2c:71:11:a5:70:
b9:ea:95:76:38:fa:f7:9b:95:bb:d6:7d:cf:99:e4:
24:86:1e:bf:a7:c9:01:78:68:39:6c:d7:85:fc:40:
97:c7:1b:6f:30:ea:62:12:8f:5e:d8:76:51:5a:df:
cf:d8:0d:0d:fc:b7:f1:53:03:a0:11:f0:c9:5b:fe:
06:a8:3b:29:37:43:27:04:34:18:75:47:5d:3d:81:
08:f2:fc:16:0b:ff:b1:45:8b:77:6f:77:03:a2:46:
e0:d0:2e:98:b1:46:45:aa:ce:6a:4d:d1:6b:91:99:
b3:0d:0f:43:e9:70:ac:3c:b0:d7:fc:cd:d9:65:66:
79:13:1e:94:2d:92:f6:31:ab:60:f8:83:a1:0a:22:
85:b3:cc:7b:aa:d6:fa:84:23:9e:32:88:4d:62:fd:
93:2a:99:8d:ad:c3:21:b1:18:36:7d:41:69:89:20:
78:ce:97:e1:76:ea:11:cc:43:81:11:a0:4c:6a:ef:
37:0e:09:c1:28:46:77:fb:5f:b9:e6:ba:c2:41:6f:
f5:fa:11:b1:c3:2b:38:67:99:e8:4d:19:95:2f:12:
0e:ac:83:c5:f6:dc:e8:e9:ab:2b:23:96:69:8a:f3:
cc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7E:B4:26:37:D9:9A:E8:94:ED:6F:E0:39:F5:33:40:F4:55:E2:65
X509v3 Authority Key Identifier:
keyid:0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DX60JjfZmuiU7W_gOfUzQPRV4mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.100.0/24
Signature Algorithm: sha256WithRSAEncryption
05:02:fc:49:76:8d:84:0e:b0:8d:b0:84:71:37:9b:04:20:12:
ae:5f:4c:9f:0a:63:a4:6c:cb:50:12:5a:86:cc:07:99:e1:03:
75:95:f5:83:16:66:56:88:93:aa:cd:5c:f7:cc:e7:9a:0c:ff:
31:69:4c:a8:42:bd:bd:e8:f8:ef:f7:93:45:62:9f:d8:dd:c4:
4a:6c:07:94:d0:44:e6:2a:55:57:02:e4:53:73:3c:e1:33:c9:
88:96:44:85:5e:2a:f4:6a:e2:b1:71:b5:24:8d:aa:71:2f:a3:
5e:6f:3e:aa:98:e8:14:83:8a:da:30:fa:3e:94:83:12:28:10:
af:12:21:ab:87:c9:a3:83:b2:c1:e1:ff:40:83:f9:3b:2a:a7:
89:05:5a:2a:75:1c:44:e8:35:a4:24:40:4a:f0:c2:78:fa:7b:
dc:ca:42:4f:3b:ac:65:40:72:dd:78:8d:48:5c:90:cc:cf:ce:
8f:e8:cb:cc:f1:4d:e3:11:cf:6d:be:4a:98:91:82:95:b6:78:
5c:a1:6c:61:05:45:6d:2f:53:73:3d:ed:fc:2b:36:90:0b:55:
ad:11:fd:5e:a2:d8:94:6c:a5:f1:dd:04:b3:22:77:a1:b8:1d:
d6:99:dd:f8:2c:5b:dc:07:c5:c4:b1:0a:f3:5d:96:11:8b:e8:
34:12:79:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:46 2024 by rpki-client on console-ams.rpki-client.org