Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/DCOFNaPNJiY8ff1BE0iDI-BefhU.roa
File: DCOFNaPNJiY8ff1BE0iDI-BefhU.roa (raw, json)
Hash identifier: paF8NdIWLFkp3aGnKsqvAmOmi4tDV+CECjWj6YP5Yu8=
Subject key identifier: 0C:23:85:35:A3:CD:26:26:3C:7D:FD:41:13:48:83:23:E0:5E:7E:15
Certificate issuer: /CN=15ddd4c9dc23fac35574fce2b4294398add8521c
Certificate serial: 0185737A7528D8BEE679C108D2A1B1987822
Authority key identifier: 15:DD:D4:C9:DC:23:FA:C3:55:74:FC:E2:B4:29:43:98:AD:D8:52:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fd3Uydwj-sNVdPzitClDmK3YUhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/DCOFNaPNJiY8ff1BE0iDI-BefhU.roa
Signing time: Mon 02 Jan 2023 17:14:43 +0000
ROA not before: Mon 02 Jan 2023 17:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.164.122.0/24 maxlen: 24
185.164.120.0/24 maxlen: 24
185.221.96.0/24 maxlen: 24
185.221.98.0/24 maxlen: 24
185.221.97.0/24 maxlen: 24
185.221.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 18:27:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:75:28:d8:be:e6:79:c1:08:d2:a1:b1:98:78:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ddd4c9dc23fac35574fce2b4294398add8521c
Validity
Not Before: Jan 2 17:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c238535a3cd26263c7dfd4113488323e05e7e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ca:bf:da:d7:5e:1f:96:c1:0c:62:0c:7d:b9:
15:fc:e3:16:53:45:b2:ef:5b:24:d9:08:32:a7:0e:
b5:ba:bc:0b:d3:aa:b2:c4:d9:17:70:b0:80:95:99:
17:02:e8:f4:c5:5f:9e:f9:2e:40:2e:82:06:b2:2c:
42:74:de:3f:66:86:c9:87:d7:05:45:c6:61:41:a1:
d7:0e:ad:8c:22:86:0f:ce:e7:c7:22:3c:44:ae:62:
34:1b:d7:9a:da:11:fb:93:76:de:29:9c:2f:ad:87:
f7:d0:ed:5b:28:87:15:0c:7a:4a:a7:f5:7b:b8:dc:
da:17:3a:0b:04:8f:d7:b3:5d:e6:a0:bc:5c:03:8e:
3f:ea:ae:9e:47:e4:d1:78:44:6e:ed:f4:3f:80:98:
0b:50:34:b2:87:53:c8:bf:dc:58:61:7f:50:58:95:
3b:1f:8c:74:34:4c:c6:27:ee:71:99:ee:85:7d:64:
72:8a:c1:87:25:9e:9e:8e:12:ea:fb:9f:54:7c:54:
75:f1:de:5d:7b:fd:cd:26:f7:cd:48:57:0b:42:f7:
f1:ee:19:ec:73:53:82:7e:89:f2:ed:0f:a7:6b:87:
dc:a7:54:3c:0f:11:6c:75:97:4a:9f:5e:15:04:51:
54:73:5a:d0:2f:6a:26:ac:87:e2:ea:f6:c1:2b:13:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:23:85:35:A3:CD:26:26:3C:7D:FD:41:13:48:83:23:E0:5E:7E:15
X509v3 Authority Key Identifier:
keyid:15:DD:D4:C9:DC:23:FA:C3:55:74:FC:E2:B4:29:43:98:AD:D8:52:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fd3Uydwj-sNVdPzitClDmK3YUhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/DCOFNaPNJiY8ff1BE0iDI-BefhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/Fd3Uydwj-sNVdPzitClDmK3YUhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.120.0/24
185.164.122.0/24
185.221.96.0/22
Signature Algorithm: sha256WithRSAEncryption
44:3c:c9:cc:4d:8b:62:84:db:d0:ec:89:43:e7:59:1c:91:86:
44:a8:35:e7:66:d6:34:8e:f1:88:35:8f:b3:98:2c:d1:83:c0:
62:57:16:f2:3d:d4:c6:b0:c6:3a:43:80:53:7a:e2:6b:76:11:
a5:fb:98:5c:6c:ee:e2:f0:7e:05:ec:ad:64:70:30:c2:42:19:
a6:c0:50:5c:dc:bf:5b:5b:5d:3f:4c:b2:00:d4:9f:47:91:4a:
c0:05:38:02:8d:ec:4a:ae:ec:a1:24:b5:d1:e8:0d:de:19:3d:
e5:ff:3b:a0:27:a0:4a:e2:98:a2:8b:b4:b4:d7:1a:a1:ba:e5:
d8:1e:d6:3b:0b:dd:83:28:ea:2e:cf:e5:fa:4d:30:59:48:34:
0d:19:4c:4b:db:02:69:2d:29:47:e0:fc:30:43:4e:b3:88:ae:
0e:40:01:2f:b6:27:a8:36:fe:58:37:da:00:7f:23:63:95:78:
6c:aa:4d:8a:fd:83:fd:50:f2:42:78:7d:98:dc:d3:9d:66:f5:
f4:1a:70:02:37:47:df:72:89:89:58:03:f6:6a:74:8c:22:67:
0c:7d:74:ac:82:a7:5d:28:b0:a7:21:19:5f:ae:ee:06:9a:84:
2b:1a:6b:a2:fd:00:60:be:f7:d0:7a:da:9e:4a:eb:f8:a0:ee:
8f:02:47:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:23 2024 by rpki-client on console-ams.rpki-client.org