Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/ALvyEy3RMxb3PiesBk22UBuJ8TQ.roa
File: ALvyEy3RMxb3PiesBk22UBuJ8TQ.roa (raw, json)
Hash identifier: DsvLPGSC0mVE9t4G+2PC+HosP+WuUe/cwL3B9qNNIxs=
Subject key identifier: 00:BB:F2:13:2D:D1:33:16:F7:3E:27:AC:06:4D:B6:50:1B:89:F1:34
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 0185737AAEFF9D65E6E3D4E7D15B674080E8
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/ALvyEy3RMxb3PiesBk22UBuJ8TQ.roa
Signing time: Mon 02 Jan 2023 17:14:58 +0000
ROA not before: Mon 02 Jan 2023 17:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8473
IP address blocks: 185.65.188.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:ae:ff:9d:65:e6:e3:d4:e7:d1:5b:67:40:80:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Jan 2 17:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00bbf2132dd13316f73e27ac064db6501b89f134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5f:71:61:6b:40:d2:24:11:f2:c6:db:1f:87:
20:4e:9a:d4:6b:c8:aa:9f:73:0c:c1:c6:32:32:d2:
41:8e:6a:ac:e6:22:b2:1c:85:ef:81:4b:94:9a:85:
20:f6:68:e8:b7:dc:73:d6:45:e1:17:65:01:a7:03:
a6:72:9a:0b:8c:ac:19:7f:f4:05:c9:5d:8a:2f:a5:
a5:67:30:a6:41:f9:2c:74:69:08:9f:3c:4c:f6:93:
82:29:86:66:ac:9e:54:02:63:51:87:af:b0:21:25:
f4:d4:33:6d:0e:6d:d9:a2:96:a7:24:87:9a:20:c6:
0e:c9:ed:b7:e1:fb:ad:14:04:eb:38:48:b9:5c:d4:
63:95:3a:0f:3d:36:c3:ee:a3:a4:43:ea:78:f6:88:
f6:3b:12:d0:d8:46:7f:97:32:5b:dc:c5:b2:a9:ff:
fd:50:0e:0c:8e:69:a3:11:58:37:bd:87:ee:1d:d3:
58:9c:c0:31:fa:1a:7c:3d:47:1b:1f:4d:83:4e:42:
02:c7:33:65:c2:02:46:77:67:e1:d8:e0:42:6f:72:
53:40:d2:ba:82:0b:89:3d:85:14:8b:95:1d:69:7d:
c0:98:6a:68:b2:da:14:8d:f4:86:df:be:79:92:c0:
dc:ef:60:e8:86:35:dc:3e:0d:8a:d1:92:20:c0:fe:
2b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BB:F2:13:2D:D1:33:16:F7:3E:27:AC:06:4D:B6:50:1B:89:F1:34
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/ALvyEy3RMxb3PiesBk22UBuJ8TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.188.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:0d:f7:23:a9:c6:48:89:61:de:6c:4f:a0:b8:e2:c5:6a:0f:
96:87:e1:dd:80:e6:dd:55:80:94:f8:d7:de:f5:ee:c2:c3:14:
e3:91:e9:bb:4d:19:cb:c0:bc:c3:de:91:61:0e:90:a1:8a:7c:
e6:61:00:9a:88:c4:58:a3:b0:4f:7b:47:5a:5e:61:00:31:80:
53:fc:45:c3:21:2c:68:e9:d7:f5:3f:d9:45:9a:db:54:55:3b:
77:97:ec:94:ef:a5:74:67:c7:77:dd:f9:9c:bb:8c:1b:3e:f2:
b8:2c:d2:02:3d:f1:b8:72:0b:4b:6c:d4:c4:33:b7:28:cf:7a:
54:21:80:7f:b3:8a:54:df:a5:f5:db:bf:75:96:60:38:29:1d:
d4:32:df:22:9c:e5:91:0c:ea:42:1a:2c:78:ec:ec:a7:bf:a5:
c2:4f:c9:a9:4a:ca:5c:10:04:8a:12:5d:86:69:ba:a4:28:15:
7c:f1:8d:8e:be:23:13:64:30:53:ef:c1:62:13:90:62:20:c6:
4d:d9:e9:7a:69:0c:95:1a:23:b2:03:58:23:e2:0b:22:ba:5a:
6f:23:d3:c6:87:8f:98:ea:ec:d3:94:99:61:fa:ce:07:02:42:
d7:7c:a4:47:c6:44:b5:98:3f:e0:14:92:34:b5:bd:b5:58:25:
bd:99:6b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:03 2024 by rpki-client on console-ams.rpki-client.org