Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/4ArADvuG_310e8kCTHRhPShS-Ow.roa
File: 4ArADvuG_310e8kCTHRhPShS-Ow.roa (raw, json)
Hash identifier: cSypXqUn3cwUfGVYStu43ef1QdPLNayLhbbkSDv2KdE=
Subject key identifier: E0:0A:C0:0E:FB:86:FF:7D:74:7B:C9:02:4C:74:61:3D:28:52:F8:EC
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 0189072C18C3D04E94CCD39FA87E9137D737
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/4ArADvuG_310e8kCTHRhPShS-Ow.roa
Signing time: Thu 29 Jun 2023 12:41:17 +0000
ROA not before: Thu 29 Jun 2023 12:41:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47289
IP address blocks: 185.65.143.0/24 maxlen: 24
2a10:e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:07:2c:18:c3:d0:4e:94:cc:d3:9f:a8:7e:91:37:d7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Jun 29 12:41:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e00ac00efb86ff7d747bc9024c74613d2852f8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:60:9d:27:08:e7:12:c8:8f:13:e4:2d:a4:20:
99:c0:26:36:10:93:f2:7c:1c:6e:b6:7b:a8:74:28:
e2:c9:34:b3:82:bc:cd:e0:81:16:4e:6e:47:9c:3d:
30:2a:bd:ff:01:5c:bf:ee:d2:f5:af:35:e3:93:80:
36:fa:e6:d7:23:f2:35:e1:b8:ee:ab:b0:a7:1c:1c:
92:6b:a8:d5:e5:9f:f1:cc:eb:8a:ef:0b:89:94:d5:
1c:e4:30:1e:ee:e0:36:97:91:01:52:82:40:28:70:
b8:18:3f:77:9f:8a:bb:dc:7f:e9:07:46:71:02:a2:
1f:27:9a:61:68:0b:de:cb:0b:29:1d:57:c9:0a:ee:
c5:3c:a9:bc:16:7c:a2:07:18:56:c3:e2:80:43:d7:
18:af:ed:1e:d3:64:a0:c6:12:a5:28:55:30:50:7c:
56:3f:95:f5:0d:a2:52:fc:44:88:9b:33:85:88:8d:
ec:2c:60:8c:b8:92:ac:ab:c2:90:33:ae:f3:78:86:
48:1a:c4:23:d7:79:1a:31:d6:f2:ad:a4:8a:53:f9:
83:12:73:57:13:b4:0a:b1:79:b6:40:a3:a4:19:64:
54:4a:05:ba:95:cc:3f:48:aa:b7:52:85:6f:f0:31:
ed:ac:eb:4a:49:42:75:98:16:1a:b0:60:5a:e9:8c:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0A:C0:0E:FB:86:FF:7D:74:7B:C9:02:4C:74:61:3D:28:52:F8:EC
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/4ArADvuG_310e8kCTHRhPShS-Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.143.0/24
IPv6:
2a10:e80::/29
Signature Algorithm: sha256WithRSAEncryption
83:75:9c:61:7a:88:da:c0:58:f4:21:48:5a:f8:33:57:72:5b:
2e:b9:71:ec:32:bf:24:39:2f:b8:ce:d0:0a:76:62:92:c8:45:
96:97:b5:46:4e:71:70:ca:56:57:41:47:1f:78:3f:09:e7:85:
3a:6e:25:db:8f:12:89:82:d4:d4:d0:e0:76:b9:ae:92:4a:96:
5d:11:53:5b:91:95:3b:d9:18:7e:be:2f:37:67:7d:bf:83:4c:
85:ab:91:5e:d1:f5:75:26:d9:9e:c3:1e:47:b1:5c:5c:80:36:
e6:b5:2c:69:10:62:fb:69:3a:13:01:0a:c4:49:78:25:f0:0b:
3f:a0:7f:41:48:cc:77:cf:32:2c:c6:c2:46:01:eb:52:13:7b:
fb:d3:c6:a0:80:6d:45:a8:ae:b4:aa:f8:89:48:f1:35:61:a6:
23:0e:97:90:99:8c:ab:7c:d3:3a:74:79:07:c2:d6:8b:3d:d8:
d7:12:86:34:55:35:89:41:a2:e2:30:a5:63:b2:af:de:56:e8:
b0:44:b8:66:75:9f:93:a6:1f:8b:10:68:5b:b0:ae:66:c3:6b:
6d:d2:0c:9d:74:75:e3:3e:ee:3f:7a:f9:0b:d2:ea:35:8c:f7:
3b:24:0a:cb:27:06:1b:26:63:99:55:4b:e9:d1:9b:65:fe:33:
04:06:8f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:08 2024 by rpki-client on console-ams.rpki-client.org