Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/C8Bk3CzdI6BdHEKE606QkxXXulM.roa
File: C8Bk3CzdI6BdHEKE606QkxXXulM.roa (raw, json)
Hash identifier: XUPdVMMSRk8Ql4et2jKr3+nElxVQHh7KL3mOng7P4As=
Subject key identifier: 0B:C0:64:DC:2C:DD:23:A0:5D:1C:42:84:EB:4E:90:93:15:D7:BA:53
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 018CAB5B54333AF6A7A9033F10A164273439
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/C8Bk3CzdI6BdHEKE606QkxXXulM.roa
Signing time: Wed 27 Dec 2023 12:58:58 +0000
ROA not before: Wed 27 Dec 2023 12:58:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35153
IP address blocks: 185.212.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:5b:54:33:3a:f6:a7:a9:03:3f:10:a1:64:27:34:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Dec 27 12:58:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bc064dc2cdd23a05d1c4284eb4e909315d7ba53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4b:de:f2:49:5f:03:42:30:ed:52:61:1c:f1:
e2:f6:55:54:4f:98:c9:15:5d:67:d4:61:1b:66:ea:
de:d4:8b:56:56:3b:f0:d5:46:df:b0:38:5b:90:4d:
82:55:aa:a7:c7:bd:6b:63:55:c6:41:5d:cc:fd:5e:
a1:b4:cf:39:11:63:e3:79:5c:a5:ad:5c:a5:b5:a6:
a0:bc:e9:40:b8:ad:24:4c:5e:10:80:75:08:d2:82:
27:9f:9a:74:83:2a:3f:ad:46:7e:f0:9b:57:d7:3d:
96:00:62:55:98:19:27:11:04:98:15:b1:69:2c:28:
38:28:99:1a:b8:86:bc:9d:ae:6a:33:68:ce:9b:c1:
6e:b6:19:c1:fa:82:ca:2f:80:be:3f:30:b3:a6:de:
8b:c7:d3:8b:d3:f0:c8:ef:e2:f4:a4:75:bc:ca:26:
d9:e3:1b:0b:36:98:fa:09:83:05:00:1b:9f:cf:7a:
cc:1b:23:54:32:3a:12:a7:71:3a:5a:20:37:1a:14:
e0:9f:99:db:a2:f9:3f:48:ee:1f:cb:1e:97:26:09:
2b:7d:16:e6:12:34:92:7b:cb:7e:3f:56:2e:e4:6e:
44:fd:7b:1e:a6:f3:f6:92:11:8e:99:0b:c9:c8:4f:
2e:d3:11:6b:a0:6d:d2:a3:1c:3e:a7:8e:cb:09:79:
03:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C0:64:DC:2C:DD:23:A0:5D:1C:42:84:EB:4E:90:93:15:D7:BA:53
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/C8Bk3CzdI6BdHEKE606QkxXXulM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.136.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:56:86:1f:09:d9:21:64:30:cb:ac:8e:0d:8a:68:33:83:f9:
09:0d:0a:3b:5b:19:16:bc:db:d8:dd:84:2f:ae:71:22:1d:6a:
6e:50:fe:0d:30:ee:85:66:10:64:ad:c2:38:25:53:36:c8:e0:
ff:ae:8f:b4:cc:83:ae:ae:e0:e4:ad:0b:41:a2:24:b2:28:f6:
80:3e:fe:06:98:54:ee:40:1d:c0:33:a1:54:e8:82:9a:e4:4c:
c1:ef:82:a8:8d:b3:a3:c8:91:00:8d:11:05:93:fb:9a:75:af:
33:a4:d9:97:37:25:ea:28:9e:7b:0b:40:ec:41:1d:3f:7c:30:
13:83:3d:f1:62:c3:b0:8a:93:9f:2c:dc:f4:c6:6a:1d:f4:1a:
da:e1:a2:af:15:bf:ba:f2:e7:84:b1:b2:63:38:ec:9f:41:a4:
19:9e:40:86:9d:ec:c5:d8:17:5b:e3:0b:84:20:f1:48:2b:77:
f2:a8:e2:44:30:45:a5:3a:04:6f:0a:a1:0c:c8:5a:37:cb:eb:
2a:ec:2b:fb:84:ed:b3:02:71:34:ca:99:88:53:6c:28:27:31:
f5:95:85:3c:b0:a2:81:9b:66:4f:68:92:cf:1f:8e:0a:19:08:
f2:e7:08:05:d0:08:27:f5:92:23:1d:f3:fa:5c:f6:da:c0:43:
f7:48:c8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:47 2024 by rpki-client on console-ams.rpki-client.org