Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/RSDDqBY0ByPRSR11SXAiVvVv49I.roa
File: RSDDqBY0ByPRSR11SXAiVvVv49I.roa (raw, json)
Hash identifier: uhAleNb7vZaNyP3wDZbzJj9yAcD6dpgbNnsK+vRn+jY=
Subject key identifier: 45:20:C3:A8:16:34:07:23:D1:49:1D:75:49:70:22:56:F5:6F:E3:D2
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 018E7F5BC7D8D37C847E119966BB3BB98793
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/RSDDqBY0ByPRSR11SXAiVvVv49I.roa
Signing time: Wed 27 Mar 2024 10:01:45 +0000
ROA not before: Wed 27 Mar 2024 10:01:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215275
IP address blocks: 185.111.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:5b:c7:d8:d3:7c:84:7e:11:99:66:bb:3b:b9:87:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Mar 27 10:01:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4520c3a816340723d1491d7549702256f56fe3d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:8c:09:f5:14:6d:a0:16:48:05:a6:f6:27:
08:f9:55:60:42:e0:fc:1c:a9:27:60:f2:c8:77:78:
b2:40:32:17:94:b6:2e:ff:2e:57:95:ae:44:c5:74:
f7:f6:97:01:2f:68:5d:17:ef:f3:24:d1:4f:09:99:
dd:59:5e:90:1e:c0:2b:b3:d2:15:8b:b4:99:02:34:
b2:75:4b:be:e9:80:33:d6:77:99:e3:5a:cd:2e:ee:
7b:e4:ae:b7:7b:a7:89:d4:42:18:36:0a:e8:f3:18:
76:e1:0c:ed:f4:b4:a0:e9:fa:a3:4b:ab:c9:1f:61:
7f:26:b6:20:71:0b:de:4e:84:68:4f:1e:20:93:13:
ce:4d:6c:49:33:7c:09:fb:4d:af:24:91:9a:f0:2b:
b8:a5:bd:05:36:28:97:dc:1a:6a:a9:e3:8a:59:39:
a3:93:a9:4d:af:61:07:71:24:83:c9:35:da:e4:a4:
83:7a:c2:61:97:19:7c:5f:9a:7f:a6:c2:6b:fe:fb:
c9:f8:1d:d7:68:4a:7a:78:d4:21:67:5a:ab:2a:73:
f8:88:b5:22:9b:c3:13:44:9f:23:31:cc:7b:ea:fd:
a0:fe:2f:90:82:44:96:3c:3d:af:3d:aa:dc:8a:b6:
52:3d:89:23:de:f9:d7:b1:47:d3:0b:82:8f:80:5b:
29:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:20:C3:A8:16:34:07:23:D1:49:1D:75:49:70:22:56:F5:6F:E3:D2
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/RSDDqBY0ByPRSR11SXAiVvVv49I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.68.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:3e:89:d5:b0:23:e2:14:58:54:b7:33:07:ce:3c:49:ca:62:
ee:37:f2:6c:2a:f1:b1:f1:53:45:ca:d5:14:59:e6:65:c6:03:
f2:d6:59:59:69:6a:7e:b8:c8:90:fe:46:db:4b:1c:30:7f:27:
61:71:f8:a5:55:6a:45:12:3d:c9:bd:c3:91:d6:f2:02:1a:2a:
2d:c0:a8:6d:4c:93:b7:a4:d7:20:f7:ad:09:bf:85:7e:87:56:
35:1f:7d:15:ca:cc:0f:1b:62:ca:14:32:eb:8e:72:6e:b0:47:
8d:db:12:77:e8:d6:58:86:97:83:92:00:48:a5:ca:e1:51:a1:
b6:b1:9a:ff:c8:ab:6e:af:c2:9c:54:86:27:87:ee:27:cc:39:
fd:39:c2:1e:4e:19:a0:4e:ff:10:9f:58:f9:ea:14:fa:ee:7a:
99:c5:cd:25:0e:22:31:b0:42:21:f8:3b:3c:d5:f2:91:c2:e2:
56:38:1d:5b:60:05:45:52:86:3e:3f:8b:9b:c0:96:0d:eb:f6:
eb:78:92:9e:ac:bc:bf:fa:a0:9c:21:fc:4c:9a:3d:70:02:1e:
3a:71:3a:66:b6:06:2a:6e:96:01:ba:ec:5a:18:26:29:90:87:
ad:4c:bd:56:1e:d1:23:82:68:5d:24:40:b0:91:fb:eb:e3:30:
32:f2:33:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:35 2024 by rpki-client on console-ams.rpki-client.org