Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/dOMXCO6PkBpCbZMF0tliZ5hflAo.roa
File: dOMXCO6PkBpCbZMF0tliZ5hflAo.roa (raw, json)
Hash identifier: 0rT/56DaLTlu9Z2A/V7Yqbu2L4vsYiWzTncXPgrY4NQ=
Subject key identifier: 74:E3:17:08:EE:8F:90:1A:42:6D:93:05:D2:D9:62:67:98:5F:94:0A
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 018572559A0EB9E0D4964A7E1B5BF2F532A3
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/dOMXCO6PkBpCbZMF0tliZ5hflAo.roa
Signing time: Mon 02 Jan 2023 11:54:50 +0000
ROA not before: Mon 02 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 185.101.21.0/24 maxlen: 24
185.101.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 17:51:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9a:0e:b9:e0:d4:96:4a:7e:1b:5b:f2:f5:32:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Jan 2 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74e31708ee8f901a426d9305d2d96267985f940a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f3:7b:37:f4:8d:25:58:9d:4c:2f:e9:71:29:
1d:55:03:37:29:f9:76:8c:d4:46:ee:e5:fc:84:f4:
f2:1d:b7:06:ed:88:96:93:41:fb:e4:e7:ba:7d:43:
b0:0c:44:88:60:aa:74:ad:3b:c7:e7:03:58:57:72:
a8:cc:75:ff:7b:19:34:22:80:2a:4a:67:1d:b8:0d:
c4:31:8a:8d:07:28:c0:eb:ce:dc:98:97:59:06:37:
18:00:45:b5:1b:f0:6c:26:80:e1:a1:40:b3:b4:41:
00:b4:39:83:c7:f1:0e:87:80:3a:06:ee:1c:3e:fa:
be:50:2a:41:ba:53:0d:b7:49:d5:d1:7b:be:68:67:
ee:0b:0c:d2:cc:95:50:93:99:50:3c:db:44:ae:03:
fb:5d:11:dd:15:f9:90:c8:c4:c1:4d:e3:bd:07:dc:
78:e1:b8:6f:52:30:69:fa:c5:3b:ac:f4:d2:47:85:
9c:4f:a6:02:79:8f:45:e5:63:73:3a:e9:6e:f7:a2:
17:e9:8f:e9:5a:3d:d4:2a:38:43:d7:8a:1b:34:0b:
1e:f1:37:51:43:1b:0f:1a:54:48:28:13:0f:6f:ff:
b9:2e:03:75:3d:25:37:3b:2e:85:f0:ec:c8:9d:a2:
b2:a0:73:7e:77:8c:bb:1c:ec:27:c8:90:45:33:aa:
f4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E3:17:08:EE:8F:90:1A:42:6D:93:05:D2:D9:62:67:98:5F:94:0A
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/dOMXCO6PkBpCbZMF0tliZ5hflAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.20.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:10:49:27:e5:d6:f3:24:2e:79:07:48:c7:e9:6c:69:f0:52:
ae:76:a5:e0:66:05:5f:0d:32:19:68:8d:c1:21:63:63:03:88:
37:a7:da:60:2d:6e:fd:2e:d8:ac:87:a1:11:44:30:56:4d:4c:
50:ab:10:c4:d1:b2:6a:a4:8a:64:76:77:fd:dd:8e:d2:12:a5:
10:d1:b6:3f:f4:bd:a7:9f:c7:c8:dd:a9:2f:b5:00:fd:97:75:
07:5e:2b:8a:19:d6:0d:f7:21:68:6e:38:e4:19:54:80:30:58:
e9:cb:82:35:26:f6:80:23:90:5d:60:54:16:72:7e:8f:8e:d7:
b5:6a:d1:10:48:85:e9:e3:15:9f:1d:9f:0d:df:38:13:48:c0:
64:e1:9f:b8:77:80:1f:a4:f2:32:7e:32:ea:4d:f7:af:f0:26:
64:96:35:59:1f:68:de:14:1f:52:b7:bc:89:0f:98:78:f5:68:
c8:fe:38:45:dd:62:ca:e9:6d:6a:3d:1d:df:f0:94:8e:8b:11:
d6:c4:e3:62:d4:d3:7b:a9:cc:a0:f9:c1:d9:61:37:7b:a6:aa:
3b:1a:13:60:ec:fd:6c:6f:e2:83:05:bc:52:fa:4b:9f:db:a6:
74:f2:5d:69:1e:7f:9f:73:b3:62:e0:39:8c:2b:7a:67:78:27:
b1:dd:c3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:41 2024 by rpki-client on console-fra.rpki-client.org