Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DJUfS4nG7F26CAKqUWzXT7wA974.roa
File: DJUfS4nG7F26CAKqUWzXT7wA974.roa (raw, json)
Hash identifier: T2VJWU5DseMYKw8LK9RHcBcKio+xeoUyx2+bf2cXasQ=
Subject key identifier: 0C:95:1F:4B:89:C6:EC:5D:BA:08:02:AA:51:6C:D7:4F:BC:00:F7:BE
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4E0C6C3BCC66FF0016C39C7E7802E
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DJUfS4nG7F26CAKqUWzXT7wA974.roa
Signing time: Sun 01 Jan 2023 19:35:22 +0000
ROA not before: Sun 01 Jan 2023 19:35:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271957
IP address blocks: 185.181.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 29 Aug 2023 18:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:e0:c6:c3:bc:c6:6f:f0:01:6c:39:c7:e7:80:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c951f4b89c6ec5dba0802aa516cd74fbc00f7be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f0:11:65:43:72:33:92:5d:bc:5a:12:1b:c1:
23:33:df:f7:8a:55:6a:7e:ca:df:48:5b:11:0e:fc:
ae:12:ba:74:30:da:12:27:f3:c7:30:e6:cb:b5:1e:
5e:c6:e1:88:39:27:da:67:a3:53:d3:81:c0:83:6e:
35:db:71:b3:ba:f8:62:07:68:95:3d:5c:9e:5c:ff:
91:10:74:a1:6c:af:a7:76:83:ab:32:8f:01:49:24:
09:48:9c:28:d5:2f:15:a8:30:61:d1:63:12:07:02:
a2:d8:f3:da:09:16:fb:2e:8e:46:7f:0f:d6:68:e1:
68:29:1e:c5:b5:10:0f:0b:84:62:38:ed:ab:c8:3b:
6a:21:30:79:94:17:df:8d:6d:47:85:22:f6:c2:f4:
cd:ec:40:f6:8d:61:5a:92:85:f9:58:07:bc:0d:8f:
92:8c:bf:01:b0:dd:a7:94:29:44:0a:a4:f5:7a:a1:
51:a4:ec:71:b9:38:93:d5:9a:7d:8d:b9:f1:8f:58:
d0:d2:f4:16:46:b3:ba:c4:b1:90:12:84:81:87:e7:
95:ff:bf:17:84:52:bf:c1:09:27:28:4f:76:8e:ed:
18:73:b7:12:4e:1c:b2:fe:c4:94:10:03:b2:01:f4:
3a:d0:9b:fb:ea:09:39:94:50:2a:b5:21:58:2c:3f:
9e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:95:1F:4B:89:C6:EC:5D:BA:08:02:AA:51:6C:D7:4F:BC:00:F7:BE
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/DJUfS4nG7F26CAKqUWzXT7wA974.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.32.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:df:c6:f2:9a:03:58:f2:30:21:09:2d:20:bb:0d:d2:7d:35:
34:63:33:de:46:75:7f:fa:86:5e:92:e6:9e:ad:8d:82:25:a6:
90:1a:ab:eb:56:51:c9:12:e4:7e:f4:68:89:33:1e:70:e9:2f:
4f:ee:7d:de:f1:d7:a9:25:97:0e:8f:80:ee:e4:dc:35:c3:ac:
fa:cb:ea:32:05:a6:b9:59:a7:c8:3d:ba:d4:c8:9f:11:a8:2f:
f3:40:0c:ec:93:6d:71:fd:cc:67:13:7a:b8:63:09:e4:fa:ef:
0c:bf:8b:55:a6:2f:2a:7b:18:96:c2:62:78:d4:23:22:54:cb:
40:d9:c9:5f:b9:5f:e9:7d:de:3a:36:90:30:7f:1a:69:37:7b:
d9:23:d0:48:fb:d9:2b:ca:d3:5f:22:59:9d:01:a4:8f:eb:a3:
af:99:a7:38:d0:ee:e9:a6:0a:66:68:d1:1b:94:33:e9:f8:31:
14:32:42:54:90:7a:50:fd:fd:e1:86:0e:1e:cb:87:26:23:c9:
86:9d:f0:dc:d0:91:72:ba:87:62:72:e0:3a:3a:e6:50:a2:1f:
73:06:89:2f:07:9a:2b:3b:75:5c:a4:94:0d:f6:3b:80:1f:8e:
b6:2d:46:2a:fd:05:44:ff:4e:fb:9d:11:05:16:77:08:ff:d9:
b5:db:06:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:35 2024 by rpki-client on console-ams.rpki-client.org