Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/RMVbyh0T_PDL-tSmL1SObUbPWbM.roa
File: RMVbyh0T_PDL-tSmL1SObUbPWbM.roa (raw, json)
Hash identifier: jOOr3gm2MniVFEi2EKglcC7bIxCbKLdnYzzvBE7G6Qg=
Subject key identifier: 44:C5:5B:CA:1D:13:FC:F0:CB:FA:D4:A6:2F:54:8E:6D:46:CF:59:B3
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 01856CE61153BC51DC53594B14883A86CEF4
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/RMVbyh0T_PDL-tSmL1SObUbPWbM.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395901
IP address blocks: 185.213.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:11:53:bc:51:dc:53:59:4b:14:88:3a:86:ce:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44c55bca1d13fcf0cbfad4a62f548e6d46cf59b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e0:d2:7b:fd:34:ce:ff:b1:5b:d2:c5:38:68:
17:e6:d4:77:b9:12:55:f8:37:82:f3:d0:a5:07:9b:
44:5f:9e:6e:45:52:08:6a:c8:ea:9f:92:2c:1f:71:
b9:2d:0c:9d:2e:fd:24:de:98:bd:b1:3d:3d:8e:f4:
2c:90:e9:38:e6:b5:20:cf:c7:c0:bf:06:34:cc:6f:
01:91:34:2b:09:d5:f8:73:95:58:d7:a9:da:2c:4e:
98:84:3a:a6:c4:7e:61:35:b5:1f:7d:e1:cb:75:19:
f4:d9:bd:e7:ea:6f:24:5c:4d:03:95:90:2b:f7:57:
ce:2f:dd:04:6b:49:e5:52:00:eb:09:88:ef:af:dd:
11:17:5c:e0:33:3e:3a:64:52:8d:42:c2:96:d8:2f:
09:58:64:fd:8a:86:ca:bd:d9:06:c3:2b:a6:6a:09:
4e:b8:17:1c:4b:ad:14:fa:65:c4:55:79:97:e0:d9:
fd:69:e3:e2:38:60:69:b2:19:12:22:dd:eb:6a:24:
35:ad:94:82:75:c3:21:39:cc:69:1e:ab:b4:60:27:
8a:9a:f0:bd:fe:88:17:92:49:10:80:ab:f7:60:13:
3d:a7:84:ee:65:31:67:a4:e3:87:8e:93:76:9a:19:
7a:fb:9b:25:54:df:2e:d4:74:75:0b:7b:fb:42:05:
b9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C5:5B:CA:1D:13:FC:F0:CB:FA:D4:A6:2F:54:8E:6D:46:CF:59:B3
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/RMVbyh0T_PDL-tSmL1SObUbPWbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.222.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:77:64:94:e0:4a:2a:84:59:07:d4:e3:66:2c:be:87:f5:fd:
02:c9:d3:29:8e:d7:8c:d9:b9:28:8a:30:65:9a:a1:22:53:ff:
1b:1a:f0:d0:b2:92:19:40:91:81:5a:f2:7c:a5:a8:ca:cd:4b:
ff:d3:43:6a:16:22:db:ff:b7:14:61:b7:a8:89:5f:b7:15:b7:
8c:d8:17:0e:39:fe:00:f3:19:f5:47:76:a3:f9:f3:0a:93:51:
37:9e:66:d8:ea:f6:7f:93:0f:70:0b:94:80:28:e2:27:75:2a:
a3:dc:2b:c6:76:0c:56:2e:80:a8:21:01:b1:f6:b8:5e:f8:8e:
7b:f5:e5:6d:d2:14:88:e2:00:93:27:4c:97:1f:ac:dc:1f:10:
c3:bc:90:23:ac:3f:8d:3a:e4:27:56:0b:9f:3b:99:e5:d7:af:
5f:e1:66:09:42:00:aa:e0:2e:f4:f6:08:87:1c:29:d1:ce:24:
5d:ab:0e:e2:e7:12:1c:df:c7:45:aa:d2:b4:7a:48:a2:81:30:
6f:bd:fa:86:58:b1:79:e7:dc:96:dd:84:ac:6a:57:6e:42:89:
45:95:ee:ac:8f:61:f5:a4:c5:f3:9e:fa:63:06:ba:a9:04:bb:
f8:94:76:a8:8a:b8:78:13:c1:45:2a:db:d4:f7:5f:4c:1b:3d:
08:20:6c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org