Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9Bkz-y2MLeLckGVb3k7gCzv-0mA.roa
File: 9Bkz-y2MLeLckGVb3k7gCzv-0mA.roa (raw, json)
Hash identifier: +1hZq6hZdvsnvvj8V2oLsVXKiPZW1VA5koYQrUVqaQw=
Subject key identifier: F4:19:33:FB:2D:8C:2D:E2:DC:90:65:5B:DE:4E:E0:0B:3B:FE:D2:60
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1D9FA6A70FB9382101BA4B9E1AFDE
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9Bkz-y2MLeLckGVb3k7gCzv-0mA.roa
Signing time: Sun 01 Jan 2023 14:34:58 +0000
ROA not before: Sun 01 Jan 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209805
IP address blocks: 212.22.94.0/24 maxlen: 24
185.65.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Aug 2023 11:11:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d9:fa:6a:70:fb:93:82:10:1b:a4:b9:e1:af:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f41933fb2d8c2de2dc90655bde4ee00b3bfed260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:97:54:1d:66:38:eb:0e:3b:4d:31:bd:ea:ad:
c2:b1:dc:2b:ad:2f:53:dd:78:e2:20:36:70:a1:5b:
d3:f4:1b:c1:26:a7:57:66:9c:e0:26:02:4f:e0:bd:
05:38:7a:ad:53:7a:0f:18:7c:90:bd:05:a7:88:aa:
3c:35:d0:51:fa:a7:b0:9d:54:94:30:b0:15:8e:77:
21:6d:6c:f6:68:cb:c1:3f:ec:be:f3:7b:72:cf:6b:
3c:18:ae:ad:7a:6d:0a:27:6a:c1:bf:6a:9f:dd:c3:
96:37:e2:b6:ee:4e:e7:27:9e:1d:fe:ed:b6:5b:d2:
80:a7:a2:92:52:7a:b8:e0:1f:41:b3:d5:da:d7:b7:
76:4b:4a:51:10:21:09:b1:f3:0e:7c:8a:85:ed:6d:
89:3c:79:01:a6:58:a3:80:9e:96:85:d8:0a:9a:4f:
a1:6c:77:42:13:1f:98:ee:0a:8d:3a:c2:b3:9a:83:
4b:a9:33:7c:ed:fb:9a:f8:83:77:05:f5:82:82:fb:
14:8a:11:0e:65:53:80:13:6f:f6:90:8c:07:0f:35:
a6:8d:25:ca:2e:a4:15:86:ff:78:4f:d1:11:61:26:
33:e6:86:52:75:0d:c5:1c:f5:0c:65:a3:e8:3b:df:
d5:72:7a:3d:0f:fd:5a:75:e8:9a:03:6a:a9:ed:e3:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:19:33:FB:2D:8C:2D:E2:DC:90:65:5B:DE:4E:E0:0B:3B:FE:D2:60
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9Bkz-y2MLeLckGVb3k7gCzv-0mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.200.0/24
212.22.94.0/24
Signature Algorithm: sha256WithRSAEncryption
07:8e:f4:5e:5a:bc:cf:30:a3:bb:b7:b9:cb:02:5b:d5:ad:95:
a1:25:89:67:dd:04:20:5d:c0:66:ac:fd:d3:76:5a:6c:40:16:
96:b2:26:ba:59:0d:ec:e6:74:31:b1:54:ad:22:32:58:88:2a:
4a:83:47:91:f0:97:74:35:82:70:24:1e:ad:78:a9:9d:be:4c:
d8:86:bd:1e:cd:28:e7:e3:af:fe:13:5b:0d:74:2c:0d:f0:04:
ff:45:d8:f8:ff:bd:af:4f:b3:99:07:a8:ee:af:71:91:82:ab:
ae:71:95:02:7d:07:41:cd:02:cd:7b:f2:63:44:ea:d0:42:ea:
ad:9b:0f:e9:4c:ca:eb:c2:d7:0b:9f:2a:c2:30:3d:96:74:d7:
a8:f0:d4:a6:26:d4:a6:e6:2d:df:0a:c3:cf:c0:ec:18:42:ce:
12:af:c9:f1:a8:c1:4d:8e:85:12:9b:8f:a9:19:ab:04:96:2d:
6b:6b:0e:23:21:89:6b:ef:fc:7f:0d:2a:76:24:a5:d9:4f:de:
43:86:1b:ed:ee:e9:29:d5:e8:77:c3:05:e8:85:cf:6c:97:9b:
7c:42:c5:f5:aa:7a:fd:79:9e:d2:d2:0c:ad:75:e4:5d:22:d0:
0a:82:23:94:f1:fe:76:e8:f5:ae:b4:e3:b0:e1:b4:51:a4:22:
2d:c2:7f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:30 2024 by rpki-client on console-ams.rpki-client.org