Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/h6Pe-zouzO75aM3Blox0yGYDdqk.roa
File: h6Pe-zouzO75aM3Blox0yGYDdqk.roa (raw, json)
Hash identifier: h0uAHD5Kanr/NOLILUWM5VmdgqUQhIb06uUnrBiJ4JA=
Subject key identifier: 87:A3:DE:FB:3A:2E:CC:EE:F9:68:CD:C1:96:8C:74:C8:66:03:76:A9
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018C35282EDF4AA6CAD0F6FA5E8775A57AA4
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/h6Pe-zouzO75aM3Blox0yGYDdqk.roa
Signing time: Mon 04 Dec 2023 14:07:55 +0000
ROA not before: Mon 04 Dec 2023 14:07:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47726
IP address blocks: 185.65.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:28:2e:df:4a:a6:ca:d0:f6:fa:5e:87:75:a5:7a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Dec 4 14:07:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87a3defb3a2ecceef968cdc1968c74c8660376a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:18:2a:d8:54:70:02:0e:39:6e:38:3c:10:
70:2e:20:b4:a2:1f:f3:dc:92:2b:dc:38:11:03:c7:
b6:15:c5:93:38:a3:2a:a2:03:17:54:d9:a2:d7:3d:
54:bf:66:07:81:23:76:c4:dd:b8:18:ce:af:11:88:
b3:b8:21:9c:e5:d0:41:4c:24:a3:a4:6a:f9:4e:03:
61:40:5f:ca:2d:66:e9:d8:ef:59:66:90:a3:dc:32:
2d:ee:c4:78:79:c8:89:23:48:c0:7f:a7:7e:8e:ee:
72:59:c8:91:ce:04:2c:11:78:92:c9:1a:ca:5c:66:
19:46:79:a0:e5:59:9b:6d:de:ed:51:93:35:62:47:
24:84:83:20:d1:f3:85:98:e5:da:25:5d:5e:83:82:
4e:71:f3:92:d7:ca:05:c3:06:ad:50:31:21:fd:47:
93:96:07:9c:41:30:55:cf:32:4d:f6:76:c7:14:a6:
df:a5:3e:17:03:88:9f:a8:b6:93:30:02:82:1a:fc:
b8:ca:eb:2a:1c:b8:1c:b5:7a:80:7c:52:ff:c9:8f:
1f:0e:eb:21:0d:d1:df:f8:56:5d:65:db:34:63:d6:
da:d0:a4:59:9e:60:40:da:55:1a:0c:1d:dc:0f:42:
a1:12:0b:e6:6e:cb:54:c8:d3:ed:32:39:a4:b1:60:
6a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A3:DE:FB:3A:2E:CC:EE:F9:68:CD:C1:96:8C:74:C8:66:03:76:A9
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/h6Pe-zouzO75aM3Blox0yGYDdqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.203.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c7:5e:45:c0:87:55:01:38:32:44:95:78:9a:6a:31:a5:4a:
7f:0f:2f:bc:40:2e:5d:c7:f4:d4:b3:0b:11:34:4f:b8:a5:b2:
8c:92:55:64:28:e2:15:61:ef:1f:11:86:7f:68:88:11:15:b2:
6c:80:72:9a:cd:dd:b7:ee:77:ec:60:f1:d0:fe:33:22:3a:b3:
d9:da:66:98:e9:cb:65:c9:88:5d:59:ca:e7:c0:27:2b:65:72:
05:19:b5:f0:43:17:32:d2:ca:e5:7a:80:65:a8:c1:ee:e4:19:
aa:2b:32:9e:83:1c:12:e4:e6:e2:58:aa:f3:c6:c1:5b:40:d7:
7a:2a:c3:77:0f:8e:02:28:9e:36:cf:7b:0b:bf:af:1a:f9:3a:
7e:44:18:5a:c4:0f:a1:6b:5d:0a:b7:24:20:a2:ce:a2:ba:f0:
58:db:6b:de:ba:ec:a3:73:41:2b:ef:a3:8b:dd:25:3f:7e:98:
95:75:39:70:d6:10:a5:ac:e5:82:0d:64:83:76:88:ca:3a:fe:
23:4a:1c:4c:eb:b5:a7:6d:cc:35:97:e1:48:22:7b:c4:85:2a:
32:c8:95:0e:dc:f7:f1:94:71:b2:d5:a4:47:ca:11:77:ee:1f:
7e:bf:ea:25:31:b2:69:f9:c9:08:d0:a7:4b:0a:02:4b:12:77:
94:76:89:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:30 2024 by rpki-client on console-ams.rpki-client.org