Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ROsHVXC5sYKyHEaTo8xdkobavJI.roa
File: ROsHVXC5sYKyHEaTo8xdkobavJI.roa (raw, json)
Hash identifier: XizJvxVJpHH87hxHMYbiIv95Icr1RTY4tDaFKiWojLE=
Subject key identifier: 44:EB:07:55:70:B9:B1:82:B2:1C:46:93:A3:CC:5D:92:86:DA:BC:92
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 0185720354589FB1CDC8D393F381FAABA2C8
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ROsHVXC5sYKyHEaTo8xdkobavJI.roa
Signing time: Mon 02 Jan 2023 10:24:58 +0000
ROA not before: Mon 02 Jan 2023 10:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47681
IP address blocks: 185.191.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:54:58:9f:b1:cd:c8:d3:93:f3:81:fa:ab:a2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Jan 2 10:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44eb075570b9b182b21c4693a3cc5d9286dabc92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:03:f8:ff:6d:dc:0a:6b:8f:1f:bc:4e:bf:b5:
24:18:38:bb:19:a9:23:c5:7f:a3:c4:62:a6:e7:5e:
14:de:53:40:08:69:cf:95:d7:6c:ad:e2:05:93:c6:
c1:48:e1:a2:95:0f:bf:49:54:4b:4b:19:0f:c0:a1:
75:bf:82:a3:a8:a8:c9:d0:a5:b5:16:ba:f6:36:96:
bc:7c:04:5f:e8:0d:69:c3:3f:36:a0:af:06:27:a6:
2b:52:fe:f8:eb:c3:ea:f9:f5:f6:83:60:a8:05:be:
7c:72:d6:b8:9f:3b:0b:e7:7a:cb:44:a6:7e:63:49:
16:94:d1:6b:e2:49:1a:5c:05:13:52:15:f1:35:99:
1c:78:e0:e4:b5:64:4a:79:ab:38:e1:2a:44:ce:3c:
cd:13:b8:94:5e:5f:20:78:1b:e0:65:7b:27:83:57:
32:b5:a7:64:30:0e:c5:d1:28:25:5f:ec:7b:41:a6:
2b:26:a7:31:31:f8:79:dd:9d:e9:df:c8:58:78:90:
4a:49:9e:63:82:c7:38:f2:38:90:75:f3:bc:9e:97:
15:c0:26:09:69:42:ab:f5:d9:00:20:b9:1d:00:21:
92:d1:58:33:79:c6:b9:02:6d:6c:9b:e1:f7:53:00:
5a:21:08:19:ea:d0:68:1c:e6:f2:11:c5:9e:13:f4:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:EB:07:55:70:B9:B1:82:B2:1C:46:93:A3:CC:5D:92:86:DA:BC:92
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ROsHVXC5sYKyHEaTo8xdkobavJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.184.0/22
Signature Algorithm: sha256WithRSAEncryption
03:bb:6f:b1:d6:28:97:01:ac:47:d2:1b:1e:8c:86:91:c6:3d:
03:89:cd:4f:f1:ce:65:00:64:3d:ee:fc:3b:5c:33:16:c1:6c:
2e:40:ee:aa:60:29:0a:f7:74:f6:9e:62:d7:5f:71:82:b5:82:
c4:7c:b5:18:c3:09:0e:0f:ef:7d:8a:b3:c9:63:3b:44:da:b5:
d6:6e:29:7c:ef:97:9f:f8:f2:c4:bc:4b:06:10:ff:44:12:91:
be:83:7f:d1:b5:e2:10:30:cd:9a:54:45:c1:c5:a8:20:96:ec:
fd:d8:cf:29:1c:56:4d:d5:50:04:92:22:fa:38:59:d7:72:4a:
77:2e:ce:5c:c8:d9:28:30:8a:85:74:22:c9:02:2a:3f:f2:ea:
7b:96:04:01:fd:b0:dc:2b:77:d3:6e:5f:1f:e4:4c:4a:58:f9:
11:82:ba:02:f3:6f:28:f7:50:f0:e9:97:a5:6a:98:8e:8e:36:
aa:c3:3e:cd:3c:00:df:ab:2d:40:16:bc:f6:0e:41:ab:b5:c1:
63:ae:30:b0:f9:30:64:2e:67:ab:38:02:88:1a:18:e0:35:80:
b2:3f:2c:f6:7e:3b:86:2a:80:a8:4c:ed:17:72:2f:c3:d1:5c:
a3:be:c6:3f:8d:8e:24:7e:65:9f:bb:73:ab:e0:84:b6:8c:ea:
98:54:6b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org