Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/2f7894-756d-4cbf-977c-3c5ae761cab0/1/DDsFld14RrPwccwEmsxNpjFYCxM.roa
File: DDsFld14RrPwccwEmsxNpjFYCxM.roa (raw, json)
Hash identifier: GlIrl/jmIlnNNJYMHuJx9D17vCdZPOcgawFOBl9TMBQ=
Subject key identifier: 0C:3B:05:95:DD:78:46:B3:F0:71:CC:04:9A:CC:4D:A6:31:58:0B:13
Certificate issuer: /CN=0cb7a2adc6dcaf177b93a336cb8ececc5af30258
Certificate serial: 0187D6FC7671B03F2600E74936334F2D4E8B
Authority key identifier: 0C:B7:A2:AD:C6:DC:AF:17:7B:93:A3:36:CB:8E:CE:CC:5A:F3:02:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLeircbcrxd7k6M2y47OzFrzAlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/2f7894-756d-4cbf-977c-3c5ae761cab0/1/DDsFld14RrPwccwEmsxNpjFYCxM.roa
Signing time: Mon 01 May 2023 11:04:42 +0000
ROA not before: Mon 01 May 2023 11:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201290
IP address blocks: 185.214.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d6:fc:76:71:b0:3f:26:00:e7:49:36:33:4f:2d:4e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cb7a2adc6dcaf177b93a336cb8ececc5af30258
Validity
Not Before: May 1 11:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c3b0595dd7846b3f071cc049acc4da631580b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a9:55:df:d5:0b:5c:5c:79:2e:03:c0:21:d8:
11:31:3c:f3:11:46:ca:79:36:12:37:66:de:78:e1:
c7:6e:16:de:08:1c:49:d8:c1:26:51:98:e9:08:7a:
98:df:ec:56:32:89:ef:b5:66:c1:55:cc:78:7b:e7:
99:56:8f:db:51:59:d5:72:c8:bb:f1:c2:09:3f:44:
8f:40:57:dc:bb:91:85:16:ff:85:4c:ee:4c:96:ce:
ba:ca:ed:78:8c:fc:06:06:53:5d:fc:06:45:4c:ce:
a9:a5:00:d9:07:f3:f5:96:54:04:bc:42:02:72:cd:
15:69:51:90:6a:3c:45:df:fb:5e:1f:ee:cf:9b:68:
45:a6:cd:72:ce:11:63:42:70:0d:e5:f3:90:ba:31:
b3:f9:04:3c:47:39:fc:01:d7:d0:ff:17:74:db:f2:
29:d7:13:27:88:c9:f6:97:2b:33:3f:b8:83:e8:bc:
2d:1c:46:f5:55:17:ad:ba:b6:94:2a:06:28:1f:86:
20:d6:d2:06:9d:e5:18:43:0b:50:11:e5:7e:c6:4f:
25:88:e3:fc:09:1f:d2:56:c7:5d:95:b3:3e:14:fe:
d1:10:b0:21:ce:af:8b:03:d2:ee:bd:d4:d1:49:6c:
b8:88:fa:81:52:a9:07:7e:d2:55:b6:d0:05:b0:e4:
ee:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3B:05:95:DD:78:46:B3:F0:71:CC:04:9A:CC:4D:A6:31:58:0B:13
X509v3 Authority Key Identifier:
keyid:0C:B7:A2:AD:C6:DC:AF:17:7B:93:A3:36:CB:8E:CE:CC:5A:F3:02:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLeircbcrxd7k6M2y47OzFrzAlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2f7894-756d-4cbf-977c-3c5ae761cab0/1/DDsFld14RrPwccwEmsxNpjFYCxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2f7894-756d-4cbf-977c-3c5ae761cab0/1/DLeircbcrxd7k6M2y47OzFrzAlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.88.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b0:e7:3b:04:30:cc:d0:ee:19:ee:67:de:67:c8:18:f2:d8:
29:cb:a5:07:28:6b:aa:be:11:1d:27:f8:76:b6:b9:19:db:1a:
75:e3:9c:4d:61:7c:3f:c9:f6:75:08:8a:70:ce:13:cd:62:90:
8f:a8:ec:ab:75:1f:91:14:64:6a:ab:0b:2f:41:db:17:e6:41:
e2:a3:aa:3f:83:58:ca:ce:37:48:57:6b:a9:78:5c:b5:0f:a7:
a8:ff:76:1b:72:ab:ea:04:fc:fc:a5:61:ca:ff:b5:96:ae:4f:
55:a4:72:63:1b:96:b2:fd:c6:e7:33:c5:b7:79:20:24:93:0a:
9b:a5:a4:05:b3:ce:b6:81:9c:b8:84:86:5a:c0:8f:12:0d:bd:
b5:b2:6b:96:15:ce:56:08:8a:41:9e:74:c5:48:1e:57:e0:03:
bc:24:66:1c:06:60:f0:b7:3d:2e:ae:07:98:42:44:5d:4c:1f:
4a:e4:24:aa:d0:c9:4f:88:e1:70:17:de:b2:98:7e:ab:8a:0c:
0e:07:6c:dc:3f:a8:12:dc:33:52:7b:27:8a:23:21:64:2b:2e:
bc:45:8b:3a:98:45:1e:79:7e:c3:bc:6f:b9:15:bd:ee:30:a6:
fc:3c:ed:72:0b:be:50:33:d0:87:8a:de:42:3a:7a:43:ad:85:
4f:2f:50:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org