Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/DfmYCDErVQwpUJ5eeTxPte-8g9E.roa
File: DfmYCDErVQwpUJ5eeTxPte-8g9E.roa (raw, json)
Hash identifier: F5X812TyE5t0twUVt7tQdsPdzC6bRv2kFgd9ZG3W40s=
Subject key identifier: 0D:F9:98:08:31:2B:55:0C:29:50:9E:5E:79:3C:4F:B5:EF:BC:83:D1
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 01876A5D2778E93653AB3EBB0F174268E0FF
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/DfmYCDErVQwpUJ5eeTxPte-8g9E.roa
Signing time: Mon 10 Apr 2023 08:51:42 +0000
ROA not before: Mon 10 Apr 2023 08:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200350
IP address blocks: 185.32.184.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 08:13:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:5d:27:78:e9:36:53:ab:3e:bb:0f:17:42:68:e0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: Apr 10 08:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0df99808312b550c29509e5e793c4fb5efbc83d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f9:58:f7:0c:6f:42:13:13:b4:e2:b2:b4:f3:
45:f6:4e:58:20:56:20:7b:b8:aa:be:fa:66:c0:64:
67:9f:3b:06:28:63:39:45:9e:65:30:0d:bc:2c:f4:
f8:97:7f:68:96:07:7c:48:73:9c:c3:c5:08:e9:1e:
94:59:81:7f:38:3a:0c:8d:92:39:cd:42:f0:1e:4d:
19:7e:83:98:4e:49:87:72:61:74:56:b0:88:84:1e:
46:3d:fb:1d:58:cf:43:1f:df:c2:90:50:0a:2f:45:
7a:23:3b:a2:06:eb:16:fd:3f:e9:b1:c9:41:63:cf:
e1:34:85:0d:21:e7:ad:e7:92:6f:76:07:47:7d:5d:
36:78:0a:a7:cc:93:27:c4:9f:2a:57:9b:92:c0:9c:
64:23:ce:7b:f9:91:bf:5a:eb:76:ed:9e:e1:cd:68:
bc:65:ad:ee:4d:74:48:07:d3:af:bc:cf:fd:25:d8:
5c:76:5d:31:3c:36:bb:2a:65:28:77:7f:cf:94:d9:
94:a6:92:a8:20:0d:ea:0f:b4:6d:bf:28:16:42:75:
f7:ed:f4:fb:90:01:d2:8d:c3:2f:de:2c:9c:da:ad:
89:2c:9e:67:ed:c7:ef:47:ff:d0:43:d3:00:8c:63:
f4:6f:96:4e:b6:02:aa:6c:d2:50:27:83:63:53:bf:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F9:98:08:31:2B:55:0C:29:50:9E:5E:79:3C:4F:B5:EF:BC:83:D1
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/DfmYCDErVQwpUJ5eeTxPte-8g9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.184.0/23
Signature Algorithm: sha256WithRSAEncryption
06:95:7f:23:4d:db:55:42:04:01:93:24:af:f9:23:2c:fe:40:
53:77:65:12:7d:bb:d0:df:25:b4:27:79:8c:43:7b:63:cf:9e:
21:18:b4:b3:5e:09:23:f0:6d:6a:7d:fe:d2:f6:be:72:3b:2a:
77:5e:d3:85:52:4a:49:5e:37:02:bc:9c:86:3c:cb:41:f4:6f:
fe:86:32:af:d6:b4:bc:f1:b6:e7:ac:6d:9a:84:03:57:6c:e8:
4a:72:87:29:be:3d:3c:80:70:90:23:39:fe:94:45:fb:fd:5b:
66:3d:2f:38:6f:63:1b:45:02:ec:6d:1c:ee:a4:d3:57:c7:d9:
ad:20:14:a4:19:a7:1b:c4:94:52:2c:aa:f1:95:5c:fc:88:8b:
67:b0:49:fb:18:63:d5:3b:6c:0f:11:9b:80:77:92:cc:a1:0a:
82:b2:2c:ac:a0:83:9d:08:a6:39:71:5f:5b:55:6b:16:88:19:
71:cb:b0:94:d2:6a:9d:c8:12:38:da:ba:98:43:6b:b9:0e:35:
3e:e5:ef:e5:5a:63:93:30:97:ad:01:b7:b0:43:87:24:c9:ce:
e4:20:70:75:2b:23:fc:85:89:7c:09:39:6a:9a:9f:8b:a9:db:
a5:af:4a:9b:d3:c1:a7:48:6f:b0:ea:a2:c9:85:69:02:b3:e7:
d1:e9:c1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:57 2024 by rpki-client on console-ams.rpki-client.org