Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/8eaP0YOqNSYmBF_QrN3QqxAYoCM.roa
File: 8eaP0YOqNSYmBF_QrN3QqxAYoCM.roa (raw, json)
Hash identifier: YJcbDzNd1h/z7tP+AQBeAFXtDRb9bNiA1Jj9hnOXVBI=
Subject key identifier: F1:E6:8F:D1:83:AA:35:26:26:04:5F:D0:AC:DD:D0:AB:10:18:A0:23
Certificate issuer: /CN=6ad9641ca447eb2e30c5db5191c16bcd477289db
Certificate serial: 018572B448482D093659C65326986A30E0CA
Authority key identifier: 6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/8eaP0YOqNSYmBF_QrN3QqxAYoCM.roa
Signing time: Mon 02 Jan 2023 13:38:15 +0000
ROA not before: Mon 02 Jan 2023 13:38:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9063
IP address blocks: 185.53.156.0/22 maxlen: 22
2a02:2c60::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:48:48:2d:09:36:59:c6:53:26:98:6a:30:e0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ad9641ca447eb2e30c5db5191c16bcd477289db
Validity
Not Before: Jan 2 13:38:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1e68fd183aa352626045fd0acddd0ab1018a023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c9:e3:76:60:a8:c9:82:9f:1c:7a:ca:86:37:
c8:ca:c4:97:28:ed:ea:38:99:76:e4:3a:8d:69:b6:
e7:b2:e3:97:09:4e:3c:14:73:76:9d:91:b3:3e:30:
fe:55:b1:cc:c5:c8:56:62:15:2f:32:3f:53:07:14:
94:91:ef:69:89:6e:d5:44:26:b2:31:d6:05:d3:8c:
9d:95:dc:60:9f:34:9d:34:6e:e4:ee:ce:ee:3b:16:
ff:c2:f4:66:41:45:a4:03:26:48:58:53:04:12:20:
d2:23:26:63:5a:c1:83:2e:84:be:2c:75:6a:72:2e:
fd:91:87:d4:94:b9:67:2e:8a:c1:6d:cf:22:4f:cd:
7a:eb:9d:cc:74:55:c1:1e:07:53:9e:4a:d4:a9:08:
af:a9:9e:8a:91:08:9b:b0:76:2e:86:4b:95:e3:f3:
cf:9a:de:7a:a9:5e:d3:81:75:b3:7b:86:f2:82:fa:
6b:09:93:c3:e6:6d:3d:d2:37:5d:2d:73:19:66:07:
ef:a7:a4:6a:a6:e6:f3:73:05:a7:7a:7a:79:00:3b:
e4:3b:7f:99:41:a7:bc:09:45:b5:23:2d:f2:9f:4a:
c3:37:d9:b0:a6:d9:38:e8:d7:ae:50:15:0e:31:85:
e6:8a:91:1e:61:3a:ba:f0:40:fd:74:dd:30:3b:1a:
a0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E6:8F:D1:83:AA:35:26:26:04:5F:D0:AC:DD:D0:AB:10:18:A0:23
X509v3 Authority Key Identifier:
keyid:6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/8eaP0YOqNSYmBF_QrN3QqxAYoCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/atlkHKRH6y4wxdtRkcFrzUdyids.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.156.0/22
IPv6:
2a02:2c60::/32
Signature Algorithm: sha256WithRSAEncryption
98:8e:cd:84:0e:2a:60:5b:41:c4:64:61:2a:d2:ee:fa:77:a9:
e2:8f:4f:49:c9:00:4c:c0:fb:ac:9d:b5:de:d9:51:7f:40:19:
4c:99:89:57:05:1d:01:c1:af:05:81:d0:1f:c3:e6:83:5e:ed:
d8:7d:1c:17:1d:3c:fd:2f:29:c5:2e:d5:89:a2:be:fb:55:0a:
13:7a:74:8e:42:5d:3f:81:a7:ff:80:87:97:1e:e8:10:2a:02:
6b:07:47:2c:07:4c:42:be:b9:f1:cd:83:3f:99:72:ef:e0:c5:
13:f2:c5:ed:6d:0a:84:72:f7:5e:2e:e7:e8:43:2a:63:6f:64:
ea:a6:05:cf:24:63:15:72:00:be:31:73:0f:b0:8a:3a:b8:06:
61:6f:51:75:ec:c7:4f:d5:2d:b1:07:e2:b9:76:c6:f4:7b:6f:
8e:ad:74:0f:cd:93:c7:4f:28:48:91:b7:56:22:00:58:1f:dd:
97:ef:e6:69:59:7c:7e:df:2b:14:35:81:9e:67:66:72:84:74:
83:c9:f6:0f:f9:1e:c2:6a:79:65:41:cb:48:ba:be:24:ab:64:
0f:ee:01:03:b4:0e:22:5d:b6:dd:13:b5:25:0f:07:03:0e:73:
da:e2:32:b6:c4:dd:16:80:ff:fe:00:1c:50:8a:d1:b2:b6:76:
42:fb:ec:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:03 2024 by rpki-client on console-ams.rpki-client.org