Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/3tpBW6fJZaQ6k9ur54nqGwa2SqQ.roa
File: 3tpBW6fJZaQ6k9ur54nqGwa2SqQ.roa (raw, json)
Hash identifier: zQhWpyFkVjYbdjWJ7uxFaBHazEMNJJqtjJ0+KcudH50=
Subject key identifier: DE:DA:41:5B:A7:C9:65:A4:3A:93:DB:AB:E7:89:EA:1B:06:B6:4A:A4
Certificate issuer: /CN=634d6eec403eff86b40f9c598091dd4302a9a721
Certificate serial: 018708C0341978D057AEAB3D463288166122
Authority key identifier: 63:4D:6E:EC:40:3E:FF:86:B4:0F:9C:59:80:91:DD:43:02:A9:A7:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y01u7EA-_4a0D5xZgJHdQwKppyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/3tpBW6fJZaQ6k9ur54nqGwa2SqQ.roa
Signing time: Wed 22 Mar 2023 09:57:06 +0000
ROA not before: Wed 22 Mar 2023 09:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.216.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 09:37:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:c0:34:19:78:d0:57:ae:ab:3d:46:32:88:16:61:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=634d6eec403eff86b40f9c598091dd4302a9a721
Validity
Not Before: Mar 22 09:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=deda415ba7c965a43a93dbabe789ea1b06b64aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:03:b6:69:56:7e:85:b1:b0:f2:2c:1c:87:37:
55:eb:7d:5a:2e:7e:8b:41:d5:93:7c:06:5f:32:9e:
b5:82:94:6a:89:6a:d0:63:06:4e:c3:98:2b:59:58:
bf:17:5a:fa:c5:af:71:32:92:f4:1f:eb:1c:47:3f:
d4:ab:a8:6b:0a:16:4a:43:c9:02:da:a9:e7:e7:61:
76:50:4a:e8:15:7d:89:2a:69:8b:67:99:95:98:4d:
16:18:9d:ad:dc:5b:35:7f:27:a2:30:49:d6:73:82:
b6:00:3f:85:e2:5f:0c:a9:30:76:ae:a3:30:9d:45:
5f:15:0b:11:a2:d5:d1:2e:1b:76:e0:be:48:e1:5f:
4d:4e:17:55:66:17:95:a8:4a:0e:e8:8d:72:6d:38:
a9:ed:ef:4b:74:94:65:37:7c:24:5c:16:a9:05:7e:
1b:2e:22:aa:70:cb:b5:07:dc:04:53:98:2b:a9:6b:
89:3c:89:e3:c5:1c:b8:5c:c2:2e:be:82:8c:3e:65:
ac:d9:92:4c:20:6e:09:06:2f:7e:a7:da:bf:66:7f:
32:f4:43:1b:7c:be:4b:41:41:fc:69:bd:a0:1a:9c:
5d:11:84:68:7e:f9:0c:8c:79:22:94:8c:d8:0b:36:
97:ce:8a:25:2e:79:5c:0f:5d:d8:ce:05:12:bd:c8:
88:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DA:41:5B:A7:C9:65:A4:3A:93:DB:AB:E7:89:EA:1B:06:B6:4A:A4
X509v3 Authority Key Identifier:
keyid:63:4D:6E:EC:40:3E:FF:86:B4:0F:9C:59:80:91:DD:43:02:A9:A7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y01u7EA-_4a0D5xZgJHdQwKppyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/3tpBW6fJZaQ6k9ur54nqGwa2SqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/Y01u7EA-_4a0D5xZgJHdQwKppyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.13.0/24
Signature Algorithm: sha256WithRSAEncryption
01:27:fc:dc:0a:57:d4:47:84:d8:9d:6a:3b:0e:6c:7c:60:6f:
83:eb:11:7c:f2:a8:f7:6a:db:4f:1d:3e:a8:e9:c4:7c:a2:a1:
e2:93:6c:88:59:fa:48:81:a8:42:f2:fa:46:7c:49:48:eb:a9:
94:0d:5a:e4:a3:ae:e3:c7:cc:6d:55:49:6f:1c:17:d2:a5:2b:
96:55:fd:a2:53:05:ca:2e:ed:9a:e1:93:86:df:57:db:7c:60:
c1:9c:e1:76:50:bf:82:a3:06:8d:71:fe:ad:09:45:d7:91:b9:
1d:4c:a5:72:8c:c0:e6:f4:00:73:f8:57:34:99:0a:b8:21:c4:
3b:da:72:26:11:07:7b:05:a6:8f:1c:e2:5f:4d:33:ea:04:49:
50:d8:f1:d4:66:93:9e:08:95:ac:b8:f4:0d:e8:e8:62:93:44:
e1:e7:1f:db:a3:2b:3f:f7:8a:b4:77:97:04:24:84:33:a3:58:
ea:97:a8:34:93:74:53:30:aa:46:cb:6f:42:22:2b:11:0c:40:
e0:5b:ab:76:ba:f5:6e:76:51:c7:e7:31:e2:ba:5d:3d:e3:b4:
cd:f0:c8:1b:88:44:32:2e:bd:41:45:c2:7e:68:07:f9:55:99:
c6:43:b8:37:e7:02:bb:bd:a5:66:86:cc:15:79:8c:73:89:59:
7b:a5:68:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:08 2024 by rpki-client on console-fra.rpki-client.org