Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/APN7vu9xRtfA5Ij8x_z1hmS5380.roa
File: APN7vu9xRtfA5Ij8x_z1hmS5380.roa (raw, json)
Hash identifier: Av+rgJeAMvQOE5YObOw6u3BlonHZgtN5SKZTfu3C/1A=
Subject key identifier: 00:F3:7B:BE:EF:71:46:D7:C0:E4:88:FC:C7:FC:F5:86:64:B9:DF:CD
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 0185714C474775F6CEA563404ED35B3F7262
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/APN7vu9xRtfA5Ij8x_z1hmS5380.roa
Signing time: Mon 02 Jan 2023 07:05:02 +0000
ROA not before: Mon 02 Jan 2023 07:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202636
IP address blocks: 185.243.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 30 Nov 2023 12:16:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:47:47:75:f6:ce:a5:63:40:4e:d3:5b:3f:72:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 2 07:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00f37bbeef7146d7c0e488fcc7fcf58664b9dfcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3c:2d:6e:ba:12:b0:c4:67:b7:3d:25:84:77:
5f:ad:a9:51:d4:ae:78:24:f0:a7:ba:c8:58:99:fd:
d0:81:1c:b3:17:f3:dd:8e:66:15:8c:ab:45:75:13:
52:b9:94:83:f3:fb:9d:9d:4c:ac:5f:c6:18:b9:d0:
b5:05:5e:d4:1f:4d:3a:02:ec:5c:0a:3b:64:b0:a3:
a4:13:8a:6a:76:53:a9:e6:bf:0e:8f:ca:0e:49:a9:
50:b1:99:f9:48:6d:20:7e:47:78:3d:ce:1b:42:2a:
9e:42:33:78:85:48:ec:9a:ef:72:b2:53:ab:79:8d:
79:9a:2f:16:2f:12:4d:60:a2:dd:63:d6:2d:b1:db:
45:7c:8a:9e:36:1e:6f:89:9e:a9:9c:cd:14:78:44:
e3:a9:d7:67:b7:dc:2b:5e:f3:17:5c:bf:29:36:85:
47:4e:cf:50:d3:d3:e9:b7:c0:05:a8:2a:b5:02:4b:
da:c3:e6:8f:eb:bc:86:1a:59:82:a4:51:34:56:ff:
0f:a9:57:21:e8:8c:47:b3:1e:13:09:5e:8a:70:1d:
09:9f:f9:4f:6e:53:b1:7c:ea:fc:4e:8b:b1:00:b2:
30:50:44:4e:aa:8a:47:f9:5c:0d:86:6b:e4:2b:36:
d6:b0:5e:51:b9:c6:4a:ae:ec:f2:7f:38:7f:a5:82:
ba:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F3:7B:BE:EF:71:46:D7:C0:E4:88:FC:C7:FC:F5:86:64:B9:DF:CD
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/APN7vu9xRtfA5Ij8x_z1hmS5380.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.152.0/22
Signature Algorithm: sha256WithRSAEncryption
20:80:46:be:4e:f1:7b:74:f5:57:eb:7a:62:c2:35:25:ef:72:
7a:13:fd:3a:a9:34:15:de:63:06:44:d6:6e:b5:6f:68:a8:b5:
1b:ea:1d:fd:d4:fd:0d:40:a9:fe:a0:bb:af:93:fa:d5:64:ca:
47:45:5d:2d:2f:25:43:cd:da:54:fe:31:6d:e7:01:70:f8:f9:
ef:37:f9:98:be:0d:61:f6:9e:df:03:19:ab:7c:cc:c0:6d:f3:
e4:ac:5a:6c:eb:b4:b8:fe:36:e2:08:d7:15:69:79:9e:ee:c0:
e1:ab:f6:48:f1:b6:9d:17:11:76:b1:07:a3:9c:89:89:c9:8a:
70:67:c1:2c:8d:7c:64:85:22:39:dd:b5:97:6f:20:88:86:62:
36:2f:3e:33:55:9d:43:16:f6:9c:a1:f8:c6:44:60:40:5e:cc:
1c:cb:b1:c2:71:3e:f0:89:ba:70:1f:d0:70:cb:ab:fa:79:db:
ee:0c:c8:ac:85:0c:02:c6:d2:ce:40:21:b9:7b:95:8e:25:60:
30:d9:10:dd:54:d2:b3:3e:bd:16:2c:4c:27:1d:5c:df:b4:2e:
6f:16:cf:61:97:4a:cc:83:33:df:32:e4:53:57:5a:5a:be:2f:
d7:32:90:05:2f:65:72:f8:56:6e:56:1b:6b:46:09:bc:6b:dd:
df:26:17:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org