Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/Y8r5VaDxlK0quUcAw_96Tfrwg-A.roa
File: Y8r5VaDxlK0quUcAw_96Tfrwg-A.roa (raw, json)
Hash identifier: 7NtUm4Ssx6oSC2q3ALBeiZFO04QlolNXGL2JMnp4TMM=
Subject key identifier: 63:CA:F9:55:A0:F1:94:AD:2A:B9:47:00:C3:FF:7A:4D:FA:F0:83:E0
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 01856F26DF342CB8C586C1648E90BCBDC47E
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/Y8r5VaDxlK0quUcAw_96Tfrwg-A.roa
Signing time: Sun 01 Jan 2023 21:04:56 +0000
ROA not before: Sun 01 Jan 2023 21:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197296
IP address blocks: 45.139.88.0/22 maxlen: 22
46.23.48.0/20 maxlen: 32
185.17.100.0/22 maxlen: 32
185.74.62.0/23 maxlen: 32
2a02:d280::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:df:34:2c:b8:c5:86:c1:64:8e:90:bc:bd:c4:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 1 21:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63caf955a0f194ad2ab94700c3ff7a4dfaf083e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:dd:70:a8:93:aa:b5:7a:13:e8:b6:e9:91:
a5:ee:65:4f:a0:99:4f:8d:98:31:6e:17:a2:ea:c3:
85:95:a6:85:bb:57:35:86:c0:32:19:39:58:dd:75:
2f:d6:60:c4:33:7a:d0:34:6b:e7:8a:76:e1:d2:9d:
6a:2f:54:c0:87:c7:d5:eb:06:ad:f3:d6:03:6e:68:
26:21:34:a4:0e:f0:f5:66:be:49:f8:e0:e6:b6:94:
95:98:ce:87:ce:9d:a4:49:a2:eb:fa:4f:2d:38:44:
e6:c2:ea:46:0a:53:25:23:dd:2d:ff:c5:1a:15:34:
0a:f7:c8:6d:1e:b5:54:8e:31:f2:e4:94:fd:e9:66:
33:30:70:f9:51:75:77:e4:13:7a:ec:b6:21:e1:d9:
3c:1f:10:dc:15:db:58:ad:4a:48:a2:b0:ff:98:d8:
cc:66:d6:1e:60:cd:ac:bf:f9:f6:10:0e:72:39:fc:
67:d6:e3:83:94:20:d4:cb:63:d9:e1:93:2a:97:ee:
8c:f0:0b:ca:2c:34:85:ba:9d:43:70:14:a0:52:cf:
03:40:61:00:74:eb:d5:af:01:94:8b:b4:37:43:a5:
c9:2e:64:45:b0:83:39:9b:8d:89:f9:66:5c:d2:44:
27:74:d2:15:1a:4e:cd:64:93:b0:d7:6e:48:f5:6c:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CA:F9:55:A0:F1:94:AD:2A:B9:47:00:C3:FF:7A:4D:FA:F0:83:E0
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/Y8r5VaDxlK0quUcAw_96Tfrwg-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.88.0/22
46.23.48.0/20
185.17.100.0/22
185.74.62.0/23
IPv6:
2a02:d280::/29
Signature Algorithm: sha256WithRSAEncryption
80:40:b5:c8:a2:36:6d:1b:f6:77:1d:1f:97:5f:c7:cb:d8:51:
20:7b:77:06:e9:26:03:bb:ff:cb:27:6d:4d:b0:9b:94:0f:63:
22:98:61:32:7e:1d:12:1e:62:39:98:f1:8c:89:d9:df:2f:23:
ce:7e:9c:80:39:f7:3b:f1:32:9e:fe:bb:74:e4:97:d2:ac:ac:
1c:5b:89:9c:48:c2:61:d0:5b:0a:e8:56:3f:e0:a9:f5:26:4c:
e3:02:96:ee:ce:3a:92:6d:2d:79:62:da:df:35:2a:a4:9c:66:
a6:8c:36:31:9f:89:eb:08:b2:22:93:2d:c0:1d:98:f7:9b:ea:
74:95:b0:cd:41:f4:d4:91:8f:7e:05:f5:ef:0b:29:16:3c:18:
fc:27:2b:5c:24:7a:52:86:33:41:1b:5c:f2:2e:14:46:b5:76:
4b:8d:5f:31:cb:87:60:cc:ae:aa:31:a2:be:c7:2b:f9:83:26:
fc:8b:83:c6:59:bd:66:76:45:c6:71:bd:a3:ca:99:91:92:5d:
f2:ce:44:73:0d:58:83:ab:67:6e:e7:22:2c:15:a3:dc:3d:3b:
08:91:fc:18:2a:7c:8d:fb:ed:3b:e9:d4:60:cf:6b:95:63:e5:
be:94:bd:c5:1e:c0:13:fc:f7:44:d3:97:75:f4:15:5d:ca:53:
00:26:b8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:18 2024 by rpki-client on console-ams.rpki-client.org