Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/ydYekz6ZkPONwj1wz0hvaXzQSlo.roa
File: ydYekz6ZkPONwj1wz0hvaXzQSlo.roa (raw, json)
Hash identifier: +qZbDFNDp/TlKvCOBqS0SoI0DwbX/9MPnRYC6F6iEWQ=
Subject key identifier: C9:D6:1E:93:3E:99:90:F3:8D:C2:3D:70:CF:48:6F:69:7C:D0:4A:5A
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 01856F26E07EDDC97D4C49E617DF3836691B
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/ydYekz6ZkPONwj1wz0hvaXzQSlo.roa
Signing time: Sun 01 Jan 2023 21:04:56 +0000
ROA not before: Sun 01 Jan 2023 21:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201559
IP address blocks: 185.70.216.0/22 maxlen: 32
2a05:2c00::/30 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:e0:7e:dd:c9:7d:4c:49:e6:17:df:38:36:69:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 1 21:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9d61e933e9990f38dc23d70cf486f697cd04a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0e:45:6a:7e:1d:7d:24:01:99:47:c1:f8:17:
3c:4c:a3:aa:c3:76:b1:ae:0a:54:f5:0c:63:4c:65:
52:e4:73:30:c9:87:07:a7:62:45:94:62:49:1e:38:
d3:04:ce:77:ef:50:6e:f9:5e:b5:62:2b:42:be:ed:
eb:87:8d:0d:3e:fd:59:ab:51:04:25:2b:f2:82:b6:
51:70:54:b9:95:f2:45:ba:cf:af:6f:5e:51:be:cb:
4e:7d:0a:e9:05:07:16:1c:cd:27:8e:dc:e3:15:e8:
74:88:3b:d5:b6:9c:67:3c:70:90:b2:af:9b:a9:b7:
89:e3:d2:d6:43:63:43:5d:81:8f:bf:1a:a9:bd:3b:
83:16:c7:4f:42:e8:6f:03:fc:4d:75:4c:cc:3f:cb:
73:7b:2f:d6:6d:53:c6:a0:28:d4:19:7d:86:a3:b3:
20:7f:9d:ee:27:a5:0a:bf:8d:96:6d:8e:23:58:e8:
3b:68:90:82:59:94:7d:2b:08:16:c0:ae:18:ae:58:
1a:16:6c:03:03:a3:3a:29:f4:1e:30:88:fb:0e:b6:
16:fc:2d:56:1d:9d:11:eb:39:59:7c:3a:14:a6:bb:
28:7b:4f:5e:80:4a:69:2d:09:3c:47:fa:de:f5:c5:
b9:5a:96:e5:55:ad:8e:1a:5b:16:62:b6:93:5e:d1:
15:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D6:1E:93:3E:99:90:F3:8D:C2:3D:70:CF:48:6F:69:7C:D0:4A:5A
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/ydYekz6ZkPONwj1wz0hvaXzQSlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.216.0/22
IPv6:
2a05:2c00::/30
Signature Algorithm: sha256WithRSAEncryption
38:53:83:b1:a2:d0:e3:c5:81:ed:23:9d:ca:c4:46:60:ee:25:
0f:8d:3f:cc:50:3c:3e:9d:11:3e:c5:ec:98:02:9f:73:18:eb:
97:1c:51:bd:7a:c0:c9:48:c7:28:8a:86:b0:42:c9:52:82:3f:
09:bb:b4:35:94:6c:fa:8e:e6:1d:90:6c:e9:c3:4c:bc:ac:2a:
51:de:c5:68:d8:1e:89:3b:35:a6:b9:48:60:d3:f0:0d:60:1b:
7b:2f:4d:af:a2:88:50:9c:9a:a1:a2:07:03:08:68:c8:ff:d7:
47:ae:a0:13:42:09:d8:a0:cd:ad:ae:16:ce:07:9a:ae:e1:a4:
a4:14:9e:bb:4a:d1:c9:48:87:04:4c:43:6c:84:78:dc:28:06:
7e:ef:66:b5:32:94:9d:ca:c5:12:d0:db:2c:07:44:99:dc:4c:
38:d1:51:ce:51:19:0f:1b:a6:0c:ba:79:34:b0:bc:37:1e:49:
70:48:9c:32:ff:ef:40:81:b4:44:d4:38:25:ab:55:36:1f:0b:
a3:90:16:08:74:84:28:41:0f:08:70:cf:1a:18:59:da:8b:ae:
c8:c3:ef:75:ab:42:8c:86:8e:39:ca:6c:32:15:34:47:0c:2b:
de:9f:1a:53:ca:30:6d:12:2b:11:3d:e5:0d:0a:7b:07:bf:69:
b5:2a:60:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:18 2024 by rpki-client on console-ams.rpki-client.org