Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dgwckbAuxmDcxifgTfUll1OVrWU.roa
File: dgwckbAuxmDcxifgTfUll1OVrWU.roa (raw, json)
Hash identifier: UjiibnoVly2xNipYWnNSp94oqZoK1jNoszREx9zpZ7I=
Subject key identifier: 76:0C:1C:91:B0:2E:C6:60:DC:C6:27:E0:4D:F5:25:97:53:95:AD:65
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018ADC7E4F7868BFFD5449B028095B5280E4
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dgwckbAuxmDcxifgTfUll1OVrWU.roa
Signing time: Thu 28 Sep 2023 15:52:59 +0000
ROA not before: Thu 28 Sep 2023 15:52:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.170.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dc:7e:4f:78:68:bf:fd:54:49:b0:28:09:5b:52:80:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Sep 28 15:52:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=760c1c91b02ec660dcc627e04df525975395ad65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:62:b9:c1:17:66:ab:55:67:44:6b:76:af:51:
77:c6:01:d4:e1:06:1c:85:9c:6d:60:12:43:13:56:
a1:de:ff:7f:b4:8c:37:ae:bc:92:80:c2:ce:41:b2:
51:45:8a:a5:78:fb:2f:ec:3f:da:c0:66:3f:dc:cd:
ec:0c:64:1d:af:de:8a:48:39:47:26:c2:31:f2:17:
22:1c:b9:cd:23:a5:78:ff:11:d5:a4:44:40:0b:dc:
82:40:dd:ef:38:ad:e0:ba:4c:fb:39:89:3d:91:0c:
ae:67:e8:2f:ba:c5:5b:9c:1a:87:80:9c:f4:e8:1b:
b7:81:06:98:99:55:fd:f9:6f:a2:cd:9f:1e:7c:7b:
61:ba:e7:f5:0c:7f:a1:40:20:91:21:58:4b:01:36:
cc:ca:26:83:18:be:62:20:91:9b:c7:28:47:07:d1:
21:75:ef:78:21:a4:b1:50:b5:9c:cc:59:43:0f:98:
c0:48:7e:36:84:b5:82:44:8d:82:a5:e7:0c:d5:a3:
ce:dd:58:ca:45:e1:7f:e6:7b:b2:74:dd:bb:0a:a5:
87:e1:20:d6:77:12:7a:bf:99:af:64:09:1e:2a:c1:
9c:2d:c4:58:ce:3f:91:8b:ea:6b:97:fb:a6:14:7c:
63:9e:24:5c:7d:b2:40:2e:ea:c7:72:b5:30:43:63:
4a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0C:1C:91:B0:2E:C6:60:DC:C6:27:E0:4D:F5:25:97:53:95:AD:65
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dgwckbAuxmDcxifgTfUll1OVrWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.68.0/22
Signature Algorithm: sha256WithRSAEncryption
22:d9:24:c4:4e:9d:61:be:18:40:ce:9e:0f:21:a4:96:09:09:
bc:88:ba:ee:2e:c4:68:1e:5e:38:97:5c:33:d4:fa:90:92:e4:
d6:e8:69:b1:6b:b4:0d:d6:0e:b5:dd:4e:e3:40:80:84:7f:dd:
d9:bc:69:6c:0b:9b:21:d3:3f:15:f9:c7:50:47:34:8c:4a:99:
ce:8a:1a:4b:5c:df:f5:f4:40:bb:73:1b:8d:78:1b:fd:cf:f4:
ec:7f:a4:11:f3:db:18:81:45:ef:cd:86:2f:3f:08:fd:63:c6:
16:e4:f2:f5:ee:3c:3b:fe:c3:4d:06:10:0b:e7:4f:88:10:7a:
87:e8:c7:42:ec:f3:cf:da:22:18:cb:07:72:1d:4e:b1:f9:d5:
3d:88:e2:8e:f8:0d:94:b4:bc:5b:b7:30:d0:a6:66:64:fe:e3:
f5:58:1a:9d:18:99:8a:0b:ca:82:c3:94:42:42:66:f5:d5:85:
8e:be:58:69:da:57:e2:2f:48:35:19:04:a7:50:1d:da:2c:89:
bf:bf:a3:55:5a:56:61:59:52:3e:9d:34:1b:c0:2c:52:64:1d:
5c:ac:18:61:22:0a:d8:75:60:85:fb:00:b1:98:6b:b5:45:52:
af:6a:a0:f7:73:a9:9f:1b:97:dc:9a:0d:7c:5a:70:5f:ee:75:
34:c8:cb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org