Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tQ-6_dhXCmSAfyh1N_EA6tJY72o.roa
File: tQ-6_dhXCmSAfyh1N_EA6tJY72o.roa (raw, json)
Hash identifier: UvGY3e63X0jNkbthN4+42kqwkMPyUb7wboRvONwphg8=
Subject key identifier: B5:0F:BA:FD:D8:57:0A:64:80:7F:28:75:37:F1:00:EA:D2:58:EF:6A
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 01856E942E1EBA8354A9E897995CE82989D3
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tQ-6_dhXCmSAfyh1N_EA6tJY72o.roa
Signing time: Sun 01 Jan 2023 18:24:43 +0000
ROA not before: Sun 01 Jan 2023 18:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204860
IP address blocks: 185.217.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:94:2e:1e:ba:83:54:a9:e8:97:99:5c:e8:29:89:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Jan 1 18:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b50fbafdd8570a64807f287537f100ead258ef6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fb:92:fc:38:af:68:4a:03:ef:e8:73:06:1f:
58:16:ae:45:3c:fc:d7:85:6d:3a:97:90:5d:da:6a:
54:59:d3:f0:61:5e:c7:2b:38:66:dd:85:e9:f8:5d:
fc:c6:7c:bf:8d:0c:0d:51:9e:6a:e3:17:79:43:f5:
c6:14:0f:18:57:d2:00:6c:72:f2:cb:71:72:23:94:
4c:2e:62:a9:cd:ff:2a:bf:bc:ca:71:1f:4a:ad:78:
ea:bf:51:00:e1:f4:06:b6:72:36:8f:dc:f9:88:57:
df:b6:71:0a:a4:b9:b5:d7:21:a4:16:10:f7:da:b7:
6a:6d:a0:e8:00:c9:75:f1:99:1e:f7:0b:13:4a:d1:
02:54:1f:ce:ca:01:22:dd:37:9e:2e:14:35:0f:9a:
87:c7:8b:30:f6:d4:ed:81:f9:88:8e:91:8c:99:3d:
a0:1b:b5:a0:bc:47:2a:99:fe:5c:72:a5:33:d3:4a:
27:1f:2e:28:28:fb:02:55:79:0e:61:68:df:b3:d8:
fd:9a:a6:40:66:fb:16:ab:eb:96:9f:b0:ff:9a:1b:
62:ff:6c:73:a4:52:f8:15:5d:8e:4e:67:f7:e9:e4:
e5:01:55:7c:d2:45:84:fa:13:ca:b2:0c:02:c9:68:
d5:a1:78:a2:5e:bd:63:b3:ff:ae:32:60:c9:be:02:
fe:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0F:BA:FD:D8:57:0A:64:80:7F:28:75:37:F1:00:EA:D2:58:EF:6A
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/tQ-6_dhXCmSAfyh1N_EA6tJY72o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.234.0/23
Signature Algorithm: sha256WithRSAEncryption
61:9f:25:ee:e2:5e:e5:dd:78:00:1d:81:60:c0:15:29:ac:c8:
5a:d2:33:71:b3:8c:82:18:79:f8:87:7e:28:30:12:35:84:17:
24:e2:6a:b8:83:23:56:3e:00:7e:1b:cb:93:5e:03:c3:56:ca:
a3:94:4e:d8:37:ce:73:77:49:a8:51:c7:18:3d:ca:b7:44:11:
6f:21:c3:49:a7:a8:34:8a:e9:db:98:b3:32:0f:d3:f2:95:84:
2c:a5:ce:08:5e:ee:c5:aa:d3:f2:ca:44:16:a1:ba:15:dc:2d:
b3:4b:28:05:ee:79:9d:e6:3c:21:90:54:c9:13:a4:44:b3:15:
f9:b5:df:79:5a:55:2f:5e:53:7d:e0:54:06:82:16:00:be:ca:
d8:05:32:69:ca:d8:96:c8:62:4e:d8:58:d6:f2:05:fc:ca:2c:
4f:7d:e9:73:4b:7f:f8:76:f2:27:ea:5f:a2:4a:85:dc:c4:92:
d8:76:c8:73:b3:72:a5:26:9e:15:4d:06:8a:b2:e3:c2:b0:d2:
a6:b7:fe:a5:7d:df:e4:ec:6a:a3:85:5d:56:02:76:bf:57:e8:
ef:4f:0a:f2:4f:bc:a1:be:16:a3:b8:9a:87:72:b3:70:8f:e0:
60:10:8c:a5:47:07:93:0a:20:08:c1:66:4c:18:38:9e:95:d5:
f2:4d:57:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:34 2024 by rpki-client on console-ams.rpki-client.org