Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/2d6237-e584-4bef-9c35-7ef24099db85/1/ip_Dp3g0a86bPpYzO7e1TeXnHtU.roa
File: ip_Dp3g0a86bPpYzO7e1TeXnHtU.roa (raw, json)
Hash identifier: wsG1XWwmxBNMtkPkC8h6zSI1TNnGBWIbcyeIRkkJJ7s=
Subject key identifier: 8A:9F:C3:A7:78:34:6B:CE:9B:3E:96:33:3B:B7:B5:4D:E5:E7:1E:D5
Certificate issuer: /CN=36a32e14a2ffece5679f3ed117c30ff77b45b0f4
Certificate serial: 0189DDDF7C020B77AE323E22E1BEBCE28A09
Authority key identifier: 36:A3:2E:14:A2:FF:EC:E5:67:9F:3E:D1:17:C3:0F:F7:7B:45:B0:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NqMuFKL_7OVnnz7RF8MP93tFsPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/2d6237-e584-4bef-9c35-7ef24099db85/1/ip_Dp3g0a86bPpYzO7e1TeXnHtU.roa
Signing time: Thu 10 Aug 2023 05:15:58 +0000
ROA not before: Thu 10 Aug 2023 05:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21413
IP address blocks: 185.217.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dd:df:7c:02:0b:77:ae:32:3e:22:e1:be:bc:e2:8a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36a32e14a2ffece5679f3ed117c30ff77b45b0f4
Validity
Not Before: Aug 10 05:15:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a9fc3a778346bce9b3e96333bb7b54de5e71ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cd:63:6f:2e:f5:02:49:64:83:df:47:71:dc:
ee:8e:b0:51:ab:14:62:7d:ac:8f:61:98:8b:db:f0:
22:82:67:f7:5b:9c:92:29:07:74:d7:40:8e:0e:bb:
b3:d9:44:f1:0d:55:9e:80:bf:5f:47:cd:54:5a:4c:
64:07:0f:bb:02:e4:96:e9:ec:4e:37:72:a2:8a:20:
e7:7b:dc:87:15:6a:59:9f:e5:b3:cd:3f:a7:28:3e:
62:3b:01:c6:3e:84:09:3f:11:b4:a6:97:26:62:c9:
54:51:70:53:61:f6:49:fe:b2:0e:05:ea:fc:67:6f:
5f:f3:a4:2d:91:b3:d5:fc:62:2a:fa:21:48:ba:db:
2b:3b:c7:23:15:6f:da:8c:6a:15:39:6f:d1:86:0d:
38:12:f4:8a:7a:a7:40:91:09:c8:55:f6:d2:21:15:
cc:9a:77:a9:44:f6:db:18:2d:d4:50:ff:70:fb:0e:
06:06:40:09:4b:65:18:21:7b:80:75:91:17:1a:49:
ce:28:4e:cd:95:f9:3f:2a:fa:b8:b1:84:8f:63:8e:
93:48:b3:93:8f:3a:ba:9f:ef:e7:6a:95:68:47:6b:
6c:90:2f:21:54:e1:ef:09:17:88:64:cb:03:a6:92:
f2:bd:38:31:ec:09:45:82:0e:ec:bc:af:a0:77:32:
a5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9F:C3:A7:78:34:6B:CE:9B:3E:96:33:3B:B7:B5:4D:E5:E7:1E:D5
X509v3 Authority Key Identifier:
keyid:36:A3:2E:14:A2:FF:EC:E5:67:9F:3E:D1:17:C3:0F:F7:7B:45:B0:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NqMuFKL_7OVnnz7RF8MP93tFsPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/2d6237-e584-4bef-9c35-7ef24099db85/1/ip_Dp3g0a86bPpYzO7e1TeXnHtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/2d6237-e584-4bef-9c35-7ef24099db85/1/NqMuFKL_7OVnnz7RF8MP93tFsPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.176.0/22
Signature Algorithm: sha256WithRSAEncryption
99:d2:cf:6d:92:4e:d6:7b:e3:6f:f5:9d:0f:73:60:9a:8f:e0:
b2:94:54:c8:5a:20:49:01:3f:25:2f:7a:d7:d3:92:db:58:b1:
d3:99:4a:69:4a:0f:ab:e7:6c:73:3d:c6:37:e5:1a:7c:49:6f:
6e:5e:fa:c6:5a:99:c4:6e:09:92:ad:50:14:05:d4:48:24:39:
12:30:34:2f:94:2a:28:01:a9:54:e7:1d:12:f2:7a:15:21:d8:
9b:98:3c:04:b5:e2:29:5f:fe:f1:55:79:db:a0:05:f8:b6:b7:
b6:70:51:76:90:f0:e9:3c:86:c8:dc:7e:6a:7f:68:48:90:e9:
97:3c:c7:a7:10:0b:1e:c0:fe:2c:80:69:0d:4b:12:ad:32:81:
b4:e2:f9:e3:7b:3b:3e:a3:27:6d:ec:1d:e7:36:5e:b0:30:a9:
3d:8e:79:01:a8:69:4d:c9:47:81:d2:89:1c:ba:3f:13:a0:cf:
70:e8:28:e6:78:9e:82:a6:6c:44:f2:0c:91:d5:9e:0d:40:12:
7c:7f:55:78:92:83:18:80:02:e8:3c:6c:5a:9e:d1:ed:b5:cc:
22:0c:5e:d1:36:5f:fc:2c:ea:8a:77:18:b0:d9:18:e8:da:b1:
84:02:ba:75:92:e9:01:df:b5:3c:b9:65:e7:32:0a:75:65:5a:
bd:1f:93:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:57 2024 by rpki-client on console-ams.rpki-client.org