Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/715ef2-06e9-455d-8b71-7718512f0def/1/3sQxd-6nDqoLcDhM1x7RLNMj_4g.roa
File: 3sQxd-6nDqoLcDhM1x7RLNMj_4g.roa (raw, json)
Hash identifier: fUkbRQ8EBUt9lYva6EJ3FrufNTSaN5i0mFDfDspqHJ4=
Subject key identifier: DE:C4:31:77:EE:A7:0E:AA:0B:70:38:4C:D7:1E:D1:2C:D3:23:FF:88
Certificate issuer: /CN=2719d410107675eed8b62ccad435336f819e0a6d
Certificate serial: 01888C0C6D7F88E5777BCC7B1840AF9C8A62
Authority key identifier: 27:19:D4:10:10:76:75:EE:D8:B6:2C:CA:D4:35:33:6F:81:9E:0A:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxnUEBB2de7YtizK1DUzb4GeCm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/715ef2-06e9-455d-8b71-7718512f0def/1/3sQxd-6nDqoLcDhM1x7RLNMj_4g.roa
Signing time: Mon 05 Jun 2023 14:53:24 +0000
ROA not before: Mon 05 Jun 2023 14:53:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.214.212.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:0c:6d:7f:88:e5:77:7b:cc:7b:18:40:af:9c:8a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719d410107675eed8b62ccad435336f819e0a6d
Validity
Not Before: Jun 5 14:53:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dec43177eea70eaa0b70384cd71ed12cd323ff88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d3:aa:11:3a:e2:f3:e5:d0:98:99:60:4a:ce:
7e:83:20:0d:ad:1b:9a:46:50:6d:f9:74:a8:dc:01:
9c:07:3f:6a:b7:cc:1f:15:42:c3:a8:b0:e1:e8:f3:
d5:9c:77:08:f6:c4:c9:e0:08:29:1e:0c:44:39:dd:
cf:2a:9e:fd:d2:3c:5a:17:0e:b5:34:51:8d:be:c8:
e6:9e:5e:e2:04:7e:52:63:8d:79:0d:a7:35:c7:d2:
66:dd:3b:9d:32:a3:42:7b:55:7a:c9:97:3d:58:c1:
48:3a:fe:8a:9c:58:a8:73:f3:91:ec:c9:76:dd:0f:
bb:c5:49:a4:61:a2:b6:fb:51:91:51:06:19:af:cc:
1e:b4:5e:c3:a6:79:2d:87:12:3a:ea:77:7b:71:95:
90:75:85:c0:85:d8:0b:8f:94:c2:5a:38:ec:81:86:
fb:1a:9e:62:bb:c5:fe:8e:d4:66:0e:05:86:d8:72:
2c:62:54:c7:00:6a:57:0c:6b:35:59:90:51:7e:23:
02:26:09:22:f4:ff:18:fe:c7:71:8e:fc:b6:4f:ff:
f6:b2:2a:45:94:73:f4:0e:85:33:c2:92:d7:09:19:
12:72:0b:2d:45:3f:15:73:81:9d:06:93:1e:56:29:
49:2b:3c:bc:f2:50:d2:4c:1c:4a:58:31:a0:18:97:
c9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C4:31:77:EE:A7:0E:AA:0B:70:38:4C:D7:1E:D1:2C:D3:23:FF:88
X509v3 Authority Key Identifier:
keyid:27:19:D4:10:10:76:75:EE:D8:B6:2C:CA:D4:35:33:6F:81:9E:0A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxnUEBB2de7YtizK1DUzb4GeCm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/715ef2-06e9-455d-8b71-7718512f0def/1/3sQxd-6nDqoLcDhM1x7RLNMj_4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/715ef2-06e9-455d-8b71-7718512f0def/1/JxnUEBB2de7YtizK1DUzb4GeCm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.212.0/23
Signature Algorithm: sha256WithRSAEncryption
35:55:eb:a9:04:58:22:c6:0f:04:1f:80:e9:21:bb:b0:08:97:
7e:51:54:b2:d3:c4:91:0f:13:5a:9e:4f:1a:35:05:60:04:04:
57:d0:cc:c5:ff:6e:40:13:6d:fb:7c:53:3a:6d:59:1f:9a:84:
b1:f4:fb:5c:c5:b4:cc:36:9c:2f:01:25:d2:60:c7:55:05:45:
5a:68:57:a5:1a:1c:86:5d:1d:f7:1f:32:44:b8:49:02:2e:90:
e3:3d:6a:68:2d:37:66:5d:89:5b:21:0f:e8:b3:e0:87:25:7d:
11:63:c9:3b:be:0c:74:8b:dd:0b:6d:a5:4f:89:98:54:19:b5:
0c:d5:2d:4b:f5:fc:75:37:a2:76:cf:6e:90:c2:e2:d9:ae:82:
16:ec:8f:a8:17:26:7d:24:4e:ac:e8:6d:c0:c1:cd:69:9f:d5:
4b:6e:dd:28:20:b5:f5:10:7e:61:47:98:8b:6f:95:97:2d:a9:
79:40:a4:d4:83:0e:c0:92:d7:d7:98:d9:91:a0:75:3e:1d:ef:
dc:ea:b9:78:3c:e7:ee:c0:d7:2e:76:aa:f9:8b:95:1f:f3:42:
0f:01:01:84:7d:2f:54:b5:dd:c1:60:f8:d5:72:34:24:5f:67:
07:3b:59:38:6b:0d:d2:02:82:85:f5:42:d6:47:78:78:51:07:
51:7c:8c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org