Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/BtKjuxobdn5jpQ0m3zZY-9g5uvY.roa
File: BtKjuxobdn5jpQ0m3zZY-9g5uvY.roa (raw, json)
Hash identifier: JvmSF05nr5Xaui2BYKTeg235VGBGIsUGbFLOdqI0YXc=
Subject key identifier: 06:D2:A3:BB:1A:1B:76:7E:63:A5:0D:26:DF:36:58:FB:D8:39:BA:F6
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0187F387A33560A86F8029269132C843CB56
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/BtKjuxobdn5jpQ0m3zZY-9g5uvY.roa
Signing time: Sun 07 May 2023 00:06:05 +0000
ROA not before: Sun 07 May 2023 00:06:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43072
IP address blocks: 185.20.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 05:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f3:87:a3:35:60:a8:6f:80:29:26:91:32:c8:43:cb:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: May 7 00:06:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06d2a3bb1a1b767e63a50d26df3658fbd839baf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b4:ca:67:9d:ee:b3:e9:60:dc:9c:7d:c2:ec:
a1:43:e7:76:ba:21:f4:78:4b:4f:25:3b:cf:27:be:
75:cd:02:39:77:5a:9c:e4:eb:4d:9f:bc:a2:6f:bd:
6f:73:c2:13:c7:f1:15:85:90:4c:cc:b4:5a:75:43:
6b:d4:6d:b1:e2:34:97:0c:59:d1:ed:b5:b9:bf:6d:
7c:9b:e6:93:4d:dd:88:55:ff:57:08:02:97:5f:47:
12:2d:fb:16:21:5f:e4:8a:c8:05:fb:de:79:e4:cc:
a4:d8:23:44:87:ea:38:6e:d8:79:20:31:50:00:96:
6e:4d:d5:f5:38:09:41:a3:a9:bb:d4:75:c4:7e:80:
fe:f9:d5:9f:d6:d3:46:dc:d2:13:7f:ee:55:2f:dd:
4a:7a:33:87:65:9c:c4:bb:91:5a:b6:42:c8:2f:97:
fd:54:2b:eb:76:95:64:ca:bd:03:c6:77:e2:00:fc:
1d:63:aa:d8:c9:a1:e3:82:48:08:88:d7:c0:3d:5a:
97:14:79:53:7e:5d:f2:4d:91:7b:6d:b7:7d:03:be:
e3:7e:41:2d:28:39:5f:97:09:10:7c:d1:ba:d6:dd:
a0:a5:d9:4e:d0:03:71:84:9a:b1:71:2b:b5:cb:59:
18:de:21:b7:7f:91:3b:ea:80:e8:15:46:26:d7:0f:
b7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D2:A3:BB:1A:1B:76:7E:63:A5:0D:26:DF:36:58:FB:D8:39:BA:F6
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/BtKjuxobdn5jpQ0m3zZY-9g5uvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.255.0/24
Signature Algorithm: sha256WithRSAEncryption
54:5d:d6:10:5e:be:64:d2:c1:da:91:ea:b0:8f:92:67:91:26:
68:0c:db:78:4d:88:df:7a:c3:91:03:d0:8a:7c:a4:4d:6c:a7:
ba:a9:e6:7b:1c:eb:18:14:37:f3:06:be:f5:a9:bd:a6:fd:dc:
b1:bc:fb:32:dc:9f:82:7e:91:f5:50:e4:1c:9f:fd:a6:dd:ca:
66:29:9f:67:82:27:a5:e6:16:1e:f0:b2:f5:6d:91:bb:cb:3b:
f8:5b:2a:a4:03:18:6c:2b:c2:03:f0:a8:d0:2e:fa:7d:5a:77:
56:e5:63:e3:95:54:0c:31:78:4b:06:ca:e4:96:71:5b:e8:d0:
95:2b:3d:15:22:f6:42:b5:91:e0:1b:f5:04:77:e6:19:9f:e3:
13:8c:a8:83:39:75:e6:d8:9b:1a:52:b4:62:5c:18:b3:f6:7d:
81:b5:a8:54:c3:44:c1:70:d0:b8:44:11:b7:9a:08:64:8e:72:
26:ae:a1:48:e3:a2:f4:64:8b:97:f9:7f:47:4f:6a:40:a8:ee:
62:b2:88:4c:a9:51:2e:4a:00:e3:c3:95:ea:74:a8:e3:5b:b3:
65:71:0f:c9:15:1e:c5:62:72:b3:de:25:b3:b4:e4:92:d4:d3:
08:7e:1b:0b:92:46:c0:6b:ca:f1:40:4e:2f:58:26:65:14:3a:
2d:1d:fa:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:47 2024 by rpki-client on console-fra.rpki-client.org