Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/w4NtGsbLysh_Y-cUdZ3-bWxVPpI.roa
File: w4NtGsbLysh_Y-cUdZ3-bWxVPpI.roa (raw, json)
Hash identifier: 0mvA6pm2MsFytdCj9oJPlA9NyQ/s9D7ZWaL8uMsKbyg=
Subject key identifier: C3:83:6D:1A:C6:CB:CA:C8:7F:63:E7:14:75:9D:FE:6D:6C:55:3E:92
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 01856D81D730CE634317A8262B6BF6E180E8
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/w4NtGsbLysh_Y-cUdZ3-bWxVPpI.roa
Signing time: Sun 01 Jan 2023 13:25:03 +0000
ROA not before: Sun 01 Jan 2023 13:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20517
IP address blocks: 185.20.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:d7:30:ce:63:43:17:a8:26:2b:6b:f6:e1:80:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Jan 1 13:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3836d1ac6cbcac87f63e714759dfe6d6c553e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6f:34:7e:8e:93:f1:2f:8d:e3:e2:5a:04:a4:
aa:55:64:d2:8c:67:74:15:b0:fd:a7:7d:47:86:10:
26:57:3b:b4:4e:b4:6b:45:59:f0:a7:b7:3f:8b:86:
0a:60:91:92:06:81:d0:55:4e:66:66:93:8c:38:b5:
78:fa:e1:47:e3:68:15:76:55:28:ee:f4:82:62:4d:
89:4f:7e:4f:82:4d:57:3e:b4:da:5c:84:c8:3b:5e:
8a:c8:7e:6a:69:ba:85:c7:dd:50:21:aa:cd:41:da:
5f:0f:78:cb:5f:9a:ad:3d:ed:e3:3a:5d:c5:9d:d9:
b8:23:dc:db:58:50:ac:11:d3:b8:16:a5:3f:ce:5a:
a6:cc:12:29:c0:04:10:ca:47:be:0a:ac:df:c1:7b:
f6:b5:ea:b9:5c:4b:a1:21:a0:d7:3b:f9:94:7f:c8:
68:f4:88:ef:54:0d:7a:75:62:4b:88:f3:e5:b4:4c:
63:7c:1b:bd:40:09:f3:75:79:dc:90:19:0d:80:db:
3a:01:55:e8:11:0b:ff:b4:21:9e:57:39:9a:76:34:
ea:05:8a:f7:be:5c:a7:a1:97:32:88:c7:4f:02:b2:
42:18:fa:30:0a:ed:ac:73:60:07:8e:c2:d1:4c:e9:
f1:da:4b:e6:fe:2d:aa:48:68:61:9f:0a:ae:6b:f0:
b4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:83:6D:1A:C6:CB:CA:C8:7F:63:E7:14:75:9D:FE:6D:6C:55:3E:92
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/w4NtGsbLysh_Y-cUdZ3-bWxVPpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.254.0/24
Signature Algorithm: sha256WithRSAEncryption
19:42:7b:a7:ca:26:2d:b7:0b:64:ef:ca:b3:50:24:11:38:98:
4c:e0:95:2d:ef:e0:04:87:d4:06:99:e3:b7:ac:ec:86:04:c0:
d5:c0:f3:c9:3f:45:5c:68:a4:87:05:67:7f:34:4f:4b:1d:a1:
4a:4e:a8:b7:03:51:aa:2b:5d:4d:f3:4d:20:b6:34:2d:2e:b6:
bc:08:0d:45:77:19:48:6f:f4:ce:49:8f:a5:5e:0a:68:36:be:
98:62:ef:cd:54:ef:a0:dc:b1:02:09:9e:c0:c7:bf:eb:9b:14:
3b:a5:05:b0:d1:4f:b6:e0:06:2a:21:43:30:80:5b:fe:b1:b8:
d5:36:1f:62:cc:75:4c:ad:53:24:b8:e1:b2:95:65:09:ec:df:
cb:2d:7b:6d:9b:7c:7a:c3:b9:a5:cd:3a:14:fd:ed:59:d5:89:
d9:27:fb:b7:c1:77:f3:a2:b9:5f:92:2a:14:16:5d:a6:49:0d:
70:70:d9:6b:52:37:38:fc:2f:d7:9b:bb:30:38:d0:75:fc:d2:
29:69:cd:b9:bf:0b:47:e0:3d:7a:9b:b4:35:05:18:da:f3:9c:
c2:dd:1e:60:86:d0:b8:54:02:a7:0f:82:0f:cd:ac:b8:3c:e4:
eb:0c:3a:08:ea:e1:5e:05:06:1f:aa:38:28:db:f8:e1:e3:41:
75:0e:47:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:01 2024 by rpki-client on console-ams.rpki-client.org