Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/CtpJrh0WaRJ-kcqXBWzyouxzlNQ.roa
File: CtpJrh0WaRJ-kcqXBWzyouxzlNQ.roa (raw, json)
Hash identifier: ly/DWRS7+M7KSZYZxq9vxXXLwNzyp853SGrvaNZTrr0=
Subject key identifier: 0A:DA:49:AE:1D:16:69:12:7E:91:CA:97:05:6C:F2:A2:EC:73:94:D4
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01892092FC73FE67F838E5293E477C7C1862
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/CtpJrh0WaRJ-kcqXBWzyouxzlNQ.roa
Signing time: Tue 04 Jul 2023 11:04:10 +0000
ROA not before: Tue 04 Jul 2023 11:04:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205896
IP address blocks: 185.206.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 08 Jul 2023 00:58:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:92:fc:73:fe:67:f8:38:e5:29:3e:47:7c:7c:18:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jul 4 11:04:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ada49ae1d1669127e91ca97056cf2a2ec7394d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:26:33:82:24:a9:85:8e:2f:0a:80:ce:af:00:
28:84:32:7e:af:7c:6c:2b:09:c4:cd:ce:e0:6e:f7:
ff:28:cb:61:a4:8b:ac:ce:ca:ef:0f:a9:a8:15:26:
57:13:58:0f:ea:ce:9e:ec:72:30:4e:d2:ce:31:22:
f2:95:f5:18:99:5d:96:ef:17:53:92:21:78:a6:52:
f0:2b:c3:b6:3c:34:5f:43:6c:1d:14:f9:b3:8d:4a:
bf:eb:d9:fe:93:a3:73:93:6e:6a:43:e0:f8:81:11:
f4:7b:8b:f1:b9:1b:9c:74:c1:e2:eb:8b:65:12:70:
f6:50:53:ce:9d:d9:a9:bb:91:da:4b:6d:2b:e5:cb:
db:94:81:1e:70:75:32:f6:c3:78:ad:6d:b9:8c:4a:
64:dc:17:b5:d0:dc:9b:5a:31:58:89:bb:c0:69:93:
77:0f:ae:19:2a:00:a8:2d:79:63:ec:1e:04:9d:0b:
2d:90:f9:e9:ca:d5:3b:8b:33:96:e6:88:f5:b6:17:
22:ae:6d:d2:de:7b:aa:ca:ea:fe:12:97:b9:de:24:
6b:91:77:dd:72:9a:e1:98:73:5d:5e:53:9b:5e:2c:
c3:49:f3:97:d9:e4:de:93:38:bc:30:8c:24:6f:a3:
f7:2b:fa:2c:f8:85:5d:c6:c2:c5:66:bf:6f:cc:35:
1f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DA:49:AE:1D:16:69:12:7E:91:CA:97:05:6C:F2:A2:EC:73:94:D4
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/CtpJrh0WaRJ-kcqXBWzyouxzlNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.168.0/22
Signature Algorithm: sha256WithRSAEncryption
17:20:1d:42:a8:2e:ca:5d:41:e2:de:84:67:71:9a:fb:69:9b:
b1:d1:28:08:a9:d6:d1:49:0f:3a:73:79:e0:a4:7f:4e:1b:15:
19:40:25:a2:6d:6a:34:eb:00:5d:1f:1d:e7:64:3f:01:da:9c:
63:29:64:97:1a:e2:7e:da:da:3c:a1:ea:cc:47:7c:cc:be:d0:
60:7f:4c:cb:03:10:2e:50:2d:9f:b6:0a:8b:59:a8:6f:55:a6:
bb:90:c7:dd:d5:02:2f:72:b8:81:97:73:bd:f8:31:e6:ef:2e:
3d:10:c9:a9:b5:4d:db:23:79:c5:18:4a:f3:ee:e8:9f:59:bf:
9c:32:d0:fa:4f:25:57:87:ac:9e:af:49:65:ee:94:db:8b:6c:
b5:9b:66:6b:68:c2:d2:df:45:a5:cf:80:da:ea:62:dc:ce:28:
e9:09:a6:38:48:eb:5b:2e:1d:32:7a:67:54:10:c1:e9:b1:05:
12:a7:bc:17:8d:51:12:48:3a:b4:a5:6f:28:8f:73:9a:6f:19:
d8:70:36:8c:3d:b6:d1:41:62:d0:0e:d6:63:74:df:e1:ec:24:
66:61:b1:83:65:34:56:87:54:bd:39:22:50:01:d9:f0:08:fd:
84:01:a4:b3:b9:59:c3:16:d0:4d:70:ad:69:ab:a1:be:8a:a2:
c6:15:67:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:29 2024 by rpki-client on console-ams.rpki-client.org