Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/72488a-035d-4931-8dfb-4c86cbe03610/1/63TVU2_3IRHsKXnU5aRe0I53fqk.roa
File: 63TVU2_3IRHsKXnU5aRe0I53fqk.roa (raw, json)
Hash identifier: 0FmbCN05q4sXq23X8ClowJFwmrjwnU3yJQIdyVtsCP4=
Subject key identifier: EB:74:D5:53:6F:F7:21:11:EC:29:79:D4:E5:A4:5E:D0:8E:77:7E:A9
Certificate issuer: /CN=674a61a8a9c97c03cdebe05f82558e51dbf90821
Certificate serial: 01856F9DF3734B9550D725C3224AF6A81761
Authority key identifier: 67:4A:61:A8:A9:C9:7C:03:CD:EB:E0:5F:82:55:8E:51:DB:F9:08:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0phqKnJfAPN6-BfglWOUdv5CCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/72488a-035d-4931-8dfb-4c86cbe03610/1/63TVU2_3IRHsKXnU5aRe0I53fqk.roa
Signing time: Sun 01 Jan 2023 23:15:00 +0000
ROA not before: Sun 01 Jan 2023 23:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43545
IP address blocks: 85.202.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f3:73:4b:95:50:d7:25:c3:22:4a:f6:a8:17:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=674a61a8a9c97c03cdebe05f82558e51dbf90821
Validity
Not Before: Jan 1 23:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb74d5536ff72111ec2979d4e5a45ed08e777ea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9d:c5:3d:5b:aa:86:6c:22:c4:dc:44:a7:6e:
48:11:c7:d0:ff:c5:07:6e:0d:9c:f9:c3:a3:83:48:
01:95:b2:89:a3:86:d2:d5:da:91:87:5c:a9:ca:ca:
38:0d:e7:af:4d:8d:55:53:70:02:7f:6f:4c:93:e8:
c6:37:b8:25:15:40:37:62:42:0d:ac:a6:60:17:fb:
56:91:a9:31:99:e3:fd:d8:44:bd:48:c7:24:59:07:
6c:1d:2a:57:d0:f2:a9:7c:92:cb:ed:4d:6a:31:f6:
21:c1:66:c9:b0:96:28:a9:9d:6b:40:78:28:37:af:
dd:89:42:be:21:35:32:a5:1e:d3:24:fa:b8:01:b1:
11:f9:b6:bf:9a:f5:1b:c1:a2:c2:0c:a2:82:6d:9e:
81:0a:38:a6:05:9e:49:f8:2c:43:2b:d7:27:a4:e5:
be:8a:4a:15:da:5d:84:8c:92:7a:83:69:3a:49:13:
5c:fd:8a:da:61:d0:ae:d0:51:b9:84:71:d5:38:34:
c5:7c:bc:fc:e6:79:35:cc:65:0a:55:8b:ab:36:ea:
f3:52:49:9d:7d:8a:ed:7e:a3:ae:f2:2c:31:c0:21:
14:32:55:4a:7e:d2:90:ff:2c:4d:d5:3d:14:0f:00:
68:3c:4d:b6:b8:77:65:c9:c3:07:18:04:2e:bf:47:
8d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:74:D5:53:6F:F7:21:11:EC:29:79:D4:E5:A4:5E:D0:8E:77:7E:A9
X509v3 Authority Key Identifier:
keyid:67:4A:61:A8:A9:C9:7C:03:CD:EB:E0:5F:82:55:8E:51:DB:F9:08:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0phqKnJfAPN6-BfglWOUdv5CCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/72488a-035d-4931-8dfb-4c86cbe03610/1/63TVU2_3IRHsKXnU5aRe0I53fqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/72488a-035d-4931-8dfb-4c86cbe03610/1/Z0phqKnJfAPN6-BfglWOUdv5CCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.196.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:c5:3c:24:3b:44:1d:9c:ad:62:08:83:5f:19:4c:e1:2d:b7:
27:fb:69:70:3e:b6:14:76:e6:30:c5:9c:6a:1b:af:e7:8e:e2:
ae:47:66:af:b2:6e:46:a8:ca:fd:8b:73:0b:e8:cd:f0:bd:ce:
e1:d1:90:e5:98:6c:d5:18:9f:93:87:51:35:0f:fb:c7:59:b4:
7c:4a:2f:77:9c:cd:24:14:ba:4d:89:c3:10:1b:94:d7:94:34:
f1:27:9c:f4:2f:fc:3f:2a:a7:24:c6:97:16:6a:b1:73:b3:84:
2a:d8:fe:65:85:f8:4e:83:7c:9a:46:17:27:fc:66:e8:75:10:
7f:0e:bf:25:94:80:b0:7b:64:fe:3d:5c:e3:34:4c:e2:aa:45:
00:b7:5d:2f:2a:6e:3a:4e:b1:12:d2:d6:ac:c1:d3:71:a6:0a:
2e:30:82:05:c4:af:ef:2f:d9:11:b1:ce:4c:b4:55:61:54:1b:
6f:94:d0:cd:e4:2e:c5:ed:d6:3e:75:58:28:d7:c5:36:ef:68:
14:73:3c:df:9f:7e:25:22:c2:6a:43:cd:29:ae:5b:c0:57:8e:
f3:ad:09:6e:61:cc:b1:e5:bf:95:97:6a:79:e5:f2:49:7e:53:
a6:fb:0a:6c:22:d9:1a:9c:38:56:de:16:ae:42:d2:5d:cb:65:
a9:59:b2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:07 2024 by rpki-client on console-ams.rpki-client.org