Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/0zwVRxyV8mZtOLcRsQpadkWQnDA.roa
File: 0zwVRxyV8mZtOLcRsQpadkWQnDA.roa (raw, json)
Hash identifier: hP3ChqMdzARCl9aOvRzxDPKvwNjjlFJFYTUHClNGSKc=
Subject key identifier: D3:3C:15:47:1C:95:F2:66:6D:38:B7:11:B1:0A:5A:76:45:90:9C:30
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 018C1565C9C39970B9383B2EAB6078BCEDEC
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/0zwVRxyV8mZtOLcRsQpadkWQnDA.roa
Signing time: Tue 28 Nov 2023 10:07:21 +0000
ROA not before: Tue 28 Nov 2023 10:07:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.192.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:65:c9:c3:99:70:b9:38:3b:2e:ab:60:78:bc:ed:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Nov 28 10:07:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d33c15471c95f2666d38b711b10a5a7645909c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5f:3d:0b:67:16:df:3b:0c:9b:78:c9:50:d1:
32:6d:b8:fd:4e:b5:df:5b:51:87:80:b4:aa:76:cb:
50:6d:89:bb:f3:32:42:45:28:cc:cd:d0:7e:2c:a8:
c2:82:07:fa:70:25:d4:b8:27:28:a5:52:cc:c3:2d:
8f:fd:f7:31:66:db:e7:b5:78:ce:39:97:8e:5f:bd:
bc:36:99:f3:50:a1:d1:be:99:42:4b:3e:da:06:8e:
67:49:22:5b:e0:db:a2:cb:37:a2:8e:98:5d:8c:14:
1d:05:ad:78:d2:f0:fd:fa:90:28:e1:cb:7e:fb:d6:
13:0a:0a:e0:a5:d6:39:97:62:e9:0d:36:7e:55:49:
7f:1d:90:a3:b6:ad:e6:c7:ee:ab:c6:8d:59:b8:cc:
f2:69:e6:68:20:a3:a6:00:fa:20:e0:16:23:ee:49:
a2:a0:35:a1:1f:48:36:e2:c5:d9:e1:a0:d2:e3:3e:
c8:ce:ef:2b:a9:58:68:4c:47:8c:f9:2f:5b:79:81:
e4:ae:ab:86:a2:68:89:76:13:2a:99:e7:d6:10:2c:
eb:ce:6f:f4:a5:f9:9b:cc:a6:e8:9f:55:cc:a3:75:
90:26:8b:0f:8f:07:e4:53:b1:7e:87:a6:a8:c2:81:
4a:18:77:72:4a:17:26:92:95:c6:99:31:21:9b:b7:
af:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3C:15:47:1C:95:F2:66:6D:38:B7:11:B1:0A:5A:76:45:90:9C:30
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/0zwVRxyV8mZtOLcRsQpadkWQnDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.20.0/24
Signature Algorithm: sha256WithRSAEncryption
17:21:45:de:8d:10:d9:df:b4:7f:62:2b:f9:fa:8d:0d:a0:23:
9f:74:12:34:33:88:e9:ab:04:09:57:09:5e:a0:ba:e3:6f:09:
ab:02:e7:95:97:c7:af:c2:04:12:a7:81:ea:15:3c:3c:22:15:
02:0b:ea:67:b3:09:28:a2:fc:9b:9a:d0:d9:80:9f:2e:ef:d9:
62:ef:1c:03:1a:f8:fe:84:44:1d:3a:70:b5:93:1b:05:76:77:
5b:a9:50:ff:cd:93:23:2f:3b:02:16:fa:e3:e1:65:5f:03:32:
28:07:b1:2f:9f:75:fd:71:6e:64:ac:b6:cc:bb:52:8b:76:f6:
62:8d:97:82:85:6d:7e:a4:58:16:04:37:e8:d8:59:57:ac:4f:
a9:63:1b:e7:ad:fa:1e:96:5c:e6:42:fb:02:bd:e6:6f:57:56:
28:3a:af:87:b3:f6:ea:be:35:e3:53:36:19:0b:b0:77:cd:a2:
19:f3:0c:d1:f6:2f:85:4c:ea:9b:1c:33:a5:b3:90:41:f7:ef:
1a:8a:2f:36:9f:08:e4:07:00:13:d4:ef:88:1b:92:c9:13:4d:
97:38:2b:7d:70:c1:d3:f6:e2:6d:66:ae:51:d2:2b:f0:2e:13:
0d:21:7a:cc:4a:ac:8a:31:88:5d:51:f4:ff:07:6d:27:6f:8d:
ef:9e:2d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:11 2024 by rpki-client on console-ams.rpki-client.org