Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/o6DaoUCYRUnWPlsanfT0AGaJdto.roa
File: o6DaoUCYRUnWPlsanfT0AGaJdto.roa (raw, json)
Hash identifier: nJlhdyQx9COzasmspEcWG/CksIwhYBRJgaOw79vj9G8=
Subject key identifier: A3:A0:DA:A1:40:98:45:49:D6:3E:5B:1A:9D:F4:F4:00:66:89:76:DA
Certificate issuer: /CN=0d819c9d2e52d84adea2de4c2de64b7789858eb2
Certificate serial: 018B949A0AB6B7EF59B8B366B46E413ACCD1
Authority key identifier: 0D:81:9C:9D:2E:52:D8:4A:DE:A2:DE:4C:2D:E6:4B:77:89:85:8E:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYGcnS5S2Ereot5MLeZLd4mFjrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/o6DaoUCYRUnWPlsanfT0AGaJdto.roa
Signing time: Fri 03 Nov 2023 09:53:25 +0000
ROA not before: Fri 03 Nov 2023 09:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 185.207.100.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:9a:0a:b6:b7:ef:59:b8:b3:66:b4:6e:41:3a:cc:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d819c9d2e52d84adea2de4c2de64b7789858eb2
Validity
Not Before: Nov 3 09:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3a0daa140984549d63e5b1a9df4f400668976da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:81:44:2a:16:4f:e5:a1:a7:be:6b:70:40:66:
35:17:4f:e0:3e:64:d0:a4:43:50:fe:20:da:67:09:
40:5a:76:3d:1d:a7:7a:88:f1:83:3c:26:aa:16:c5:
6a:f4:11:c8:de:00:7d:ee:82:4c:49:2e:43:33:ac:
44:c3:88:51:38:75:47:b9:db:55:3e:1c:ea:46:d6:
61:cf:3c:8f:d4:95:17:d3:b2:12:83:fe:fd:d9:12:
f4:8d:0f:eb:66:61:4d:b3:27:ef:9d:e5:a5:c6:0b:
db:6d:c5:86:8f:51:c4:13:b0:9e:f8:af:5f:2c:f3:
d7:8a:85:cb:18:e6:66:f2:2f:2b:aa:18:65:ca:d0:
f4:18:33:cf:b4:0f:d5:72:ed:53:d3:b1:b9:6c:18:
c1:c8:71:c8:e9:bb:7c:da:b6:d8:ed:5d:ff:df:39:
fa:d0:f6:e8:f6:b9:47:84:38:05:cd:33:50:9c:8e:
d9:19:d3:8f:ee:bf:90:a7:05:1f:43:65:97:0a:d1:
6a:90:c2:90:43:2f:83:8b:6c:52:bd:4b:14:7a:73:
66:51:c6:9b:3f:94:ef:8e:c3:74:ee:08:35:8d:ab:
36:d8:20:c6:d7:fa:c0:43:45:02:1f:22:fa:d0:2e:
ad:1f:8d:04:5c:63:eb:e8:9a:62:93:a4:c7:b0:c4:
ba:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A0:DA:A1:40:98:45:49:D6:3E:5B:1A:9D:F4:F4:00:66:89:76:DA
X509v3 Authority Key Identifier:
keyid:0D:81:9C:9D:2E:52:D8:4A:DE:A2:DE:4C:2D:E6:4B:77:89:85:8E:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYGcnS5S2Ereot5MLeZLd4mFjrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/o6DaoUCYRUnWPlsanfT0AGaJdto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/DYGcnS5S2Ereot5MLeZLd4mFjrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.100.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:30:2c:b6:a5:e2:25:dc:12:39:7a:4b:a7:e8:9f:7f:b3:e8:
af:73:9d:19:6d:07:8f:cc:3b:08:6d:09:b2:33:5d:ea:9e:c4:
70:f7:13:56:32:70:61:0c:e3:8f:c9:70:97:78:c8:f0:05:ed:
9d:9a:f6:25:2d:e1:57:d2:e5:3d:64:8c:0a:cd:f4:d6:36:d6:
8b:4e:69:c2:7a:75:fa:60:73:93:55:03:78:b0:d6:6d:6f:6b:
97:bd:68:fd:18:1a:65:6a:9f:0f:f5:81:94:84:11:33:ca:b5:
39:6b:d5:47:df:d9:b7:86:3e:36:fd:a5:32:32:af:cb:fd:8f:
70:40:7c:86:14:7a:ad:0c:bf:92:b6:20:a6:65:7f:e2:6d:51:
cb:62:37:1d:a0:d1:23:7a:6b:32:f4:5b:c9:52:f7:98:e6:44:
6a:d9:8f:a0:44:6c:40:bd:27:87:cb:09:13:e9:be:7e:ac:16:
ff:8e:30:89:14:e9:db:ce:d6:11:f8:41:e1:d1:e6:e1:81:f5:
53:f5:dc:de:98:ae:7d:71:12:40:3a:bf:68:f8:0f:8f:07:d7:
24:1f:f0:f5:ab:e5:c8:ef:0d:91:ed:ef:99:5f:63:0a:6d:a2:
3a:f5:d0:61:c6:5f:c3:ce:29:66:b7:c9:4e:54:56:db:fc:a6:
12:83:65:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:45 2024 by rpki-client on console-ams.rpki-client.org