Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4cba2f-4a5b-4435-8aec-923cb50abe2e/1/ciogTXw9dntdJHK6WHJ0W6zr88w.roa
File: ciogTXw9dntdJHK6WHJ0W6zr88w.roa (raw, json)
Hash identifier: 0BETw8Ie0QrPpTbNE0mUcJ4pFyNlvJC+ytjATavqk38=
Subject key identifier: 72:2A:20:4D:7C:3D:76:7B:5D:24:72:BA:58:72:74:5B:AC:EB:F3:CC
Certificate issuer: /CN=3069ba7ebc3b672dd09ec0344e1f80aa1131efd0
Certificate serial: 01856EA6CA4AC8466B5A8B4D0B3F3B99B32C
Authority key identifier: 30:69:BA:7E:BC:3B:67:2D:D0:9E:C0:34:4E:1F:80:AA:11:31:EF:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGm6frw7Zy3QnsA0Th-AqhEx79A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4cba2f-4a5b-4435-8aec-923cb50abe2e/1/ciogTXw9dntdJHK6WHJ0W6zr88w.roa
Signing time: Sun 01 Jan 2023 18:45:02 +0000
ROA not before: Sun 01 Jan 2023 18:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201241
IP address blocks: 185.237.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ca:4a:c8:46:6b:5a:8b:4d:0b:3f:3b:99:b3:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3069ba7ebc3b672dd09ec0344e1f80aa1131efd0
Validity
Not Before: Jan 1 18:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722a204d7c3d767b5d2472ba5872745bacebf3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:87:eb:3a:1d:9a:b6:ee:13:4a:d7:94:b1:48:
bb:35:62:0e:bd:20:69:46:1f:b2:63:3d:3b:15:03:
09:99:a4:ef:c2:15:4e:05:7d:29:31:45:65:cf:1b:
cc:b6:2f:c1:89:1c:82:83:ce:2d:75:86:6c:cc:ff:
8b:49:76:d1:e2:28:e0:67:b7:af:57:c9:8c:e0:c5:
6a:3b:67:40:9a:e3:ed:38:93:dc:12:94:0d:5d:2f:
67:90:01:76:04:c3:99:7a:0c:de:24:1f:76:b1:4a:
ca:82:9f:ed:3d:1a:31:f6:51:0e:b0:ae:80:11:68:
ab:24:54:80:c9:25:8f:6b:af:b2:d0:0d:00:b1:dc:
f8:ba:4f:db:38:55:3e:97:77:bd:ce:08:19:c8:66:
83:c2:54:42:d3:40:95:37:95:38:32:a9:64:51:af:
77:c4:72:00:a0:fa:77:54:03:f6:47:0a:49:0f:bb:
01:cb:40:e5:5b:e9:3e:75:39:a7:68:82:30:15:8e:
61:ea:5b:a5:e0:15:7f:1a:73:3e:13:0d:3f:26:10:
93:8f:6f:30:1e:7d:99:ec:e8:24:76:c8:af:b7:6d:
7e:d6:54:a6:79:f4:f6:9f:54:58:5a:91:a7:e6:22:
4b:a6:c5:94:88:b3:22:b3:21:f8:fd:5c:87:cb:85:
c1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2A:20:4D:7C:3D:76:7B:5D:24:72:BA:58:72:74:5B:AC:EB:F3:CC
X509v3 Authority Key Identifier:
keyid:30:69:BA:7E:BC:3B:67:2D:D0:9E:C0:34:4E:1F:80:AA:11:31:EF:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGm6frw7Zy3QnsA0Th-AqhEx79A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4cba2f-4a5b-4435-8aec-923cb50abe2e/1/ciogTXw9dntdJHK6WHJ0W6zr88w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4cba2f-4a5b-4435-8aec-923cb50abe2e/1/MGm6frw7Zy3QnsA0Th-AqhEx79A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.228.0/22
Signature Algorithm: sha256WithRSAEncryption
54:19:db:5c:83:5d:b4:d4:b8:04:79:49:0b:2a:0a:d9:80:f7:
58:ed:61:25:60:8b:1e:78:95:f6:48:64:5c:9f:77:e0:25:b1:
70:ee:7b:8e:87:d3:bb:fe:75:c6:90:7a:cd:fe:ef:5e:03:58:
2f:a2:9e:be:9e:16:0c:69:70:61:3a:2b:9a:e9:fb:d8:1f:94:
6d:9e:54:f3:e5:c2:44:78:6a:9b:d8:ca:10:2c:21:14:78:74:
00:3a:cd:05:5c:4f:0f:19:4f:d6:d2:a1:47:d7:17:31:bb:48:
92:a6:32:d1:cd:b6:77:f3:51:38:42:57:75:fc:5c:84:4b:00:
3f:36:ec:ab:d2:ae:d1:be:46:f4:6e:9b:da:cc:af:40:b3:0b:
35:0b:2c:8f:43:43:f3:85:88:b9:e6:15:b0:0a:0e:c4:a8:0f:
db:20:31:67:b3:68:36:a2:9a:16:74:28:ba:c4:2f:a8:c7:1f:
14:f4:ed:71:fa:56:ad:bc:e2:ba:0d:06:ba:c5:0c:df:11:83:
07:7f:d6:86:6d:ef:b4:2d:4e:20:36:50:43:58:52:dd:02:12:
4f:4a:2f:a9:a5:b5:c1:ec:e8:21:c8:e1:e7:c0:b6:86:34:5e:
0a:81:ea:bf:39:ef:3c:d0:61:57:47:c6:a7:2f:89:1b:8e:8e:
09:db:e2:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:17 2024 by rpki-client on console-ams.rpki-client.org