Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/a3uhYn8C-N7aka9L0FiX4oFx0UU.roa
File: a3uhYn8C-N7aka9L0FiX4oFx0UU.roa (raw, json)
Hash identifier: sKollNXTAA0aAQv98Uwz+TOB4SHyYc1JHLM4TmD1xoo=
Subject key identifier: 6B:7B:A1:62:7F:02:F8:DE:DA:91:AF:4B:D0:58:97:E2:81:71:D1:45
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 01856D7874AAC4D1C7A030770CD559829954
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/a3uhYn8C-N7aka9L0FiX4oFx0UU.roa
Signing time: Sun 01 Jan 2023 13:14:48 +0000
ROA not before: Sun 01 Jan 2023 13:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201084
IP address blocks: 185.43.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:74:aa:c4:d1:c7:a0:30:77:0c:d5:59:82:99:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 13:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b7ba1627f02f8deda91af4bd05897e28171d145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d4:86:fd:f5:47:61:29:41:fa:92:96:b9:a4:
62:2c:f5:29:b7:39:62:21:56:9d:5d:58:90:ef:7f:
7e:a4:c3:0a:ce:a7:ce:aa:b9:7e:a3:40:2a:4b:b9:
21:f0:60:52:2b:27:47:95:c1:56:c2:87:06:12:56:
88:9e:1b:91:8c:fe:27:64:95:bf:70:de:f8:60:ee:
47:1d:a8:6e:02:73:f5:16:9e:45:a8:61:94:1c:25:
a5:55:3c:83:8e:c0:0f:d8:88:f5:7e:6f:79:6f:51:
03:83:08:72:63:7b:af:9f:42:73:26:be:00:eb:c3:
15:b3:c9:10:b2:bf:46:85:fd:b6:9c:2e:9b:82:2b:
46:47:c3:75:d8:01:a4:a6:0c:aa:b5:57:70:64:4f:
33:9f:ad:fc:32:20:cf:45:a0:e4:bd:8f:d6:1c:a7:
1e:02:fa:63:2b:43:83:83:80:9e:ce:01:29:e0:c2:
55:1d:da:ef:8e:a0:19:5b:d3:9a:c7:35:86:74:98:
de:94:99:5d:e1:ea:11:d1:0a:a0:7d:24:02:6b:0e:
ae:fa:22:87:75:da:91:ed:11:d7:06:5f:bf:11:7e:
61:7c:12:0d:cf:0d:d8:ee:ef:dc:bc:38:d0:d8:37:
ec:0b:98:65:e4:68:a5:18:88:77:0d:97:ac:7e:20:
b7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:7B:A1:62:7F:02:F8:DE:DA:91:AF:4B:D0:58:97:E2:81:71:D1:45
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/a3uhYn8C-N7aka9L0FiX4oFx0UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.68.0/24
Signature Algorithm: sha256WithRSAEncryption
96:2e:08:dd:29:12:cb:37:12:eb:34:2e:54:40:0c:b7:23:85:
02:3a:c2:56:22:f3:48:ee:36:f4:0a:e8:26:c3:b2:28:e6:13:
0a:bd:7e:77:bc:c1:28:52:28:c0:7a:de:98:b5:73:20:b3:34:
e4:25:87:d1:3b:e2:94:e5:02:c6:6e:da:9d:8d:9c:8e:91:5e:
31:57:dc:58:ff:5e:79:f4:e3:b4:3a:a0:8e:b3:e7:d7:04:c8:
85:3c:f4:3a:34:c3:fe:2e:b4:3d:ee:b6:db:84:32:e8:3f:32:
30:89:87:de:a3:0e:f5:5b:4f:d3:72:65:a8:fe:36:6e:7d:aa:
db:26:05:ef:84:28:b2:f3:90:46:dd:de:4d:c4:e2:8c:69:56:
34:5e:ff:24:61:d8:71:40:42:73:0f:67:cc:5e:ba:af:15:74:
4c:45:e7:4a:56:2c:10:c7:7b:e7:cf:71:9a:7c:8c:0a:b0:5a:
0d:c8:fd:b0:a1:ee:b4:fc:09:c2:bc:92:6f:36:e3:9f:5f:34:
1c:c7:cb:e4:52:34:c2:78:9d:fb:85:50:8e:5f:5a:8b:48:0f:
7f:0c:a8:71:a4:42:b6:73:29:1c:03:25:7d:c8:f8:da:e5:99:
fe:d4:2d:da:3c:a7:e9:48:b2:da:aa:4e:a4:a9:e4:f6:aa:c6:
37:aa:e2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:23 2024 by rpki-client on console-ams.rpki-client.org