Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/kIAQa_pKPxHyMMd1o3PY8Je4sGc.roa
File: kIAQa_pKPxHyMMd1o3PY8Je4sGc.roa (raw, json)
Hash identifier: f4Ff1kz9+CDiaDWTRQLc/oa7mCLezBfPqrC5zccEAV0=
Subject key identifier: 90:80:10:6B:FA:4A:3F:11:F2:30:C7:75:A3:73:D8:F0:97:B8:B0:67
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 01856CE5EF2F77517D1392E766590A91860E
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/kIAQa_pKPxHyMMd1o3PY8Je4sGc.roa
Signing time: Sun 01 Jan 2023 10:34:46 +0000
ROA not before: Sun 01 Jan 2023 10:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 185.34.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:ef:2f:77:51:7d:13:92:e7:66:59:0a:91:86:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Jan 1 10:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9080106bfa4a3f11f230c775a373d8f097b8b067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:a3:73:5f:7e:05:a1:36:b4:91:b6:3b:9f:
5b:38:3d:c7:f5:15:17:fb:ad:7b:89:f3:34:1f:c7:
26:c0:39:36:4c:e1:32:69:1b:b7:cc:0d:4d:88:4f:
bf:56:24:14:85:22:2f:7a:d7:d2:7f:46:de:ba:37:
19:61:99:3b:a5:8e:0b:f0:66:be:dd:28:e3:ed:39:
17:61:9c:20:77:5c:70:59:0d:75:92:4f:73:4c:9c:
08:ad:4a:78:dc:27:67:4c:fd:a7:70:4b:a7:b4:d7:
7e:be:a7:9e:91:ea:b5:aa:40:bb:ba:92:46:44:eb:
e1:6e:00:43:da:9f:34:e9:95:01:9c:2e:51:e3:21:
f1:35:51:14:82:a5:3a:b9:86:c3:e9:c9:51:40:1d:
83:1d:3c:dd:7b:18:7e:70:fa:26:5b:c7:b5:01:46:
ef:be:a5:78:35:00:ee:38:9a:ac:fb:2d:fc:63:b4:
17:e1:d9:56:24:ea:75:06:1e:c9:da:de:fa:3e:2e:
6b:a3:7b:de:85:54:ca:54:0c:00:f2:e3:c9:9c:04:
07:5a:37:95:2b:f1:af:45:45:3e:be:72:70:6f:b9:
64:78:49:dc:5e:90:8e:ce:f6:27:e2:e2:ae:8e:5d:
7f:2d:61:9f:e2:c8:10:1b:a8:01:1c:8e:54:f7:2b:
d8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:80:10:6B:FA:4A:3F:11:F2:30:C7:75:A3:73:D8:F0:97:B8:B0:67
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/kIAQa_pKPxHyMMd1o3PY8Je4sGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:64:75:5e:12:94:67:d5:79:04:ee:36:b5:4b:12:5d:4b:e5:
2c:ae:b4:a5:43:28:55:eb:9f:0b:72:2d:28:aa:a3:16:dd:da:
92:01:45:2e:62:46:31:c9:76:2c:53:a4:73:51:1a:22:ce:32:
70:1c:32:8b:4d:be:bb:b8:09:f4:3b:e3:a7:8d:99:d6:f5:c2:
2d:8e:e0:5f:c0:1b:40:70:46:ee:2e:85:da:98:c5:e4:21:cf:
e4:33:09:73:27:66:a9:54:19:d5:54:7e:cf:3b:31:9b:3d:55:
6a:05:4a:42:0e:8a:2a:2c:3a:63:54:82:a1:5c:cc:68:8f:0f:
36:4c:51:46:f2:cf:3f:fc:74:e4:c3:d6:51:e2:0f:98:5c:95:
0f:81:fb:ce:69:c5:71:d4:9b:ee:90:ea:a3:ca:d1:2c:ba:a6:
85:ea:55:ce:be:0a:98:d6:ba:a0:d4:3a:85:cd:1a:3c:6c:b9:
99:4e:25:f7:51:d4:92:3d:30:0f:72:ab:6e:f1:e8:a0:da:23:
ef:1e:85:79:e0:f9:de:3a:58:89:12:8a:62:76:11:01:52:a1:
6c:a9:21:f8:fe:f5:54:6a:41:44:44:ca:fc:cf:78:a9:a9:5e:
09:37:d1:ac:88:aa:ca:9d:3f:ff:7d:8f:d8:13:3a:bb:fb:90:
5f:c9:09:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 15:00:15 2023 by rpki-client on console-ams.rpki-client.org