Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/aNnS4l3dljYhfuRoqpxrZGAmJ2A.roa
File: aNnS4l3dljYhfuRoqpxrZGAmJ2A.roa (raw, json)
Hash identifier: JkREVkF6G8pwTizY4NUHqZP/LFTeKvLFhBLU2bEUks8=
Subject key identifier: 68:D9:D2:E2:5D:DD:96:36:21:7E:E4:68:AA:9C:6B:64:60:26:27:60
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 01857142D6AF6630C14D0344CBAE250633AE
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/aNnS4l3dljYhfuRoqpxrZGAmJ2A.roa
Signing time: Mon 02 Jan 2023 06:54:43 +0000
ROA not before: Mon 02 Jan 2023 06:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35548
IP address blocks: 185.137.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 13:28:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:d6:af:66:30:c1:4d:03:44:cb:ae:25:06:33:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jan 2 06:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68d9d2e25ddd9636217ee468aa9c6b6460262760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7d:34:40:a6:25:af:03:a6:a7:fd:ac:cc:f5:
9b:63:22:88:c6:f3:4f:f1:60:fa:38:e9:e1:24:93:
ec:56:41:ba:a2:9e:3b:d8:de:ec:ea:87:9a:7d:aa:
db:56:7a:8d:91:13:4e:ff:fc:a3:5a:69:a5:50:f1:
96:8d:ee:82:f9:51:3f:f3:79:92:4e:4d:20:cd:41:
8e:04:45:dc:d6:57:6d:e2:2f:22:31:23:c5:8f:75:
31:6f:f9:99:cc:37:9e:c7:12:5c:b7:34:1b:63:21:
dd:2e:88:41:d4:a9:f8:32:ba:b1:90:61:ad:c8:af:
18:cb:84:b3:c9:6e:67:ba:d2:2b:92:29:c2:05:fa:
39:65:96:0a:87:65:54:43:13:31:e6:2a:60:9d:ed:
0d:0a:54:46:b5:5f:8e:53:e3:a2:af:e9:ce:08:00:
7f:22:e4:c9:40:d7:11:d7:96:3c:1b:fc:30:4d:25:
ff:82:1f:56:b7:cd:27:c1:94:61:07:18:41:09:51:
bb:1b:11:63:4e:1a:44:eb:e5:2e:68:c6:bc:c6:2f:
8a:6d:f4:35:41:be:2c:12:8d:95:5b:b5:1e:ba:3b:
7a:2d:38:0b:64:e3:33:0a:1a:76:2c:45:23:88:af:
e6:0a:05:3f:1e:53:3e:a2:64:af:77:79:ac:27:c4:
40:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D9:D2:E2:5D:DD:96:36:21:7E:E4:68:AA:9C:6B:64:60:26:27:60
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/aNnS4l3dljYhfuRoqpxrZGAmJ2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:72:b3:58:66:b9:7e:66:df:6d:04:e1:3e:08:88:37:df:3d:
c4:63:18:3c:73:a4:fb:56:d9:4e:95:e3:e0:6e:a9:89:1a:d7:
fe:43:09:40:58:4f:75:f7:53:23:24:c3:50:5a:a4:fd:bf:f7:
02:d9:78:e7:08:94:4d:67:1b:44:aa:e7:6b:7e:d5:9a:0b:44:
98:20:ec:1c:0f:61:8b:ce:54:45:03:21:ac:4e:00:3e:79:18:
3e:14:80:dd:1e:a2:f8:14:49:5a:ce:bd:d9:16:99:b2:1a:ec:
c4:08:1c:79:78:0d:2c:d1:20:f6:06:e9:f6:ff:d9:1e:03:fc:
2e:3c:18:ea:28:2b:95:92:05:93:4a:f0:f0:d7:08:06:bf:e3:
b0:ff:78:4e:a3:df:fa:16:a6:cf:39:21:4b:cd:36:04:be:c4:
fb:03:d0:0c:4f:8c:e2:9e:d6:8f:a7:b6:99:90:80:6d:5f:7e:
42:2e:22:4b:e6:54:ab:47:c8:b6:96:a0:2c:7a:1c:bb:39:92:
d9:96:09:51:66:3c:00:b9:8a:26:db:93:85:53:d1:98:26:66:
01:a7:bf:3c:32:e2:7b:98:9d:42:b2:4d:f3:6a:f2:ea:83:c5:
d0:4b:f3:4d:b4:95:22:9a:a0:b1:5b:df:11:30:10:23:4d:60:
21:f5:64:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org