Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/PQOsZh1r3Q5VM1suQK60w211fCk.roa
File: PQOsZh1r3Q5VM1suQK60w211fCk.roa (raw, json)
Hash identifier: PUafQjFnqQllx4KivSEKsZHkFMGhP8sCng9EFalyeiM=
Subject key identifier: 3D:03:AC:66:1D:6B:DD:0E:55:33:5B:2E:40:AE:B4:C3:6D:75:7C:29
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 0187A5126F5F957FBF3CD3BB7216FE87FCBA
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/PQOsZh1r3Q5VM1suQK60w211fCk.roa
Signing time: Fri 21 Apr 2023 18:27:41 +0000
ROA not before: Fri 21 Apr 2023 18:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.220.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 03:11:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a5:12:6f:5f:95:7f:bf:3c:d3:bb:72:16:fe:87:fc:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Apr 21 18:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d03ac661d6bdd0e55335b2e40aeb4c36d757c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dc:cf:77:e9:88:22:6a:7f:12:7a:89:38:bb:
e2:58:5f:46:84:f4:91:79:04:a5:55:7c:25:aa:76:
77:85:6a:52:45:56:6a:1c:cb:b3:a4:43:f2:c7:f4:
46:31:a9:87:96:11:3a:94:3a:a9:e7:05:b9:a6:d9:
60:d2:fe:48:1e:e9:60:ff:90:06:cd:e8:77:ef:7b:
04:79:4e:ce:09:d0:08:0d:d0:22:4a:d6:a1:be:86:
16:be:6e:44:d2:cc:d8:7d:2c:3f:82:b0:4b:2f:e6:
2e:27:bd:08:a2:97:71:be:2b:2f:43:e4:9f:76:8c:
3c:26:9d:7d:49:e1:26:86:7e:20:67:1b:f3:0b:a5:
90:fe:06:2d:50:c8:8d:2b:33:b4:6b:8e:58:c9:30:
28:28:d6:96:6b:6a:24:67:77:1a:87:ce:64:ca:af:
59:eb:6d:4e:65:be:c8:cf:c8:7e:4e:3a:ce:3b:07:
2c:e9:58:99:7d:8e:9d:d6:a7:7b:eb:0f:5a:a2:c5:
f8:f1:c7:42:d2:92:a1:35:af:7d:ca:43:a4:6f:91:
fb:9c:41:df:bb:67:3f:68:d3:84:64:71:2e:78:82:
21:9a:a2:e2:7f:e5:0d:99:d2:03:61:c6:aa:9e:87:
8b:28:1a:e9:bc:df:13:08:90:fe:f3:f6:26:93:67:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:03:AC:66:1D:6B:DD:0E:55:33:5B:2E:40:AE:B4:C3:6D:75:7C:29
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/PQOsZh1r3Q5VM1suQK60w211fCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.146.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:49:01:4f:d1:c0:8f:13:ca:93:cc:ef:5f:48:a0:8f:43:8d:
05:f8:e4:cf:be:cd:e2:f4:5e:b8:c5:53:49:73:c5:4d:26:6c:
b0:28:8c:d4:09:9f:4b:ee:e5:d5:f0:48:9f:41:3e:69:2e:e0:
1f:ef:a3:a9:17:40:99:93:62:61:63:1c:12:f7:15:bf:f6:f3:
2f:7c:8d:3a:b2:d3:c6:7b:08:ef:b3:bb:89:e8:ba:ca:0c:23:
9d:d9:d7:24:b7:35:40:9a:69:0e:82:f5:a9:29:57:93:c5:b8:
85:86:b8:85:18:5f:50:4f:77:67:14:a3:d7:e4:3e:b8:7d:4c:
93:f0:37:5b:2e:d4:dd:3c:43:f6:87:81:1a:a9:40:25:bc:4d:
25:ee:2a:b7:fd:0c:90:82:e9:ef:0e:b0:88:21:42:a5:3a:ba:
fe:b6:72:7d:3a:ab:57:c5:2e:51:bd:f5:ba:ac:f9:dd:38:c7:
c9:0c:df:15:36:89:bf:a5:b6:10:23:df:be:4d:62:18:e6:0b:
83:5a:7c:37:36:a9:ab:3d:f7:8d:9a:21:b2:72:c9:06:7b:3c:
97:18:da:fb:ee:4e:17:fc:ca:da:ed:f1:bf:fa:14:d1:39:97:
fd:5c:b7:dd:46:cc:7f:01:e8:ac:26:8e:80:d6:61:07:93:d2:
4e:19:63:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:58 2024 by rpki-client on console-ams.rpki-client.org