Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/0m3pg505fXW9bFpgqJLucWsqbo4.roa
File: 0m3pg505fXW9bFpgqJLucWsqbo4.roa (raw, json)
Hash identifier: nOd9f2wSqRlaN3ZHIoeGLXJ6bWWcben3lM3FtnyTTAU=
Subject key identifier: D2:6D:E9:83:9D:39:7D:75:BD:6C:5A:60:A8:92:EE:71:6B:2A:6E:8E
Certificate issuer: /CN=61041121ccc6e65d933961fd572d59e261f21a31
Certificate serial: 01856CC1513A1735D572C5F5C5B5399004DC
Authority key identifier: 61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/0m3pg505fXW9bFpgqJLucWsqbo4.roa
Signing time: Sun 01 Jan 2023 09:54:46 +0000
ROA not before: Sun 01 Jan 2023 09:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41960
IP address blocks: 185.160.4.0/22 maxlen: 24
2a02:d880::/32 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:51:3a:17:35:d5:72:c5:f5:c5:b5:39:90:04:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61041121ccc6e65d933961fd572d59e261f21a31
Validity
Not Before: Jan 1 09:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d26de9839d397d75bd6c5a60a892ee716b2a6e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:83:b3:a3:dc:c6:e0:cd:43:bd:0d:06:8d:6e:
72:e1:34:05:6d:54:25:2f:26:a1:fc:d1:17:9a:e7:
42:a9:4c:5f:96:43:06:01:f8:82:1d:0c:fa:cc:3e:
00:38:13:f4:7e:04:e3:46:a2:cf:c8:47:91:a8:0a:
08:d2:15:d1:b1:a2:e8:fd:b0:da:be:2f:a0:d2:87:
d4:d4:72:c8:b6:0e:7e:da:ac:06:c4:30:7a:e4:87:
39:0d:14:31:29:52:fd:a2:29:19:5b:4a:b3:2a:7d:
8c:07:ff:0a:39:f6:bd:f1:a9:ca:a5:6a:8b:3c:6a:
4b:9a:8c:02:d3:66:81:33:68:3c:55:d2:b8:06:89:
6c:91:ec:e0:bc:39:87:5e:c1:af:83:68:35:dd:b4:
f5:09:52:bb:d7:a4:bf:ab:f1:00:f0:5c:28:90:52:
fd:ed:ea:ba:e4:5f:6a:92:f5:7f:bd:30:65:6c:ee:
1d:52:64:b7:b7:5d:a3:00:e1:ff:cf:f0:6b:44:dc:
01:8d:6b:c8:54:c5:a1:21:39:e2:9b:2f:f3:a1:c8:
48:20:eb:fd:48:60:8e:b1:da:8a:0c:54:14:20:31:
ba:58:b6:22:67:6c:cb:eb:5b:27:a0:7f:09:37:af:
4d:46:3e:e9:f3:28:cb:19:e5:3c:fc:4c:37:ac:30:
b9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6D:E9:83:9D:39:7D:75:BD:6C:5A:60:A8:92:EE:71:6B:2A:6E:8E
X509v3 Authority Key Identifier:
keyid:61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/0m3pg505fXW9bFpgqJLucWsqbo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.4.0/22
IPv6:
2a02:d880::/32
Signature Algorithm: sha256WithRSAEncryption
6a:72:2e:b6:f0:33:e6:82:0c:81:19:8b:71:df:4a:13:6d:e2:
bb:de:be:5c:ee:7b:1f:b5:59:48:9d:59:31:f3:41:7b:6a:77:
e0:ed:25:08:f0:eb:65:bc:ab:7e:09:a1:13:be:3d:c0:d4:91:
fa:f6:d0:3a:13:45:8c:49:53:0c:10:d1:aa:eb:a1:e0:25:be:
59:c8:56:2b:45:2b:6a:b4:a8:c5:8a:6b:e6:45:40:7a:cd:4b:
1a:ee:6b:79:5b:e9:78:bf:5b:7d:2f:cf:7e:62:4c:c1:94:50:
7a:fe:e8:44:01:5a:c9:08:6d:78:8c:68:b9:33:b1:06:d8:69:
bb:b4:2e:2b:5a:85:ab:02:96:de:43:4b:25:08:d1:3b:cf:f4:
2e:c1:4e:f5:f3:3f:d2:74:27:31:4e:fc:8f:79:05:6e:79:df:
59:d3:ca:46:c6:54:4b:fe:78:b3:b9:c0:2c:bf:b3:8e:e7:69:
26:4b:f9:00:26:64:e5:02:99:8c:ae:d2:c1:76:c3:04:ca:60:
3d:b0:ae:97:9f:c8:5e:a8:87:74:03:94:6c:1b:ea:8b:03:8b:
48:85:c4:ad:5e:ba:c0:5c:ab:c9:c7:30:27:c7:c6:21:f8:82:
e9:78:af:2f:35:20:cf:0d:a3:7a:34:4f:60:49:14:04:e0:bf:
6c:0a:9a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:55 2024 by rpki-client on console-ams.rpki-client.org