Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/47-DWX6ryQ8tnOxGupR7fkHz3d0.roa
File: 47-DWX6ryQ8tnOxGupR7fkHz3d0.roa (raw, json)
Hash identifier: OKSZIgajcClQq1Y/IJRYweKgpc8Z01Ptg6kIVOgU/fM=
Subject key identifier: E3:BF:83:59:7E:AB:C9:0F:2D:9C:EC:46:BA:94:7B:7E:41:F3:DD:DD
Certificate issuer: /CN=593897174f967490dbf6189d479df2c9371bf404
Certificate serial: 01856CE62832B3F83314C2DF318AC94D7425
Authority key identifier: 59:38:97:17:4F:96:74:90:DB:F6:18:9D:47:9D:F2:C9:37:1B:F4:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTiXF0-WdJDb9hidR53yyTcb9AQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/47-DWX6ryQ8tnOxGupR7fkHz3d0.roa
Signing time: Sun 01 Jan 2023 10:35:00 +0000
ROA not before: Sun 01 Jan 2023 10:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8495
IP address blocks: 185.67.36.0/23 maxlen: 24
2a05:bc0::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 27 Dec 2023 14:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:28:32:b3:f8:33:14:c2:df:31:8a:c9:4d:74:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=593897174f967490dbf6189d479df2c9371bf404
Validity
Not Before: Jan 1 10:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3bf83597eabc90f2d9cec46ba947b7e41f3dddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:35:7a:55:3e:71:f0:67:76:74:7d:49:65:17:
24:0b:cd:ad:44:e8:89:47:ad:c1:27:bd:9c:79:59:
a8:bb:55:81:6d:2a:2e:89:7a:69:45:7a:85:44:bf:
b0:9f:cd:d5:73:67:3b:4e:20:f4:30:76:62:5b:13:
c7:84:9a:77:32:e0:41:f7:d8:b3:0c:ba:de:79:5e:
ee:fc:eb:de:56:51:eb:a3:45:a9:51:e1:bd:af:1c:
1f:ae:6a:77:8f:12:4c:7b:ec:f7:9d:17:2f:7d:f5:
64:fe:8d:4b:86:d2:e7:25:e4:4d:60:34:e9:fd:3c:
fe:5c:db:a5:6b:e0:39:48:f6:09:4e:bb:48:db:19:
7d:b3:b6:d2:34:c4:4b:f5:23:6b:85:ec:7c:e2:d1:
33:71:2d:08:08:9a:5a:7f:8b:1a:9a:ab:91:6d:67:
41:c5:5a:42:43:3b:93:da:80:bc:98:4a:fe:94:45:
e2:5b:46:27:72:a3:2f:94:45:f3:78:9d:12:98:57:
74:53:56:25:89:61:94:98:c1:2b:50:48:a9:a2:cc:
0d:f1:05:fd:1b:d6:2f:85:d4:6f:63:b5:f8:32:06:
92:c2:7c:56:02:7f:e7:fa:41:23:af:6a:2e:d1:63:
e5:fb:5e:83:df:7d:63:4f:30:d3:b8:25:14:b1:bc:
0f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BF:83:59:7E:AB:C9:0F:2D:9C:EC:46:BA:94:7B:7E:41:F3:DD:DD
X509v3 Authority Key Identifier:
keyid:59:38:97:17:4F:96:74:90:DB:F6:18:9D:47:9D:F2:C9:37:1B:F4:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTiXF0-WdJDb9hidR53yyTcb9AQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/47-DWX6ryQ8tnOxGupR7fkHz3d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/WTiXF0-WdJDb9hidR53yyTcb9AQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.36.0/23
IPv6:
2a05:bc0::/32
Signature Algorithm: sha256WithRSAEncryption
70:b0:8b:5c:6a:63:5d:82:b4:6a:a6:f1:89:ec:ed:2f:fb:4b:
22:dd:ae:7f:2d:5d:db:98:63:80:ad:07:b9:12:be:72:2e:3a:
b8:24:f8:5a:c2:fd:57:7e:2a:81:43:a9:da:16:a4:79:f7:a0:
f9:e3:0c:05:b0:8f:84:66:28:52:ab:95:d7:13:ee:1f:16:e3:
34:e7:80:5f:02:39:c6:6e:af:01:6c:d5:d5:9c:d7:54:16:85:
9b:d9:d3:bc:91:9f:01:a8:5d:85:eb:88:fe:92:cc:1e:83:2b:
b4:fe:f3:b9:91:bd:38:84:e9:f1:0c:10:31:3d:ef:3a:19:8f:
49:2c:e1:4a:d5:ef:be:d6:36:c2:e0:40:6c:87:98:37:de:bc:
a8:57:e9:9a:ce:91:c3:85:f5:64:6a:dd:c5:21:aa:bb:bc:4e:
e1:8f:23:a6:38:08:f3:26:da:b2:9a:35:e5:5c:d3:9f:7c:2d:
33:15:26:a6:6b:09:b9:70:82:91:bb:49:1b:3f:96:e2:ad:4a:
00:3d:13:02:c6:87:2e:e6:0f:6c:47:c6:9f:38:83:0d:0a:f4:
8c:37:3b:69:12:51:30:59:d2:04:8a:06:68:10:c7:5f:a8:44:
f4:9e:5f:26:e2:44:2a:e1:31:20:fd:c4:7f:8d:6c:3f:af:a7:
fa:47:85:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:59 2024 by rpki-client on console-ams.rpki-client.org