Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/dBs4rKxOX6OLl90MDGru-DPNY3Y.roa
File: dBs4rKxOX6OLl90MDGru-DPNY3Y.roa (raw, json)
Hash identifier: dpZdWRkrgy3yIJnQ6WNYM0dy7ejqNz1swKJqsWx3JOs=
Subject key identifier: 74:1B:38:AC:AC:4E:5F:A3:8B:97:DD:0C:0C:6A:EE:F8:33:CD:63:76
Certificate issuer: /CN=07a0486dc0b4ba730903788ff3f3f7c8249b921f
Certificate serial: 01856E38EC5247DE6D5AAB93079DDB16269E
Authority key identifier: 07:A0:48:6D:C0:B4:BA:73:09:03:78:8F:F3:F3:F7:C8:24:9B:92:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6BIbcC0unMJA3iP8_P3yCSbkh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/dBs4rKxOX6OLl90MDGru-DPNY3Y.roa
Signing time: Sun 01 Jan 2023 16:45:02 +0000
ROA not before: Sun 01 Jan 2023 16:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3223
IP address blocks: 185.246.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:ec:52:47:de:6d:5a:ab:93:07:9d:db:16:26:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a0486dc0b4ba730903788ff3f3f7c8249b921f
Validity
Not Before: Jan 1 16:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=741b38acac4e5fa38b97dd0c0c6aeef833cd6376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:49:94:e5:77:6b:94:f2:60:87:6c:2a:76:
ae:df:fc:31:4d:e9:a7:fc:1d:a3:f3:e9:f4:de:3e:
a9:d6:5e:a0:f8:b5:7e:5a:17:31:3b:7c:36:38:d8:
58:06:6a:a6:0c:03:93:68:bf:3e:40:42:54:b1:33:
98:62:45:8a:da:d7:32:52:b3:bd:1b:93:b6:71:71:
9c:fa:4b:5f:ec:21:43:29:dd:e8:fe:a3:b2:80:4e:
85:01:b3:a2:ea:4a:eb:e9:13:6a:d0:5c:95:d2:73:
aa:16:66:bc:6b:51:94:f0:ae:4d:7b:a3:8f:63:b9:
a4:29:d3:de:69:89:f0:34:25:ea:84:9a:1e:91:45:
79:3f:cb:6b:a1:1d:5e:6e:d5:86:ae:89:43:91:7c:
90:76:c8:dc:dc:1c:ae:0f:64:9e:fb:f7:dd:0c:9c:
ca:0b:53:7e:9a:87:b1:eb:2b:66:6f:82:46:be:ce:
d8:6e:0e:62:55:99:d9:18:81:d8:38:0a:a8:58:e2:
79:ad:b8:d6:d0:fb:cf:6d:29:3e:8b:64:55:72:7a:
d0:8c:ec:c7:d6:cc:3b:72:fa:a4:44:43:e3:ae:f7:
d1:77:31:2a:cb:61:ef:a4:92:a0:4e:53:1d:97:55:
d4:38:cd:e8:f2:45:86:18:ee:bf:b7:6c:87:3b:2c:
3a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1B:38:AC:AC:4E:5F:A3:8B:97:DD:0C:0C:6A:EE:F8:33:CD:63:76
X509v3 Authority Key Identifier:
keyid:07:A0:48:6D:C0:B4:BA:73:09:03:78:8F:F3:F3:F7:C8:24:9B:92:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6BIbcC0unMJA3iP8_P3yCSbkh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/dBs4rKxOX6OLl90MDGru-DPNY3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/B6BIbcC0unMJA3iP8_P3yCSbkh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.120.0/22
Signature Algorithm: sha256WithRSAEncryption
36:ba:92:f5:0d:0b:0d:b5:35:2c:b8:67:b0:52:31:34:73:82:
2f:41:5e:40:e7:d2:3e:59:1c:f6:45:53:aa:4d:23:80:9c:3e:
ef:06:4b:7b:30:c9:16:a9:b0:01:e3:88:32:9e:b5:a5:28:55:
a3:e9:0d:e7:e8:52:04:a4:44:c2:72:67:b0:bf:3d:e9:94:34:
30:de:8a:ce:aa:64:17:5c:40:f6:60:62:2e:08:20:e9:ae:ca:
1e:c2:c0:e4:99:9e:85:b0:1e:d6:5b:b7:f7:21:d1:7b:f5:33:
58:00:87:c8:95:ff:1a:f6:7e:13:8a:04:0d:b7:fe:c5:27:6d:
c4:66:16:5e:38:a7:4f:5c:59:2d:f3:b4:72:9e:fd:53:1c:c2:
56:c3:02:ec:12:7b:ca:93:61:c6:b0:74:3d:86:69:0a:2c:0c:
d8:0c:83:8c:f3:fc:eb:e4:7f:2b:a0:af:c3:da:c7:59:92:93:
f9:fa:b1:49:45:ef:8b:02:eb:7a:94:3b:f8:93:6d:8d:5f:76:
a3:11:a9:5c:bc:37:2e:e4:18:6a:3a:25:7b:57:22:21:e7:ff:
f6:04:b1:5f:35:23:72:d1:0f:a4:9b:9e:4c:99:d4:eb:9f:8e:
4a:cf:de:a2:ef:a3:68:70:ad:d4:08:0b:12:e2:3c:30:a0:74:
39:86:ac:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:23 2024 by rpki-client on console-ams.rpki-client.org