Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/YqsDgDIUvADduavFEMcxUF1EsiM.roa
File: YqsDgDIUvADduavFEMcxUF1EsiM.roa (raw, json)
Hash identifier: kl3ujO9+lodJmTYCe0WSDL9ZiSoIVh0DkkFOGQFgsFw=
Subject key identifier: 62:AB:03:80:32:14:BC:00:DD:B9:AB:C5:10:C7:31:50:5D:44:B2:23
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 01856C78442DC68662A7C6543C87C4F0DAE4
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/YqsDgDIUvADduavFEMcxUF1EsiM.roa
Signing time: Sun 01 Jan 2023 08:34:59 +0000
ROA not before: Sun 01 Jan 2023 08:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207540
IP address blocks: 185.216.138.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:44:2d:c6:86:62:a7:c6:54:3c:87:c4:f0:da:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jan 1 08:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ab03803214bc00ddb9abc510c731505d44b223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:86:b3:09:25:20:fc:cb:ab:04:53:52:e6:d5:
ec:9a:c7:a6:1c:c9:18:b4:54:8b:55:a5:a7:fe:4f:
b5:67:5a:a3:be:a6:01:ac:ef:02:a4:9f:23:64:77:
07:97:f7:f1:0a:e5:f6:71:91:10:11:b4:41:0e:16:
3e:39:7c:20:88:77:de:6f:f6:b9:31:ac:ec:c0:cc:
3a:59:67:df:5b:3f:f0:11:cc:e5:df:06:fb:80:bf:
e4:73:5d:28:97:93:0e:da:3f:6f:cd:fc:4c:1e:44:
7a:5a:5a:c1:90:6d:86:db:1a:97:42:23:a2:49:45:
d3:7e:32:ac:b9:44:29:b1:42:fd:0e:77:ed:01:62:
c5:31:cb:17:9f:19:9b:3f:8b:52:6c:68:c0:72:2d:
2d:9e:59:8f:85:6e:da:1e:e8:02:9b:4b:75:66:cf:
4f:b0:4f:a7:1d:36:5e:98:30:1e:74:01:3b:71:86:
39:f7:60:d2:91:d2:88:b7:99:e1:0a:11:e9:70:24:
b8:52:30:74:e8:24:16:d8:d3:41:ff:68:25:d6:25:
31:62:aa:00:65:e8:55:74:57:5b:61:85:34:00:97:
73:28:01:0c:e9:91:77:88:86:94:dc:68:90:79:70:
ad:e1:70:2b:68:bc:69:e9:0c:99:fc:ef:d0:cd:86:
8f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AB:03:80:32:14:BC:00:DD:B9:AB:C5:10:C7:31:50:5D:44:B2:23
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/YqsDgDIUvADduavFEMcxUF1EsiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.138.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:73:14:40:0b:4e:aa:98:1c:9e:91:b4:89:ac:2d:c6:66:c8:
ee:65:20:3b:b9:9b:3f:cb:48:28:4d:61:eb:24:af:de:0f:2f:
73:64:77:71:96:7b:c3:67:a8:47:9c:cc:8d:7c:25:5e:cb:43:
74:d7:8c:03:34:b0:e3:84:f1:66:1a:af:62:db:bf:53:48:16:
6e:7b:1b:db:5d:8c:17:b7:f3:52:06:9d:7d:90:d5:de:78:e2:
ff:5d:a3:32:49:6e:38:c2:ae:c8:89:81:4a:d9:09:b6:2b:90:
5e:9f:f9:b3:f4:c6:0d:44:12:90:4c:97:8a:27:ed:ec:09:0c:
2c:3a:6d:89:16:a5:6d:b7:b5:21:7b:30:a8:0c:72:81:75:2b:
1f:c6:da:b4:d4:b0:12:b4:16:0f:0f:70:c9:03:e9:47:6b:a4:
48:62:7b:d1:a9:78:f6:e8:b5:08:fc:5d:2a:c7:8b:7e:74:f4:
23:9c:4d:0d:44:de:9e:1f:a5:d0:1b:b1:6d:8d:16:aa:b8:ff:
ac:de:47:d9:72:d7:5b:bc:d9:a9:99:69:34:e3:b7:d2:8c:b3:
8e:76:52:f0:c9:93:77:bd:82:45:8e:4e:16:9a:76:6b:ac:4f:
f6:57:3e:61:65:8c:13:37:3e:fe:c9:0b:23:b2:12:6d:0e:8f:
f5:7c:87:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org