Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/aT89RcDSeD0NvmZ3m6q24C2QX3I.roa
File: aT89RcDSeD0NvmZ3m6q24C2QX3I.roa (raw, json)
Hash identifier: QQBA14ZxhiBMBNz4DtoHADoPlDMFgYkNSYbf14jbFYw=
Subject key identifier: 69:3F:3D:45:C0:D2:78:3D:0D:BE:66:77:9B:AA:B6:E0:2D:90:5F:72
Certificate issuer: /CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Certificate serial: 018573839CAB01F704DD3D334C649ADF862D
Authority key identifier: DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/aT89RcDSeD0NvmZ3m6q24C2QX3I.roa
Signing time: Mon 02 Jan 2023 17:24:43 +0000
ROA not before: Mon 02 Jan 2023 17:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200659
IP address blocks: 185.30.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:83:9c:ab:01:f7:04:dd:3d:33:4c:64:9a:df:86:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Validity
Not Before: Jan 2 17:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=693f3d45c0d2783d0dbe66779baab6e02d905f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8d:77:38:85:f9:8e:8c:63:0d:35:10:3a:5b:
07:81:f0:18:83:39:96:77:6c:d2:0d:72:ce:36:f4:
64:8e:14:7f:9e:02:d5:8c:89:0a:33:7a:9b:4a:0f:
a9:c9:70:3c:21:4a:67:ca:f4:af:ce:d6:e7:7d:59:
a4:db:94:33:ac:51:3c:aa:45:f8:cb:9c:c8:8e:fc:
df:de:96:25:f2:83:bc:53:81:a5:87:e6:ad:7f:68:
03:08:19:b9:64:50:93:2d:0b:14:b4:fb:62:58:d7:
81:98:03:53:01:13:86:c7:54:fd:de:63:03:a0:77:
4d:96:17:3e:64:c3:1c:d2:69:9b:8b:a6:9a:40:08:
3f:39:1d:e2:63:7a:a5:2e:b0:7c:44:11:8e:6f:9b:
16:2f:3f:61:d4:f7:68:77:d0:22:a2:49:b4:c9:9e:
49:77:ee:e2:34:0b:0e:f4:b3:66:2e:b6:21:c5:fa:
5b:04:94:74:94:ce:30:f8:5c:66:0b:c7:c2:12:ab:
d3:4b:df:cb:da:bf:db:96:4f:f6:c6:05:e5:29:78:
33:45:d8:eb:2f:84:ef:07:29:3b:70:a6:ad:64:32:
42:05:27:65:46:68:02:d9:1a:42:9b:a1:bf:52:09:
ef:21:96:13:70:2b:21:15:ca:ee:11:ce:7d:8d:50:
21:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3F:3D:45:C0:D2:78:3D:0D:BE:66:77:9B:AA:B6:E0:2D:90:5F:72
X509v3 Authority Key Identifier:
keyid:DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/aT89RcDSeD0NvmZ3m6q24C2QX3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/3DiEAh0bAujBa1VXQ9_rnajkjjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.125.0/24
Signature Algorithm: sha256WithRSAEncryption
42:dc:6b:57:c6:f0:d4:d0:1a:9b:01:43:0a:f7:3c:39:8b:ec:
83:8f:c2:0d:a0:3a:d2:3a:83:fd:3d:4c:2f:52:86:25:b5:fd:
47:04:6d:aa:9e:c1:c7:5e:88:ef:b0:e1:82:05:03:5f:85:e7:
b2:c9:4c:d7:ea:ef:34:0a:eb:e8:3b:f1:5c:02:15:ae:e7:06:
04:63:54:7f:d3:9b:f7:3b:4f:7d:bf:93:5b:95:13:28:e7:be:
28:f2:8c:6e:2d:51:31:40:5b:4e:1f:c3:16:f5:49:f4:bc:5f:
ea:12:07:ec:33:c5:99:15:d2:01:2d:78:d0:54:a1:d0:e2:2f:
a0:57:38:18:a6:27:59:64:20:b8:93:01:ea:80:86:ba:19:a1:
a8:c8:c5:24:15:f3:92:94:d4:19:2f:d2:fe:5f:07:df:5e:dc:
30:5a:5d:06:37:00:13:05:da:91:ab:12:55:18:f1:ff:2e:22:
36:10:1e:15:4d:2a:37:9b:22:dd:76:9b:55:bc:f0:93:3b:0c:
4a:b4:00:60:6e:c3:d3:fd:43:66:f3:b5:b7:88:d1:fd:6f:02:
5c:25:54:0e:0c:c7:38:88:c9:67:c5:16:13:55:29:97:f0:22:
d7:19:76:dd:b3:83:07:74:85:e2:d8:ef:00:24:84:56:cb:e3:
5a:bb:5f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:51 2024 by rpki-client on console-ams.rpki-client.org